Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/CX3rZ5GqD4lvHYuCm31y4CxDIJU.roa
File: CX3rZ5GqD4lvHYuCm31y4CxDIJU.roa (raw, json)
Hash identifier: +xc72hWC66PaPTtwvayCneZUOlk+nITRzybNPjMLuWA=
Subject key identifier: 09:7D:EB:67:91:AA:0F:89:6F:1D:8B:82:9B:7D:72:E0:2C:43:20:95
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0204
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CX3rZ5GqD4lvHYuCm31y4CxDIJU.roa
Signing time: Tue 30 May 2023 16:29:27 +0000
ROA not before: Tue 30 May 2023 16:29:27 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 220.159.224.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 516 (0x204)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:29:27 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=097DEB6791AA0F896F1D8B829B7D72E02C432095
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:70:39:0a:fa:d8:7e:d1:df:1c:1b:5f:cd:74:
c2:b9:28:04:f8:57:5c:88:d6:13:06:ea:df:d5:3a:
89:d7:97:8b:a2:f2:12:48:1f:85:61:d1:69:fd:49:
39:90:50:45:b0:b2:01:03:a7:6c:1e:7a:3d:9d:15:
69:68:2d:1d:5c:14:e0:63:66:ff:e6:92:8f:40:18:
a7:53:2b:75:9e:37:ee:a3:06:53:11:a6:60:c0:08:
94:68:83:d0:5f:ed:a2:57:fd:d1:62:7f:ee:30:a4:
d8:eb:df:ac:d8:2b:91:fe:7d:b4:3e:75:a9:b4:69:
9b:cb:53:f0:85:c9:e7:68:93:48:7e:13:47:ec:d3:
3d:e3:d5:ad:d8:a4:a1:3c:34:fb:b2:fa:51:e5:a4:
e1:f9:54:0e:d3:6a:0b:7f:f2:95:74:d7:7b:78:1b:
c8:27:03:92:42:77:ff:c9:77:84:f7:45:79:00:55:
c3:f9:5b:1d:d4:1c:cc:1f:e5:17:95:c2:ed:66:b8:
7a:5d:13:2a:30:6c:06:2c:c0:8e:c1:37:f5:12:66:
3b:62:48:53:89:57:6a:c4:de:fe:32:f2:ab:d3:a1:
ad:74:86:bf:59:d4:9d:ba:43:9b:af:c5:02:ab:76:
46:dd:7b:5e:44:8c:01:b8:d4:b6:bc:7f:be:bc:89:
5b:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:7D:EB:67:91:AA:0F:89:6F:1D:8B:82:9B:7D:72:E0:2C:43:20:95
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CX3rZ5GqD4lvHYuCm31y4CxDIJU.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.159.224.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:a5:05:eb:27:bd:99:49:ca:5d:be:69:c6:38:44:63:9d:5b:
30:82:36:52:28:ca:3f:84:69:ef:de:fc:df:21:93:08:14:5c:
36:92:5d:d2:7b:10:e8:f4:28:48:8f:1c:d2:cc:60:5a:43:3a:
b6:e5:b4:a6:2d:fd:1b:61:f3:c6:92:cb:60:be:05:f7:06:e0:
85:27:40:0c:d4:49:98:25:20:ea:36:88:b3:d3:50:4d:d7:cf:
bb:55:de:4b:b3:de:be:c2:93:db:f8:f5:ea:0f:7b:e3:60:5c:
08:80:e3:23:ad:1f:8e:a5:d2:1d:65:82:93:24:17:34:70:14:
03:fb:b8:32:b1:ab:34:59:45:4e:c7:52:cb:45:db:b3:e3:69:
bb:dc:ba:68:31:6f:18:d5:d8:92:76:39:a5:0d:de:5e:a2:57:
b6:40:80:b3:a3:be:c1:3d:49:80:07:b1:60:3a:5e:b7:78:b3:
7d:cc:a9:07:6f:80:ac:ed:4f:3c:7d:07:13:ef:ec:fc:ea:f4:
bf:30:73:79:0d:81:ad:85:40:99:81:f2:0b:96:c9:a9:87:f0:
86:a7:8b:99:fd:db:13:db:0f:d9:a5:c3:64:94:30:ec:a0:e2:
8f:d0:50:ea:cb:9c:4d:57:3c:27:4d:64:bb:8d:70:78:fe:a0:
6d:90:28:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:29:58 2025 by rpki-client