Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30175/olq1oGxpKPOfE0cy9vc1ydhl1J0.roa
File: olq1oGxpKPOfE0cy9vc1ydhl1J0.roa (raw, json)
Hash identifier: h0ioso/LgT2xf0OnmVFKpdhCZF+VaCFXoCZV0GyeIbs=
Subject key identifier: A2:5A:B5:A0:6C:69:28:F3:9F:13:47:32:F6:F7:35:C9:D8:65:D4:9D
Certificate issuer: /CN=DFBCD3F8BCA91915C4533A2C0A69C3D35B2E688D
Certificate serial: 0B
Authority key identifier: DF:BC:D3:F8:BC:A9:19:15:C4:53:3A:2C:0A:69:C3:D3:5B:2E:68:8D
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/37zT-LypGRXEUzosCmnD01suaI0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/olq1oGxpKPOfE0cy9vc1ydhl1J0.roa
Signing time: Tue 21 Nov 2023 06:20:31 +0000
ROA not before: Tue 21 Nov 2023 06:20:31 +0000
ROA not after: Thu 14 Nov 2024 01:30:03 +0000
asID: 2516
IP address blocks: 2404:9200::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11 (0xb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFBCD3F8BCA91915C4533A2C0A69C3D35B2E688D
Validity
Not Before: Nov 21 06:20:31 2023 GMT
Not After : Nov 14 01:30:03 2024 GMT
Subject: CN=A25AB5A06C6928F39F134732F6F735C9D865D49D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8a:20:c3:70:ab:19:12:90:e6:b9:1e:4c:19:
f3:b1:28:cd:13:75:ad:68:92:65:f5:ce:c9:22:7e:
6e:bf:b5:cd:76:2d:e9:83:95:45:3a:42:c3:23:00:
f8:c2:00:40:14:ca:33:f2:63:6c:34:29:ee:3e:c6:
1f:79:d7:6f:2b:01:15:a0:c0:42:23:70:06:26:01:
51:76:8b:1b:00:49:f5:d8:6c:76:11:77:1d:cb:0b:
96:63:e5:b7:3e:c4:24:4c:5f:b4:c0:61:e8:c9:05:
a0:74:de:ef:4d:f1:fe:f1:3d:d8:61:91:c7:16:d1:
7b:a1:17:2e:d2:df:c0:f1:87:ef:fa:62:50:10:20:
52:bf:80:5c:15:e6:47:bf:da:65:5a:71:3b:bb:bc:
2a:2f:4b:3c:d4:aa:05:8e:cd:14:66:e7:bb:ca:08:
3b:33:35:17:5f:c2:6a:80:47:d3:5a:f7:dc:94:f3:
1e:09:09:52:cf:bc:ac:59:98:98:23:70:e4:c0:c8:
77:13:1e:6b:7d:e9:9e:03:93:96:72:06:58:d1:fd:
67:3d:87:2b:7e:cb:a1:7b:4e:e2:89:0a:0e:7b:53:
ba:6f:90:52:1e:f5:17:9d:8b:b5:ff:41:d8:86:e0:
8c:71:e9:d1:b9:1e:1a:b6:6b:4a:6d:f2:8a:ed:bc:
73:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:5A:B5:A0:6C:69:28:F3:9F:13:47:32:F6:F7:35:C9:D8:65:D4:9D
X509v3 Authority Key Identifier:
keyid:DF:BC:D3:F8:BC:A9:19:15:C4:53:3A:2C:0A:69:C3:D3:5B:2E:68:8D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/37zT-LypGRXEUzosCmnD01suaI0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/olq1oGxpKPOfE0cy9vc1ydhl1J0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:9200::/32
Signature Algorithm: sha256WithRSAEncryption
4a:ec:e6:d4:1a:f8:9c:1d:55:74:45:2e:6f:12:4a:63:18:8f:
8f:4d:24:80:00:db:cf:04:0b:ae:cc:7d:e4:58:c6:9d:5a:d8:
81:6b:d8:a1:4b:12:9d:5f:4b:3b:5d:94:ae:fd:4d:5d:2a:1f:
88:cf:f8:b4:ca:11:75:1d:78:e7:6d:30:6c:4b:d0:16:21:78:
29:bd:99:94:39:59:0f:e2:6d:9b:de:f2:74:60:83:d1:e2:1f:
c0:ea:2a:ef:30:72:56:91:85:2e:7c:d9:e8:cb:1a:ed:56:98:
d7:f8:2b:0b:b8:e8:68:43:d2:70:2a:c0:dc:12:90:c1:80:77:
f6:6e:4b:00:81:8e:88:a7:ea:8f:97:fc:97:02:69:3d:43:a0:
d3:f0:bc:a9:1d:79:f2:c8:d2:5c:53:45:46:bd:b7:01:f3:35:
bf:bc:08:16:3c:5c:65:b3:e0:69:ad:78:54:76:3e:eb:b9:24:
be:53:10:a5:14:cb:06:01:4b:6f:c5:c3:b4:1b:89:31:f9:f2:
cf:ea:7a:77:45:d1:ce:95:21:bf:cd:4f:60:1a:62:d7:5d:6f:
33:1f:90:99:bb:43:2c:54:36:04:2e:f0:f2:dd:6c:10:3b:d1:
16:1f:4a:32:fa:e4:96:85:3e:9d:2b:4e:25:5b:2f:de:ec:d2:
03:9c:54:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:32:20 2025 by rpki-client