Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/240/Q-aMDNMpJW6eInxwnwqFYyiPI3g.roa
File: Q-aMDNMpJW6eInxwnwqFYyiPI3g.roa (raw, json)
Hash identifier: Fk/Yip6ZDaxU1fFhljwbPwLBPzQ/whfQXiqRdtgEQDc=
Subject key identifier: 43:E6:8C:0C:D3:29:25:6E:9E:22:7C:70:9F:0A:85:63:28:8F:23:78
Certificate issuer: /CN=B96964A7CE0A58F4AE3673F47D7A1D425BE4A07D
Certificate serial: 07
Authority key identifier: B9:69:64:A7:CE:0A:58:F4:AE:36:73:F4:7D:7A:1D:42:5B:E4:A0:7D
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uWlkp84KWPSuNnP0fXodQlvkoH0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/Q-aMDNMpJW6eInxwnwqFYyiPI3g.roa
Signing time: Fri 18 Aug 2023 02:24:19 +0000
ROA not before: Fri 18 Aug 2023 02:24:19 +0000
ROA not after: Sat 17 Aug 2024 02:01:09 +0000
asID: 9597
IP address blocks: 117.20.96.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B96964A7CE0A58F4AE3673F47D7A1D425BE4A07D
Validity
Not Before: Aug 18 02:24:19 2023 GMT
Not After : Aug 17 02:01:09 2024 GMT
Subject: CN=43E68C0CD329256E9E227C709F0A8563288F2378
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:89:68:e0:d1:dc:e0:58:50:29:73:66:b2:26:
27:10:6c:83:7a:df:35:87:d4:f2:d3:1a:10:00:cc:
e8:4f:9c:ef:48:c7:39:d3:52:7c:d2:f0:1e:ca:70:
a6:78:f3:48:2a:7c:79:51:b8:a2:c4:22:a0:38:27:
c8:2d:48:ef:cc:27:09:bd:8e:1f:01:32:d5:c7:d9:
08:98:9b:d4:dc:c3:00:62:54:14:fb:35:16:8f:a3:
ef:12:3d:52:f0:59:a0:1d:ef:2d:4b:22:b4:1f:fd:
66:91:24:6e:46:ed:e0:69:48:ed:40:9b:2b:91:67:
e8:f5:66:54:cc:d5:6e:b8:f2:a3:9c:9f:74:37:4d:
85:23:c9:42:fb:fa:ab:31:53:87:2f:05:fc:06:84:
4d:c0:06:27:74:b0:cb:cf:5a:7b:7a:7c:1b:28:05:
3b:01:8e:35:21:d8:c1:d8:ca:97:9c:ea:35:da:63:
6d:e8:19:ea:05:d7:7c:e5:a8:96:86:b9:2c:be:25:
13:1e:15:bb:d1:27:24:d7:94:ce:24:5d:04:a1:4e:
27:f4:ee:58:bc:cd:88:17:75:c9:f1:a0:3e:a2:72:
6d:e2:90:25:6f:55:13:76:3b:35:2d:a1:2e:60:19:
02:2c:6f:5a:dc:bd:9c:8f:b7:37:ae:5b:80:a6:d3:
c5:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:E6:8C:0C:D3:29:25:6E:9E:22:7C:70:9F:0A:85:63:28:8F:23:78
X509v3 Authority Key Identifier:
keyid:B9:69:64:A7:CE:0A:58:F4:AE:36:73:F4:7D:7A:1D:42:5B:E4:A0:7D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/uWlkp84KWPSuNnP0fXodQlvkoH0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uWlkp84KWPSuNnP0fXodQlvkoH0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/Q-aMDNMpJW6eInxwnwqFYyiPI3g.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
117.20.96.0/20
Signature Algorithm: sha256WithRSAEncryption
b1:a2:e4:bf:aa:b9:95:2f:42:28:f4:0e:1c:d7:2d:65:51:e1:
c7:ce:c2:7c:32:e7:35:87:7d:d9:ae:92:54:0f:4e:5d:1e:bb:
95:ac:ad:1b:03:00:50:c4:8d:05:61:d4:c3:3c:4b:ac:0a:c3:
33:dd:11:69:a2:86:d4:e0:ad:ba:64:a6:e5:e6:47:10:ae:59:
dd:b2:0e:7e:11:e5:42:ef:da:6c:e6:ea:19:88:c9:c1:15:3e:
c6:1b:8b:c1:12:9e:32:c7:5f:e5:11:63:ef:10:8f:fd:88:b9:
f0:e6:43:a1:6c:e1:bb:38:df:7a:80:9d:54:8b:33:58:8d:3c:
45:15:15:f2:2c:57:9c:74:c9:47:a0:ae:f0:80:4c:2c:fb:4d:
45:fa:d0:bc:35:89:37:c0:77:f6:32:e9:5a:b3:78:7c:ac:d7:
49:6f:60:07:56:83:32:5a:b0:5f:c5:73:5f:9a:05:4f:50:ad:
46:f1:f0:20:72:f6:7c:bd:a1:27:b3:d5:6c:67:32:d3:3a:45:
a6:f3:13:4a:35:99:b0:f5:2c:85:f5:32:9d:dd:4c:b7:ab:0e:
e5:cc:87:6b:fc:06:00:96:ec:dd:a8:db:41:eb:c1:9f:31:c1:
bf:60:82:b8:70:c1:f4:d9:20:d8:a4:f4:fd:47:1f:fb:93:ce:
10:4e:7e:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:37:50 2025 by rpki-client