Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/9yrZEU2k6D5uShSzmJGxngj9dOg.roa
File: 9yrZEU2k6D5uShSzmJGxngj9dOg.roa (raw, json)
Hash identifier: gONHh45K11lI8+TW8bjCKZd4zuq9qfFexHTSANQcous=
Subject key identifier: F7:2A:D9:11:4D:A4:E8:3E:6E:4A:14:B3:98:91:B1:9E:08:FD:74:E8
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0459
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/9yrZEU2k6D5uShSzmJGxngj9dOg.roa
Signing time: Thu 27 Jul 2023 16:43:17 +0000
ROA not before: Thu 27 Jul 2023 16:43:17 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 1.79.170.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1113 (0x459)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:43:17 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=F72AD9114DA4E83E6E4A14B39891B19E08FD74E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8d:82:4e:ca:ca:0b:4d:9b:52:ff:14:2d:66:
7f:7c:9f:90:71:d9:01:c1:18:ff:8b:0a:97:43:11:
1d:df:86:06:14:dd:b1:72:1d:a6:62:56:e9:56:89:
72:d9:87:d5:94:73:ac:82:46:75:c0:95:b2:fb:a9:
8e:de:e6:a5:bf:df:96:60:9b:8d:6f:44:9e:9b:a3:
4e:ca:10:3c:19:6e:ef:ab:ed:78:4e:57:a9:31:24:
a3:b4:91:75:be:30:e5:9d:95:10:71:57:7a:e9:2a:
00:50:1c:ba:23:6d:bb:41:57:c9:54:67:22:75:b8:
5d:33:11:f3:a6:98:d0:4b:94:1e:1c:f2:bb:b4:02:
c3:eb:4c:d7:be:4b:87:0d:a8:52:d1:a0:68:23:b7:
bf:17:97:fe:db:a4:d8:d6:4a:71:0f:c1:b4:5c:fe:
2d:5b:3d:e3:d1:29:23:6f:cd:b9:68:e3:40:64:89:
d8:59:55:a2:55:6f:7b:57:1f:b8:61:72:44:c5:14:
64:a5:c0:08:8a:f1:21:d3:1e:80:7b:00:e3:15:f6:
43:47:90:05:f9:53:5a:45:e6:bc:41:88:05:95:49:
d4:34:eb:90:29:9d:7d:2e:bc:48:1f:15:de:4a:65:
da:6e:08:a1:db:f2:05:84:e4:27:e9:d9:76:38:43:
83:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:2A:D9:11:4D:A4:E8:3E:6E:4A:14:B3:98:91:B1:9E:08:FD:74:E8
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/9yrZEU2k6D5uShSzmJGxngj9dOg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.79.170.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:87:b0:76:11:9f:a9:ba:69:ee:bc:15:29:0f:e3:5f:74:38:
76:30:ac:04:59:fc:da:16:b0:be:48:cd:e3:54:5b:d2:c4:f1:
10:e3:bb:b3:ce:92:03:40:54:ab:de:3f:db:0d:45:80:ba:60:
3c:ac:7b:1f:cb:96:4e:34:34:16:ae:2e:0b:0b:1d:df:b7:5f:
a5:43:9a:4a:44:a0:d2:78:48:7d:58:b7:bd:3b:2f:2d:1c:d4:
68:e1:fe:da:04:a7:b1:d9:bf:a5:0f:fe:e4:81:ee:7f:b1:39:
27:d9:67:50:dc:00:25:39:8c:6b:67:11:89:0a:1a:ae:68:df:
03:35:1f:97:b2:ee:a0:da:c1:23:39:10:ea:12:7c:e5:3f:de:
7d:cc:9c:be:c6:9b:34:e2:97:24:41:bf:7c:2d:b9:c3:5a:ad:
51:73:93:05:02:9d:e4:64:5e:b2:89:23:fb:ca:da:27:3f:28:
29:a6:e3:4d:c2:76:4d:86:05:89:c5:5e:34:21:d4:6b:0a:bb:
da:a8:46:b2:22:04:ab:8e:5b:23:f3:34:03:9e:af:37:4a:50:
35:01:62:07:b4:f5:98:8f:55:d5:d9:42:9f:40:86:1d:9a:53:
d8:7a:3a:bc:ed:49:2b:b5:50:a8:06:15:e9:26:17:44:67:e1:
8e:cd:3a:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:04:05 2025 by rpki-client