Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/234/h-cAZ5Y2KN79jnUQtmWp6oX4vTU.roa
File: h-cAZ5Y2KN79jnUQtmWp6oX4vTU.roa (raw, json)
Hash identifier: HD1LNAE8V6FMOUm/Qrd4AzNRx7Jg/yqzvieh+Jyo6TE=
Subject key identifier: 87:E7:00:67:96:36:28:DE:FD:8E:75:10:B6:65:A9:EA:85:F8:BD:35
Certificate issuer: /CN=500EF358BCBE14A358CA4EEE41B4E90DC923E9D2
Certificate serial: 58
Authority key identifier: 50:0E:F3:58:BC:BE:14:A3:58:CA:4E:EE:41:B4:E9:0D:C9:23:E9:D2
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/h-cAZ5Y2KN79jnUQtmWp6oX4vTU.roa
Signing time: Wed 01 Feb 2023 01:30:00 +0000
ROA not before: Wed 01 Feb 2023 01:30:00 +0000
ROA not after: Mon 15 Jan 2024 01:30:02 +0000
asID: 9351
IP address blocks: 218.45.144.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88 (0x58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=500EF358BCBE14A358CA4EEE41B4E90DC923E9D2
Validity
Not Before: Feb 1 01:30:00 2023 GMT
Not After : Jan 15 01:30:02 2024 GMT
Subject: CN=87E70067963628DEFD8E7510B665A9EA85F8BD35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:46:65:2a:59:fc:28:74:b7:f6:d7:25:86:a1:
7e:05:56:d7:a9:cd:f6:2e:5e:3c:b4:b0:a2:a1:de:
e0:ca:ea:6d:82:1a:62:58:41:38:f2:60:41:e3:e4:
42:95:69:00:67:98:1f:d2:f5:d2:85:f3:cd:92:8b:
b8:17:3b:e6:13:07:ea:1e:48:97:f8:dc:69:0f:35:
4f:5f:99:12:3d:c2:74:de:78:1f:6d:eb:48:4b:d6:
7c:97:70:69:17:5d:8c:d9:3c:3b:d6:8c:dd:c8:bc:
e2:ef:67:b5:43:4e:b9:6c:7d:86:5d:09:67:62:3f:
6b:eb:70:31:d0:7b:8e:9d:25:c2:92:f8:df:9c:8c:
8d:36:99:29:d1:99:c5:69:37:9c:2b:16:59:8b:a1:
8e:27:12:f2:07:9b:10:35:16:e1:c0:59:c1:e4:88:
fc:8a:2b:55:44:41:e9:9b:bb:8e:db:b8:4e:f6:93:
d9:6e:15:3c:b4:b3:1c:86:41:0a:92:7a:43:ec:4f:
c0:99:09:43:54:f6:1f:7a:1a:91:0d:69:a7:21:a4:
95:73:d7:7e:1a:e0:c5:59:26:e5:cd:f0:39:72:43:
82:a3:dc:03:30:4d:9e:57:a9:60:8b:b0:27:45:f5:
3f:c0:07:7f:20:61:30:39:83:c7:eb:c5:f6:be:68:
3d:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:E7:00:67:96:36:28:DE:FD:8E:75:10:B6:65:A9:EA:85:F8:BD:35
X509v3 Authority Key Identifier:
keyid:50:0E:F3:58:BC:BE:14:A3:58:CA:4E:EE:41:B4:E9:0D:C9:23:E9:D2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/UA7zWLy-FKNYyk7uQbTpDckj6dI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/h-cAZ5Y2KN79jnUQtmWp6oX4vTU.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
218.45.144.0/20
Signature Algorithm: sha256WithRSAEncryption
3f:02:4c:13:6c:9d:84:a1:f4:e5:c2:a0:ff:a2:ee:03:e2:67:
6e:b7:6c:71:29:f9:26:60:ba:85:aa:d2:21:57:a0:34:2e:cc:
86:40:d6:42:5f:5f:0c:e9:f5:1c:10:46:d4:84:58:59:ca:f8:
a3:bc:85:58:13:28:7a:05:18:c4:42:5f:4a:3b:d0:3b:df:f5:
35:6b:02:2f:a6:91:31:59:03:f5:91:0a:47:ca:06:c5:c7:c6:
0d:b1:e4:66:0c:6b:8e:1d:11:46:17:36:b3:b4:7c:17:63:fd:
bb:85:25:26:49:f3:ce:19:95:71:2e:02:0e:94:5b:52:fc:04:
36:5b:9a:54:9e:29:6b:f0:a8:09:33:54:ef:e0:aa:e6:09:9c:
1f:96:ba:1a:41:70:11:9a:86:7c:c4:13:f4:3e:e8:3c:e2:21:
9d:61:1e:d3:e3:22:b4:18:d8:da:7f:46:3e:ed:79:6e:6f:61:
fc:8a:88:3f:98:1b:2d:69:f5:db:c0:72:99:22:d7:54:bb:39:
d9:f1:1a:ad:0f:a9:77:ec:d1:cb:fa:62:20:9e:66:82:b9:fc:
ed:68:e4:eb:ef:39:ea:77:5a:73:95:78:47:9e:01:95:7b:f8:
7c:98:a7:cd:29:43:b6:ac:15:c7:46:41:a3:3a:cf:2e:9c:d5:
fd:67:ef:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:25:44 2025 by rpki-client