Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/BNl3fcmeF8YYG_PjjiatLEJbmz0.roa
File: BNl3fcmeF8YYG_PjjiatLEJbmz0.roa (raw, json)
Hash identifier: BpnC2eaLlg8xqrvCk1j/Fx6vytYhEflNwv0K4XOqyb4=
Subject key identifier: 04:D9:77:7D:C9:9E:17:C6:18:1B:F3:E3:8E:26:AD:2C:42:5B:9B:3D
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0260
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BNl3fcmeF8YYG_PjjiatLEJbmz0.roa
Signing time: Tue 30 May 2023 16:34:13 +0000
ROA not before: Tue 30 May 2023 16:34:13 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 183.75.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 608 (0x260)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:34:13 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=04D9777DC99E17C6181BF3E38E26AD2C425B9B3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ed:e6:fe:6f:22:dc:12:78:7d:46:a3:31:2f:
da:3f:97:75:8c:cc:8a:74:de:34:e5:34:80:82:69:
4d:5d:a7:19:10:78:ed:5a:5a:fc:34:de:34:86:ac:
b1:6d:70:74:b3:eb:b5:73:6b:00:14:e9:0a:de:96:
5d:49:a8:6a:9d:9b:c9:bc:c6:54:d2:47:ba:1d:13:
cb:fe:a1:90:bf:4e:d4:62:f8:75:1c:5e:4b:42:9d:
a3:32:f1:99:be:fc:b7:6c:a9:38:ea:89:14:5c:04:
54:7c:3a:a6:d3:96:90:42:5a:79:e5:33:12:a4:54:
ab:66:8e:02:2d:43:41:8d:ab:11:53:2c:2f:99:af:
80:93:e0:4b:99:3e:10:d3:71:f6:fb:6e:52:62:8d:
22:b8:e3:12:54:c8:a5:25:04:a3:8a:29:a9:46:1d:
cf:14:d3:de:2e:77:91:bf:b7:16:73:5d:d7:05:62:
1a:b5:6f:56:07:0e:06:32:33:80:18:14:a7:f6:b0:
d4:ef:1a:d0:72:6f:f7:42:60:e3:f3:c7:d0:a0:94:
3f:9f:e3:af:c2:ea:9c:6a:59:08:14:eb:da:f0:08:
7e:b1:38:38:4a:41:7f:bc:d6:b1:70:ac:33:8c:2b:
26:6d:99:ff:fa:b7:05:3e:b2:22:2c:fb:72:8d:ab:
ab:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:D9:77:7D:C9:9E:17:C6:18:1B:F3:E3:8E:26:AD:2C:42:5B:9B:3D
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BNl3fcmeF8YYG_PjjiatLEJbmz0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
183.75.196.0/24
Signature Algorithm: sha256WithRSAEncryption
52:a0:90:96:27:e5:bc:98:d6:6d:40:f6:3a:37:45:c5:f4:85:
5c:4b:d1:df:4a:04:2f:6b:b3:8e:a7:23:88:6b:90:0d:ad:c0:
aa:dc:97:e4:da:98:64:fa:ca:f7:5d:ff:02:d1:ed:ec:69:d9:
24:e0:80:81:df:fe:39:4a:cc:29:95:fa:03:85:2f:80:58:f0:
52:f0:b6:56:9b:c0:fe:b1:e8:9e:f6:e6:cc:32:5a:2a:c1:63:
b5:8d:40:d0:63:88:ab:89:51:c5:4a:f2:61:21:43:78:24:34:
cf:e0:51:9f:d1:f4:33:89:40:e8:8a:71:36:9a:f2:f8:88:09:
be:43:b0:6b:2e:bd:61:f7:99:30:fc:83:20:08:63:03:93:2f:
cc:60:f3:f4:9c:74:be:61:ef:65:28:15:3b:79:d0:74:e9:43:
a3:52:d2:3c:7c:97:f7:4a:c9:ce:9c:0f:7e:3d:5e:d1:5c:92:
bc:24:b1:a5:e0:64:31:00:78:a5:68:ce:2f:3b:16:b9:b7:14:
80:ec:a5:0a:86:cf:4e:4f:e7:e3:81:b9:4e:27:ad:00:b3:07:
e0:c9:1b:29:97:db:a0:5d:f8:6c:54:d1:9b:9a:b1:88:00:46:
5f:9b:6b:4b:9e:d1:fb:ba:cb:02:05:49:13:8b:98:b1:fb:9b:
df:27:10:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:03:49 2025 by rpki-client