Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/3ZryFhNACXtp1BXzdgjWgfQFHwo.roa
File: 3ZryFhNACXtp1BXzdgjWgfQFHwo.roa (raw, json)
Hash identifier: 3f98xWOpknNzT+oatd5MRt77wQYxZP9XKzO6BsR0Zm4=
Subject key identifier: DD:9A:F2:16:13:40:09:7B:69:D4:15:F3:76:08:D6:81:F4:05:1F:0A
Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A
Certificate serial: 1F
Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/3ZryFhNACXtp1BXzdgjWgfQFHwo.roa
Signing time: Wed 10 Jan 2024 01:03:00 +0000
ROA not before: Wed 10 Jan 2024 01:03:00 +0000
ROA not after: Sat 14 Dec 2024 01:30:03 +0000
asID: 2514
IP address blocks: 157.65.64.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31 (0x1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A
Validity
Not Before: Jan 10 01:03:00 2024 GMT
Not After : Dec 14 01:30:03 2024 GMT
Subject: CN=DD9AF2161340097B69D415F37608D681F4051F0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ba:39:d7:58:88:3b:21:4d:42:05:8c:07:c9:
53:c7:5b:f1:fc:bb:1f:c4:6c:97:c0:e4:22:a3:30:
e6:56:10:55:12:97:f0:ce:ef:fa:9c:f3:39:e8:80:
f2:53:ed:f1:cb:57:c7:b5:08:24:f6:13:00:51:9c:
4b:c4:72:94:14:b2:22:22:d5:a8:75:39:78:13:ea:
79:8a:06:89:fa:8f:d5:39:0a:22:10:4e:33:49:2b:
d6:6b:65:b3:59:04:e2:30:0d:8e:05:11:64:5e:2b:
41:b7:5b:0a:de:88:7b:52:c2:cf:73:c3:ec:a0:f4:
28:eb:80:40:ce:bb:26:77:74:7d:aa:49:db:77:7c:
d1:98:6a:8b:5f:69:33:77:fc:6a:ff:aa:9d:0c:ec:
ae:9a:14:42:c9:88:f5:43:ad:24:1f:94:54:ef:be:
d5:34:f6:1e:b3:a6:9d:e0:0a:8b:48:df:06:83:d0:
13:af:43:eb:5c:44:e8:44:71:9c:9a:b4:9e:2b:2f:
6a:de:b9:9b:c4:7e:95:bb:dc:5d:30:31:b8:1c:6c:
af:be:13:a7:9d:9b:65:c3:93:10:4b:56:df:11:30:
ec:0a:a2:3e:9a:4e:42:83:16:18:f0:51:95:42:7a:
7d:f5:b2:3a:06:70:7b:1c:24:dd:f8:5d:2d:59:98:
4d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:9A:F2:16:13:40:09:7B:69:D4:15:F3:76:08:D6:81:F4:05:1F:0A
X509v3 Authority Key Identifier:
keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/3ZryFhNACXtp1BXzdgjWgfQFHwo.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.65.64.0/18
Signature Algorithm: sha256WithRSAEncryption
4f:1a:b5:66:e8:d4:49:56:19:54:5a:7e:2a:2c:1c:f7:e4:a8:
77:98:f8:47:a0:d2:84:7a:d8:80:f9:2c:34:7a:cd:75:f4:71:
fc:d9:31:26:78:c9:cf:9c:8c:8c:4e:bb:83:a1:25:69:7d:97:
ed:de:c9:f8:ef:fe:46:db:5d:f6:62:6d:3d:a8:c4:88:92:35:
a0:2d:1e:7f:e1:5e:c6:77:f3:df:d6:71:72:7e:1d:8a:f9:a5:
3d:99:79:62:15:6b:28:db:35:52:bf:34:44:b2:1d:f1:15:43:
7b:25:b3:cf:4c:9c:90:22:3e:5a:38:1f:ad:00:40:59:a2:47:
f9:ef:3e:4e:f6:03:6f:62:99:74:1a:35:af:c7:e1:31:12:d2:
9f:a9:b9:da:58:2d:bc:db:06:34:d6:b4:cb:a3:3d:06:82:4a:
82:83:5a:2b:02:37:94:e8:f8:c3:b7:19:2c:f9:ad:cb:ff:1e:
7b:cd:b2:4b:8b:f9:3c:45:d4:2f:90:0b:bd:49:57:a2:06:63:
0e:b2:02:91:8a:89:1d:b9:b5:c4:81:86:f2:9a:77:56:8d:43:
f2:77:71:74:6c:98:b1:b3:58:c4:76:9e:d1:fc:6e:d2:d8:3d:
8f:de:45:ce:67:6c:75:69:68:2b:48:0e:6a:54:9e:a8:d0:87:
5d:4f:10:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:27:11 2025 by rpki-client