Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30175/QdcLbaElm1XUOYY-BaUpV0emsKk.roa
File: QdcLbaElm1XUOYY-BaUpV0emsKk.roa (raw, json)
Hash identifier: 6286o7feSPZ4Am5BIkaNy1LN+dGT5lurtPuA9/P2v8g=
Subject key identifier: 41:D7:0B:6D:A1:25:9B:55:D4:39:86:3E:05:A5:29:57:47:A6:B0:A9
Certificate issuer: /CN=DFBCD3F8BCA91915C4533A2C0A69C3D35B2E688D
Certificate serial: 14
Authority key identifier: DF:BC:D3:F8:BC:A9:19:15:C4:53:3A:2C:0A:69:C3:D3:5B:2E:68:8D
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/37zT-LypGRXEUzosCmnD01suaI0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/QdcLbaElm1XUOYY-BaUpV0emsKk.roa
Signing time: Tue 28 Nov 2023 04:39:22 +0000
ROA not before: Tue 28 Nov 2023 04:39:22 +0000
ROA not after: Thu 14 Nov 2024 01:30:03 +0000
asID: 37899
IP address blocks: 240b:253::/32 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20 (0x14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFBCD3F8BCA91915C4533A2C0A69C3D35B2E688D
Validity
Not Before: Nov 28 04:39:22 2023 GMT
Not After : Nov 14 01:30:03 2024 GMT
Subject: CN=41D70B6DA1259B55D439863E05A5295747A6B0A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:99:2e:c2:94:2c:a2:88:23:88:53:12:be:d4:
7c:96:62:f8:19:5b:26:a1:6c:be:e1:be:fa:ec:e3:
49:78:62:85:7a:31:a0:e5:fa:e4:99:e1:3b:66:43:
6a:5b:1b:45:28:7b:8a:d5:68:74:13:e4:e1:9f:cc:
ee:c9:5f:ef:bd:4a:b8:52:bd:58:6b:bd:30:74:10:
7a:bc:bc:b1:22:dc:ee:c6:f4:c1:fa:d4:a9:99:8a:
43:ba:95:44:b3:41:c4:18:73:8c:67:cf:9b:02:39:
0f:c7:26:25:dd:b2:26:4c:01:89:10:d7:37:05:82:
f4:12:dc:df:7c:4e:60:cb:b4:98:b0:76:64:1b:1e:
af:58:a4:28:16:7d:6e:25:50:63:f2:cd:7d:4e:0d:
53:1b:5e:46:c9:07:8b:c8:e0:8c:8b:b0:01:c4:5d:
92:80:e4:fc:31:27:81:53:22:00:94:d0:8e:59:a2:
1d:fd:39:8d:ae:d9:cf:11:2a:0f:3c:41:25:dc:a4:
dd:43:1c:24:eb:21:f7:dc:d7:cc:56:bc:f9:d9:5f:
79:52:31:30:ef:68:6f:1a:fa:bf:7c:b3:f2:1c:d7:
44:9f:a0:17:57:59:56:bf:89:13:a9:de:3f:3e:8d:
41:c1:61:e1:7d:46:eb:ed:c9:86:54:cc:d3:70:02:
7a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:D7:0B:6D:A1:25:9B:55:D4:39:86:3E:05:A5:29:57:47:A6:B0:A9
X509v3 Authority Key Identifier:
keyid:DF:BC:D3:F8:BC:A9:19:15:C4:53:3A:2C:0A:69:C3:D3:5B:2E:68:8D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/37zT-LypGRXEUzosCmnD01suaI0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/QdcLbaElm1XUOYY-BaUpV0emsKk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
240b:253::/32
Signature Algorithm: sha256WithRSAEncryption
b2:dc:4a:09:0d:03:1a:86:24:50:a2:9d:bb:f4:8f:32:46:1e:
d6:43:4d:39:07:50:20:4b:cc:8d:88:d2:9e:d9:b7:d2:00:d6:
d3:18:59:d9:f4:77:88:bb:e7:d0:75:fe:75:67:e0:f8:ed:34:
af:98:5d:b7:94:df:5a:e7:a6:b8:54:52:53:4e:e8:2f:2f:a4:
81:18:17:bb:a0:9d:1c:bd:5d:42:19:c0:f4:32:69:fb:9c:0a:
ff:9c:2e:be:2c:ea:21:81:b5:89:5b:cc:58:6b:15:6c:a6:8f:
7b:a2:db:12:c7:ee:21:7f:12:db:c7:eb:cc:90:73:fa:58:db:
ba:97:b1:ad:69:f4:b6:46:71:c4:0f:a0:c6:ef:73:ad:74:54:
e6:6a:d4:a6:ed:d8:f3:ca:e6:e0:e9:ba:18:55:97:fd:53:64:
91:d4:16:53:62:67:6c:3a:f2:b5:93:24:3d:2e:f9:ec:cc:10:
2d:ec:c2:45:9e:d5:bd:81:fa:88:6e:57:6f:9b:67:f1:01:3a:
cb:91:aa:50:33:d2:2a:fc:6c:a0:29:03:91:b7:08:a9:8d:19:
06:04:6a:87:33:3d:a1:43:b9:fb:4a:76:ce:8d:b5:24:a7:5c:
76:6a:b3:a0:6f:d0:42:c9:90:a7:41:32:54:46:8d:d8:f3:c8:
7d:25:f8:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:20:53 2025 by rpki-client