Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/yhXi5pD05A6nzscGeZf6Vw5Q1Ts.roa
File: yhXi5pD05A6nzscGeZf6Vw5Q1Ts.roa (raw, json)
Hash identifier: eU68BHfPl1WRby2tLKiAuE0ZfdCxTyiyIZtdF0Mm2U8=
Subject key identifier: CA:15:E2:E6:90:F4:E4:0E:A7:CE:C7:06:79:97:FA:57:0E:50:D5:3B
Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A
Certificate serial: 18
Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/yhXi5pD05A6nzscGeZf6Vw5Q1Ts.roa
Signing time: Wed 10 Jan 2024 00:59:07 +0000
ROA not before: Wed 10 Jan 2024 00:59:07 +0000
ROA not after: Sat 14 Dec 2024 01:30:03 +0000
asID: 2514
IP address blocks: 140.227.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24 (0x18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A
Validity
Not Before: Jan 10 00:59:07 2024 GMT
Not After : Dec 14 01:30:03 2024 GMT
Subject: CN=CA15E2E690F4E40EA7CEC7067997FA570E50D53B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:5c:a3:87:48:be:bd:57:d2:02:b0:eb:b3:78:
1b:17:fc:72:49:b6:70:b7:22:64:c9:1b:4c:3f:35:
d1:c7:6a:97:05:ba:3f:4c:27:0e:fc:3e:50:81:99:
38:3a:63:ed:66:82:85:f8:56:0b:72:b6:cf:27:0a:
9b:ce:0d:8c:87:b7:a6:df:7a:26:23:69:be:d2:0f:
c3:e8:20:6d:e8:e3:ff:46:62:9a:d4:89:89:8e:f3:
23:10:f6:bd:c1:95:f7:3f:2b:36:78:5c:4b:9f:59:
cf:48:c2:63:8a:8c:e0:d7:7e:a1:cc:f0:e7:57:30:
3d:5d:bf:43:59:9f:62:c5:e2:94:6f:13:25:0f:92:
22:aa:9b:7b:79:16:04:bf:1b:0a:ef:8b:bd:0d:d9:
a7:b6:a4:05:0a:fc:78:a9:35:9c:f8:b5:7b:79:ac:
15:38:f9:7e:ea:e4:49:31:9d:24:92:0c:26:4d:34:
06:ed:5d:07:35:ce:2d:ed:9d:5e:4d:1e:ea:27:97:
c4:81:03:e0:84:c7:50:cd:13:dc:13:a9:2c:68:15:
1b:8e:14:cd:90:b5:3f:a7:72:35:67:ce:df:7d:aa:
01:7f:93:c1:f8:7d:51:2c:92:22:56:12:ce:2b:b6:
0b:12:86:8e:ad:53:39:f8:4a:35:e5:9c:a9:dc:55:
5d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:15:E2:E6:90:F4:E4:0E:A7:CE:C7:06:79:97:FA:57:0E:50:D5:3B
X509v3 Authority Key Identifier:
keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/yhXi5pD05A6nzscGeZf6Vw5Q1Ts.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
140.227.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a4:87:8c:b5:9d:6c:4a:41:fa:bc:db:8f:3f:5b:a7:bc:0b:1f:
9b:62:a7:2a:1f:84:1f:1d:05:8f:09:80:18:24:ff:46:71:56:
e5:df:2d:7d:0a:99:e5:23:0a:e3:ee:53:19:e0:24:df:59:c8:
4a:09:44:e2:ef:af:1f:eb:28:dd:be:80:9d:0b:ea:59:86:3c:
73:17:64:21:5e:04:92:ac:96:a9:1e:5e:8e:54:20:5a:12:3a:
97:fb:59:e3:9b:d7:6a:31:1f:80:aa:1c:27:78:1a:ec:4f:a2:
58:ab:81:ce:a2:1b:72:d9:41:6a:a7:6b:d5:a4:97:c0:7b:1c:
c0:d6:cb:07:1e:a5:90:be:58:b3:98:8a:33:f5:da:d4:65:d7:
84:ba:88:8d:0e:77:98:7c:3e:28:ac:09:a3:bf:11:36:b1:fb:
f7:02:b8:50:00:fa:2a:78:34:bd:2e:45:b7:82:5a:e3:b2:86:
ee:b5:30:3a:7a:d9:f9:92:c6:07:74:64:b4:f9:b4:b5:73:97:
d4:e6:5a:17:ba:4c:4f:28:08:49:a8:53:6b:a6:08:40:61:89:
e7:41:d8:42:45:81:ef:b6:3b:64:f4:d2:af:cc:70:6b:a2:a5:
1a:58:ac:13:05:a5:3a:a9:52:a2:10:7c:52:d2:23:b3:99:45:
e2:22:a0:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 01:46:11 2025 by rpki-client