Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30144/mCa5MLE43bQG7i_kTEyIXVj4ssk.roa
File: mCa5MLE43bQG7i_kTEyIXVj4ssk.roa (raw, json)
Hash identifier: stJkyK6WqWpUQFOsyFWSuu6foJz3A+XBOrR+sAdssiE=
Subject key identifier: 98:26:B9:30:B1:38:DD:B4:06:EE:2F:E4:4C:4C:88:5D:58:F8:B2:C9
Certificate issuer: /CN=87DAEC20EDF4A2010423DD7B004E1574F113A735
Certificate serial: 20
Authority key identifier: 87:DA:EC:20:ED:F4:A2:01:04:23:DD:7B:00:4E:15:74:F1:13:A7:35
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/h9rsIO30ogEEI917AE4VdPETpzU.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30144/mCa5MLE43bQG7i_kTEyIXVj4ssk.roa
Signing time: Mon 01 Jan 2024 01:31:02 +0000
ROA not before: Mon 01 Jan 2024 01:31:02 +0000
ROA not after: Sat 14 Dec 2024 01:30:03 +0000
asID: 17676
IP address blocks: 2403:7a00::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32 (0x20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87DAEC20EDF4A2010423DD7B004E1574F113A735
Validity
Not Before: Jan 1 01:31:02 2024 GMT
Not After : Dec 14 01:30:03 2024 GMT
Subject: CN=9826B930B138DDB406EE2FE44C4C885D58F8B2C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:cc:27:cf:ac:e1:77:f1:49:69:fd:8f:a4:fd:
0c:12:68:9b:44:be:7f:1a:82:c9:e8:53:6c:da:77:
e4:4e:07:b0:2c:c6:a0:d8:60:18:67:0a:66:e1:90:
af:44:f1:47:df:99:60:2a:9c:93:f1:e4:77:1f:82:
3d:49:3a:31:d2:ca:0f:54:6f:88:d7:e6:d4:55:eb:
2a:48:9b:28:6b:11:67:b0:6d:ba:da:a1:ec:f9:c9:
26:80:98:c8:59:75:6d:0c:84:98:ea:27:c8:a6:23:
ba:30:0c:f7:eb:e5:bc:09:8d:1f:e6:31:54:66:55:
cc:af:b8:36:aa:ec:0e:ec:60:a0:02:91:c8:b2:c2:
ff:5b:43:3a:a4:36:6d:59:17:ca:e2:1a:6c:50:bd:
13:85:38:b3:28:52:ca:93:da:be:26:88:1c:05:14:
a8:0a:ac:ec:69:c1:51:f0:3a:38:8e:bd:30:7c:ec:
a5:e3:f9:3d:83:7b:d5:69:59:ed:f7:f6:2a:c1:47:
a0:30:ae:20:9c:12:04:8a:a1:1f:e2:36:2e:1a:ac:
0b:87:26:4a:fc:62:98:11:03:ec:11:6b:dd:9c:e6:
44:e5:48:3a:ec:23:74:bc:6e:62:c5:51:52:fa:d7:
9e:19:df:94:e6:c8:1a:af:a2:c5:5c:61:e5:f2:25:
88:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:26:B9:30:B1:38:DD:B4:06:EE:2F:E4:4C:4C:88:5D:58:F8:B2:C9
X509v3 Authority Key Identifier:
keyid:87:DA:EC:20:ED:F4:A2:01:04:23:DD:7B:00:4E:15:74:F1:13:A7:35
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30144/h9rsIO30ogEEI917AE4VdPETpzU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/h9rsIO30ogEEI917AE4VdPETpzU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30144/mCa5MLE43bQG7i_kTEyIXVj4ssk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:7a00::/32
Signature Algorithm: sha256WithRSAEncryption
45:6d:00:b7:20:a5:11:cf:5b:5f:43:83:b8:1f:69:66:80:0b:
63:74:14:2a:90:b5:e8:fb:e3:e7:c1:f7:1f:cd:4f:45:e0:41:
36:5b:b3:97:b8:f0:80:75:85:07:e1:b2:fb:48:31:0a:34:97:
65:60:8a:6c:81:c6:8d:42:c8:37:2e:4a:6a:cd:e8:8c:c6:d4:
ed:60:e1:af:04:79:07:dc:b3:d1:cd:d4:7a:db:0b:42:47:3c:
01:7b:ff:c2:4d:54:3e:a0:80:bc:e5:d4:39:2f:8f:86:81:33:
b5:cc:1b:04:4b:44:e5:14:46:0e:23:92:6a:35:17:0b:a2:11:
51:a4:ac:37:0f:a5:98:8a:a6:06:e5:80:f8:fe:b5:f4:65:da:
51:4d:f2:ac:af:a4:93:a0:de:bc:ba:f9:9f:36:70:19:17:d6:
e9:4d:b2:6a:ca:3f:88:72:01:0d:d2:91:76:67:91:f3:3c:d6:
35:ae:66:24:e3:7e:35:c1:e5:af:7a:98:ca:b4:5a:92:41:23:
81:f9:47:51:5b:a8:a6:cc:8a:0a:9b:4d:8c:7c:78:dd:63:e1:
f3:5e:31:c6:ca:37:b4:43:3f:4d:33:8c:7d:65:6b:58:7e:60:
c6:26:29:99:f9:ae:2e:37:7b:32:53:a0:72:2f:9a:26:e2:37:
7c:77:44:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:02:49 2025 by rpki-client