Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/OkBVfjHDwuiw1uj8KHnKbnMD7W0.roa
File: OkBVfjHDwuiw1uj8KHnKbnMD7W0.roa (raw, json)
Hash identifier: YJvRXO6ifC/CW/e11U+u48c8fUHS00ISq6WOHwjJRso=
Subject key identifier: 3A:40:55:7E:31:C3:C2:E8:B0:D6:E8:FC:28:79:CA:6E:73:03:ED:6D
Certificate issuer: /CN=06FA662194FCF1EB983AB44CC913004180770D18
Certificate serial: 2F
Authority key identifier: 06:FA:66:21:94:FC:F1:EB:98:3A:B4:4C:C9:13:00:41:80:77:0D:18
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BvpmIZT88euYOrRMyRMAQYB3DRg.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/OkBVfjHDwuiw1uj8KHnKbnMD7W0.roa
Signing time: Thu 25 Jan 2024 01:22:37 +0000
ROA not before: Thu 25 Jan 2024 01:22:37 +0000
ROA not after: Tue 14 Jan 2025 01:30:02 +0000
asID: 2514
IP address blocks: 211.2.160.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47 (0x2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06FA662194FCF1EB983AB44CC913004180770D18
Validity
Not Before: Jan 25 01:22:37 2024 GMT
Not After : Jan 14 01:30:02 2025 GMT
Subject: CN=3A40557E31C3C2E8B0D6E8FC2879CA6E7303ED6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:de:19:3c:be:a5:d8:76:2f:ce:b8:8f:ee:e9:
4b:b3:53:fb:c2:d5:7a:c2:b3:8d:d1:31:93:a2:cc:
66:bb:82:6b:80:99:fa:27:62:eb:02:d5:ce:83:7b:
5e:cc:b9:f8:02:07:28:bc:f9:dc:ea:6a:b0:70:e8:
8b:53:ac:fc:f6:ba:9d:01:e5:4e:07:8d:79:8e:b2:
d8:9c:3e:0f:5a:0d:0a:6a:3e:d2:af:08:e1:17:6b:
aa:01:f5:ee:52:c6:fd:39:b0:32:8c:99:af:9b:1e:
7a:c1:c1:8b:77:47:6f:30:a5:ef:4a:64:14:31:6a:
87:25:cf:c4:58:47:38:be:ba:db:c0:40:89:0a:ab:
c7:3e:2e:8f:34:d2:23:b0:bc:c9:f0:3a:93:3a:86:
0f:44:c4:2a:e8:91:95:74:fa:e2:44:1a:c7:7f:68:
04:eb:71:31:4a:92:f1:86:9c:d5:85:93:91:bf:06:
e5:b8:db:eb:28:e5:c6:11:ce:fa:b9:2c:41:d1:de:
eb:0c:ab:22:27:d8:df:81:7f:31:28:37:4a:64:e1:
6c:0c:e1:72:ba:91:d4:94:c6:1c:1f:b2:5e:9c:05:
df:b1:06:44:37:e6:e0:c4:d1:52:a8:53:8e:3f:80:
1c:02:f0:ab:b2:70:d4:ca:3b:97:46:36:f9:21:23:
c3:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:40:55:7E:31:C3:C2:E8:B0:D6:E8:FC:28:79:CA:6E:73:03:ED:6D
X509v3 Authority Key Identifier:
keyid:06:FA:66:21:94:FC:F1:EB:98:3A:B4:4C:C9:13:00:41:80:77:0D:18
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/BvpmIZT88euYOrRMyRMAQYB3DRg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BvpmIZT88euYOrRMyRMAQYB3DRg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/OkBVfjHDwuiw1uj8KHnKbnMD7W0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
211.2.160.0/20
Signature Algorithm: sha256WithRSAEncryption
7e:4e:af:71:37:0c:a6:34:a8:a5:e3:b3:82:0d:cc:e7:fa:57:
bc:d6:57:e0:68:41:9f:3f:11:35:b5:cf:c0:9e:75:3e:31:f7:
5c:c0:1c:bd:81:dd:24:76:10:32:76:73:b6:f5:a8:fd:46:43:
55:9d:b6:22:7a:5a:50:a5:77:65:67:88:46:b2:c8:87:e9:d6:
a8:cd:7d:9d:2f:4a:ce:47:12:08:92:7b:6a:f3:1f:1b:65:c6:
18:ac:cb:ce:da:9b:a9:d8:40:90:28:90:27:94:4e:8e:14:ec:
74:03:fe:69:5e:46:3d:9f:35:d5:a7:1f:cc:a5:a3:73:a5:0e:
2e:d4:30:89:e5:08:d5:10:2a:c8:8e:fa:b3:d1:16:48:3c:41:
4c:0a:e8:f7:71:b8:80:3e:d4:39:eb:5c:04:e1:bc:f4:9d:d4:
29:b2:f3:28:6a:54:76:31:fb:75:d3:f6:94:89:6e:de:bb:9e:
e6:9f:06:45:2c:25:78:63:fc:ab:82:6f:76:c9:14:c1:d3:e0:
b2:2b:09:d2:c9:62:a8:91:40:40:3f:c1:58:74:08:e4:8d:83:
8e:a2:a6:c2:81:f7:6f:58:e6:ae:62:80:fd:87:d1:ca:f5:7a:
86:43:8e:a6:81:c6:40:3c:8c:51:4f:ae:a6:b0:48:eb:7b:c4:
b3:34:09:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:11:12 2025 by rpki-client