Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/234/kzJRLvv0otRDVO_8cqXtWw4Jv0Q.roa
File: kzJRLvv0otRDVO_8cqXtWw4Jv0Q.roa (raw, json)
Hash identifier: j4JJM8k/L0PM9oGwsSbMjDZR/tCNl+4R3XqSP+xE9fQ=
Subject key identifier: 93:32:51:2E:FB:F4:A2:D4:43:54:EF:FC:72:A5:ED:5B:0E:09:BF:44
Certificate issuer: /CN=500EF358BCBE14A358CA4EEE41B4E90DC923E9D2
Certificate serial: 7C
Authority key identifier: 50:0E:F3:58:BC:BE:14:A3:58:CA:4E:EE:41:B4:E9:0D:C9:23:E9:D2
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/kzJRLvv0otRDVO_8cqXtWw4Jv0Q.roa
Signing time: Mon 01 Jan 2024 01:28:20 +0000
ROA not before: Mon 01 Jan 2024 01:28:20 +0000
ROA not after: Sat 14 Dec 2024 01:30:03 +0000
asID: 9351
IP address blocks: 202.59.176.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124 (0x7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=500EF358BCBE14A358CA4EEE41B4E90DC923E9D2
Validity
Not Before: Jan 1 01:28:20 2024 GMT
Not After : Dec 14 01:30:03 2024 GMT
Subject: CN=9332512EFBF4A2D44354EFFC72A5ED5B0E09BF44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:5c:31:23:f1:f2:ca:15:cd:dd:8f:03:8e:4b:
f7:4b:12:ff:b1:59:44:b4:b3:13:bf:bb:ba:8a:3f:
54:9d:28:3a:91:01:8e:4c:d5:61:17:f5:e2:1c:b9:
0b:57:4d:75:e3:1b:f9:89:eb:98:f6:80:43:91:45:
95:ad:09:b4:9a:ef:4a:35:87:09:f4:5a:65:a1:c7:
9e:09:d3:ad:41:6c:bf:9b:77:44:ca:76:1b:76:59:
10:dd:ad:0b:d8:05:cc:e8:07:6f:fb:f5:8a:54:1f:
57:19:0f:c5:6b:13:10:75:e5:c8:3c:58:19:45:06:
5a:7c:ae:47:26:a7:0f:e3:49:88:62:e2:ad:2b:47:
61:24:62:4f:c9:d0:64:7f:e8:46:e7:2b:f2:23:ab:
de:21:5e:9d:34:5d:ae:ef:3e:5c:ab:f9:67:ab:71:
de:d8:81:80:34:ed:1f:da:a3:9b:39:b7:5d:9b:9e:
88:ab:fe:b0:a0:6a:68:9d:2d:41:57:fa:ab:e6:04:
05:42:b5:cb:e6:4c:75:e7:3e:3b:2f:44:e2:94:e5:
e8:94:00:f0:03:bc:08:a1:ff:a1:8f:1f:14:11:75:
a9:9c:b9:39:26:40:72:2c:1c:64:26:ca:2e:a3:4a:
f7:67:ef:ed:40:6b:2b:0b:c4:c2:2c:e3:f4:ce:df:
75:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:32:51:2E:FB:F4:A2:D4:43:54:EF:FC:72:A5:ED:5B:0E:09:BF:44
X509v3 Authority Key Identifier:
keyid:50:0E:F3:58:BC:BE:14:A3:58:CA:4E:EE:41:B4:E9:0D:C9:23:E9:D2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/UA7zWLy-FKNYyk7uQbTpDckj6dI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/kzJRLvv0otRDVO_8cqXtWw4Jv0Q.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.59.176.0/20
Signature Algorithm: sha256WithRSAEncryption
5d:dc:4f:2b:a2:83:5a:fe:18:cb:d2:39:82:4f:71:98:94:92:
d9:86:0a:9b:2a:17:94:2d:17:c3:c7:fc:bd:2f:0d:5f:7f:ef:
ca:16:00:73:ee:f2:17:b3:19:52:9e:a2:b3:2d:28:e7:41:cb:
6d:e1:02:d8:9e:cb:be:7e:0c:dc:62:5f:de:28:24:ba:d8:73:
ec:53:03:5b:1e:e9:8e:da:8c:06:c6:06:e7:61:fa:dd:46:3d:
71:e6:87:5c:ce:4a:8b:00:ee:31:70:38:0e:31:ad:ad:41:60:
d2:c0:71:1e:83:61:55:bf:2f:49:b5:40:36:c0:9f:df:b2:e9:
b9:6e:74:ce:88:b2:1c:46:9c:de:93:b1:7a:96:e6:7c:d1:94:
fe:77:a1:50:bd:85:98:60:7f:be:67:d9:d3:89:66:43:b1:9a:
9e:c8:15:3d:6f:08:48:e0:3a:7c:9b:da:cb:a7:d7:ae:f1:11:
28:07:7f:58:e8:48:f6:77:62:a6:b4:37:ad:30:f2:63:62:a5:
58:ce:d2:6a:24:26:80:fa:d1:22:e5:f6:28:62:aa:61:80:7b:
bd:4a:10:33:1c:63:3d:13:56:c4:72:39:52:7e:cb:41:d8:e5:
9a:39:e5:b9:4e:ed:c4:77:ca:f5:fd:27:a8:a7:ee:2d:42:8e:
c9:63:ca:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:17:10 2025 by rpki-client