Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/OvPYeTtcQcGQhXjAgFqVDH0JsJY.roa
File: OvPYeTtcQcGQhXjAgFqVDH0JsJY.roa (raw, json)
Hash identifier: PPhFRxaoYtqyMnoDrQvEhmS05g1KtOEEKKW6HM1il+Q=
Subject key identifier: 3A:F3:D8:79:3B:5C:41:C1:90:85:78:C0:80:5A:95:0C:7D:09:B0:96
Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A
Certificate serial: 2B
Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/OvPYeTtcQcGQhXjAgFqVDH0JsJY.roa
Signing time: Wed 10 Jan 2024 01:11:10 +0000
ROA not before: Wed 10 Jan 2024 01:11:10 +0000
ROA not after: Sat 14 Dec 2024 01:30:03 +0000
asID: 2514
IP address blocks: 160.248.74.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43 (0x2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A
Validity
Not Before: Jan 10 01:11:10 2024 GMT
Not After : Dec 14 01:30:03 2024 GMT
Subject: CN=3AF3D8793B5C41C1908578C0805A950C7D09B096
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:61:41:39:e6:50:01:17:39:6f:42:88:be:dd:
41:df:51:6e:23:ad:9a:c3:e0:70:82:b7:35:f1:d8:
d1:aa:0a:c4:33:d2:ab:82:cd:e5:de:6c:30:ec:d0:
c3:af:6d:d0:79:7e:3c:bd:70:6e:f5:a1:36:96:0e:
2c:63:44:f1:3f:8e:e9:d4:73:63:82:f8:14:17:10:
a4:36:46:14:a3:89:7c:3f:d0:2f:0b:be:1d:30:64:
4d:b6:3b:5a:52:e3:8f:8b:e7:a9:ae:58:50:f3:3f:
ce:47:1b:1f:20:c9:39:fb:59:02:b7:23:23:bc:c7:
34:97:de:48:d2:2d:32:d9:b4:cb:3e:33:f4:c6:f7:
34:a1:96:0a:3c:09:da:b4:ae:71:68:a9:0c:31:5f:
58:f0:38:95:23:e6:1f:e3:a4:c1:fd:8e:17:e7:1d:
1f:93:0e:2e:86:07:f6:c1:da:2b:62:99:5e:a6:ea:
50:be:81:dd:fd:dd:df:b1:54:d3:d4:72:f9:c1:a9:
74:64:dd:65:b2:6f:5b:47:c1:7a:d8:87:39:ab:65:
6c:92:4c:a4:64:ac:02:34:8f:6d:0b:e8:c8:33:fa:
5a:d5:c1:60:78:dc:0a:2a:4c:bb:7d:71:b9:84:7b:
f8:79:5c:fc:0d:f0:1b:c3:e9:df:9c:f3:01:3f:0c:
52:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:F3:D8:79:3B:5C:41:C1:90:85:78:C0:80:5A:95:0C:7D:09:B0:96
X509v3 Authority Key Identifier:
keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/OvPYeTtcQcGQhXjAgFqVDH0JsJY.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.248.74.0/23
Signature Algorithm: sha256WithRSAEncryption
ac:d7:f9:09:e3:22:a7:ea:31:9a:59:61:4b:77:c9:50:c2:10:
09:29:39:78:77:0d:ee:63:aa:32:48:1f:a7:d3:6e:f3:13:bf:
e1:95:2a:8d:f7:03:90:9d:92:94:3b:87:0f:78:a5:e0:d6:51:
d7:b2:3a:1d:9d:82:96:5a:ec:c3:b2:39:fd:6a:ee:ac:6a:e4:
14:1d:f6:db:05:2c:56:a8:de:59:70:01:81:1a:eb:09:ad:7d:
60:cb:0f:89:a5:ab:c0:d5:2d:55:91:ec:1c:4e:cc:28:2b:97:
3a:17:e2:f7:e0:89:a9:7f:52:49:97:61:28:aa:1b:4d:2d:04:
ac:7a:d3:d6:9c:55:db:c0:49:2b:34:5f:e6:fb:52:06:6b:0a:
d4:aa:65:7f:7d:8a:68:25:e1:f5:cb:f7:ac:45:d3:24:2e:b2:
c6:8d:70:f1:ac:c8:71:20:65:6b:09:18:33:c6:d8:b3:42:dd:
24:c7:b3:b3:f8:ea:58:4a:e9:21:d0:52:9f:87:7f:f0:06:dc:
05:f6:23:ea:d8:07:45:80:f9:6d:49:b2:7a:0d:cf:8a:12:7a:
64:bf:02:d0:23:22:7e:27:d1:1c:65:3b:90:5b:cc:11:2c:bb:
4e:c3:6c:30:8e:91:be:2e:7d:20:74:1e:9b:59:0e:75:59:4d:
ce:d0:d1:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 01:42:07 2025 by rpki-client