Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/299/RrsRJqNZOKeUit2k0izGfAroVE8.roa
File: RrsRJqNZOKeUit2k0izGfAroVE8.roa (raw, json)
Hash identifier: FAjFrd5/aM3B5zRgqUsAbSNm+MQrNdwPiNuPWpr6Cyo=
Subject key identifier: 46:BB:11:26:A3:59:38:A7:94:8A:DD:A4:D2:2C:C6:7C:0A:E8:54:4F
Certificate issuer: /CN=D8F1514508AFC38E51743B6CB58BA6561EDD3BB9
Certificate serial: 3E
Authority key identifier: D8:F1:51:45:08:AF:C3:8E:51:74:3B:6C:B5:8B:A6:56:1E:DD:3B:B9
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/RrsRJqNZOKeUit2k0izGfAroVE8.roa
Signing time: Thu 01 Feb 2024 01:29:53 +0000
ROA not before: Thu 01 Feb 2024 01:29:53 +0000
ROA not after: Tue 14 Jan 2025 01:30:02 +0000
asID: 23637
IP address blocks: 202.9.208.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62 (0x3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D8F1514508AFC38E51743B6CB58BA6561EDD3BB9
Validity
Not Before: Feb 1 01:29:53 2024 GMT
Not After : Jan 14 01:30:02 2025 GMT
Subject: CN=46BB1126A35938A7948ADDA4D22CC67C0AE8544F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d8:4b:0c:ab:b4:f2:38:8c:33:ea:11:88:90:
f8:30:43:19:05:19:58:1a:43:8e:75:2e:20:29:38:
41:55:fa:b8:3b:30:70:07:55:bb:c3:2f:bc:a3:2d:
b2:bf:96:f4:c6:f4:c1:ba:47:a6:97:85:87:f1:71:
32:dd:8f:36:02:d1:1a:0e:61:30:a1:6f:38:a5:92:
c5:0d:bd:ec:08:77:9d:22:ed:19:c1:2c:21:0a:19:
24:0e:7c:3c:2e:fa:51:34:4f:fe:72:b3:62:14:1e:
44:8c:b0:64:84:d1:59:c6:8b:56:1e:06:23:7f:b6:
5e:5d:7a:57:6c:90:3d:b7:40:7d:ec:68:4f:e6:db:
4e:d2:cc:cf:38:39:e5:83:2b:51:55:12:87:d6:0e:
15:b7:bd:93:ea:35:57:26:c9:24:a4:1f:c1:c4:11:
a5:57:d7:04:6c:23:c9:3e:4a:9a:cf:10:09:0d:e0:
17:88:d2:eb:e6:6e:be:35:b0:ca:2e:a3:e3:11:e2:
92:65:52:9c:ca:8a:3d:df:86:07:d1:45:4c:2b:7f:
c8:1d:15:0b:30:e0:44:c5:3f:e8:3f:a0:38:03:74:
c5:98:ca:59:61:89:01:88:41:9b:7d:4c:0e:fe:2b:
69:6a:b2:00:01:45:f4:43:5e:c3:6c:13:0d:ff:89:
a3:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:BB:11:26:A3:59:38:A7:94:8A:DD:A4:D2:2C:C6:7C:0A:E8:54:4F
X509v3 Authority Key Identifier:
keyid:D8:F1:51:45:08:AF:C3:8E:51:74:3B:6C:B5:8B:A6:56:1E:DD:3B:B9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/2PFRRQivw45RdDtstYumVh7dO7k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/RrsRJqNZOKeUit2k0izGfAroVE8.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.9.208.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:d6:fe:f7:9d:2a:ff:1f:e3:b9:ce:12:3c:57:3f:03:64:57:
69:cc:d2:34:c4:f7:53:98:17:8e:d2:9a:95:48:65:f9:e4:8d:
ab:06:c9:4e:93:95:25:ec:c1:46:fd:07:61:b3:b5:af:4c:e4:
00:10:1e:38:f1:1a:b0:d8:ba:7e:c2:77:60:59:97:2c:14:9d:
92:68:4d:5c:a3:75:cb:cb:25:d2:9e:94:18:31:e8:78:61:3c:
45:dd:ac:a4:dd:40:08:64:b6:88:44:7c:78:85:9d:8e:7d:3b:
55:2d:c2:f9:d0:fe:3a:15:46:f4:a2:80:47:b7:35:a6:90:51:
05:e8:18:9b:ff:f8:7d:ff:18:f5:d8:fc:36:87:c5:3d:de:15:
53:5a:b5:15:2e:40:32:8e:14:13:58:cb:c0:29:7c:ec:4b:a4:
1b:57:aa:7e:d7:eb:fc:db:13:be:86:85:c5:77:78:80:51:a6:
fb:4c:7f:97:b9:79:4a:20:b2:5a:ec:c6:34:55:00:32:fe:cc:
c4:6e:7f:d4:b2:5d:71:d3:32:cc:58:9e:da:7e:ee:27:51:ac:
57:44:ba:43:b5:25:5d:49:67:9c:c2:1e:5b:86:a6:2a:d4:14:
dd:11:d3:98:20:78:fe:d3:5b:ee:fa:31:ff:f9:fc:94:fe:b6:
8e:ea:58:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:04:27 2025 by rpki-client