Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/7wXVmU7dEvMxbf0QxDauRX1X-30.roa
File: 7wXVmU7dEvMxbf0QxDauRX1X-30.roa (raw, json)
Hash identifier: axDWkjzSakuVopUWZExRiJ++/3nC3ZfHMIcKIg4kd8c=
Subject key identifier: EF:05:D5:99:4E:DD:12:F3:31:6D:FD:10:C4:36:AE:45:7D:57:FB:7D
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0273
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/7wXVmU7dEvMxbf0QxDauRX1X-30.roa
Signing time: Tue 30 May 2023 16:34:20 +0000
ROA not before: Tue 30 May 2023 16:34:20 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 220.159.32.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 627 (0x273)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:34:20 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=EF05D5994EDD12F3316DFD10C436AE457D57FB7D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e9:7b:3c:12:98:f0:57:55:ca:04:b2:3f:3b:
02:79:8f:eb:ab:da:a9:6d:2e:61:4a:60:e5:e8:c3:
9b:4b:9d:80:78:da:10:95:8f:36:8e:04:bd:53:81:
1f:ad:a3:2e:06:8d:fb:73:01:2b:4d:42:eb:27:ff:
31:fa:c1:30:aa:72:d6:a1:ab:2a:b6:9e:82:f9:4e:
a6:bb:2f:b0:d0:b6:e8:63:d7:fa:71:a3:76:7e:42:
79:f7:c4:09:5d:37:ea:f1:59:b5:52:7d:1d:54:fc:
60:4b:91:76:04:e4:09:92:dd:77:9e:27:e1:d8:31:
0f:52:fc:1f:5e:c2:a1:17:73:57:cf:e3:2a:fa:54:
39:69:9f:b0:84:84:56:17:47:67:66:0a:b2:da:8a:
5b:a5:39:28:f7:64:6e:ae:d6:87:95:96:7c:fb:ca:
1a:e0:60:f3:78:5b:a7:f5:33:29:79:03:6b:d6:87:
a0:11:9c:50:46:c1:1e:f6:ce:cb:3a:18:88:e0:ba:
e9:1c:bf:13:4a:39:c3:83:40:4c:92:1b:40:78:c9:
05:4f:ee:f3:b3:f0:36:5d:dd:c3:e5:e8:8e:4f:62:
c2:d9:a3:c2:2e:8f:01:3a:8c:e3:7a:fa:5d:48:ed:
cc:32:1f:e0:6a:2c:32:72:52:79:61:c3:e0:fa:c4:
84:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:05:D5:99:4E:DD:12:F3:31:6D:FD:10:C4:36:AE:45:7D:57:FB:7D
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/7wXVmU7dEvMxbf0QxDauRX1X-30.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.159.32.0/20
Signature Algorithm: sha256WithRSAEncryption
b8:43:40:e6:50:49:69:84:5c:0f:5a:18:3e:37:7e:d6:37:ae:
54:d2:09:80:1b:14:4a:dc:68:66:a5:74:f1:b4:4f:2f:23:32:
91:59:da:57:71:0c:7c:36:e9:db:9e:cd:b4:0e:19:83:c7:d5:
32:78:01:63:3b:ae:3b:e2:d8:71:d2:05:d4:8e:3c:da:fd:c3:
3c:ab:04:b2:e7:b4:c8:c7:dc:0a:4a:5c:e8:e2:26:13:5f:ba:
86:0a:79:4b:5e:61:d4:f3:8a:66:61:c8:ea:1f:64:b5:41:28:
28:e3:44:c0:33:e6:f4:51:d6:6e:c5:d0:44:5b:a5:4c:8d:47:
35:3c:96:72:c4:2d:13:41:cc:00:a0:29:5e:98:78:04:e2:54:
5c:fe:32:18:37:bd:5b:cf:b4:08:67:75:28:4d:84:15:8d:ee:
a4:83:6d:95:97:dc:54:a8:d4:5d:da:c6:87:e8:37:bf:32:6a:
46:e4:ab:2c:51:c4:1c:51:28:6a:ac:31:04:1f:df:07:f8:2c:
5f:b5:aa:e9:7d:52:6e:a4:f2:fa:5f:25:9c:82:a7:80:99:00:
29:eb:10:6b:16:7f:bb:fd:70:0a:57:cf:02:a7:47:fc:6d:7e:
31:2b:d3:aa:a3:6b:50:d5:ae:1d:49:e5:8e:89:8a:d0:92:7c:
0b:3d:51:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:32:40 2025 by rpki-client