Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/DRMGQe7bMjllWDiURrMgXXsrnPU.roa
File: DRMGQe7bMjllWDiURrMgXXsrnPU.roa (raw, json)
Hash identifier: FRC0Q9sLYawM1P2VdxFYQR3MmtNYVhpI+5wEW7kj8aw=
Subject key identifier: 0D:13:06:41:EE:DB:32:39:65:58:38:94:46:B3:20:5D:7B:2B:9C:F5
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 045F
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/DRMGQe7bMjllWDiURrMgXXsrnPU.roa
Signing time: Thu 27 Jul 2023 16:43:20 +0000
ROA not before: Thu 27 Jul 2023 16:43:20 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 220.210.60.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1119 (0x45f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:43:20 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=0D130641EEDB32396558389446B3205D7B2B9CF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:38:34:8e:b9:fc:ce:bd:94:a9:e7:e3:70:09:
75:ae:32:46:19:13:12:3c:fa:c9:58:10:45:1d:b9:
5c:0f:04:67:3e:5d:af:4b:66:f9:40:71:65:d7:dd:
db:a9:59:7f:68:4c:76:32:7e:de:e3:db:27:d4:86:
f3:b3:f7:1b:05:c6:86:31:fa:1b:09:cd:8c:2b:ba:
72:b6:c3:99:fb:8f:e2:01:51:12:b0:78:63:46:0d:
6a:1e:59:04:39:bb:ef:5a:28:a1:53:c1:3f:c9:76:
c2:fa:7e:10:01:83:56:50:bf:9e:c5:a1:b8:d7:c2:
85:9d:bf:c3:e3:0c:dc:8b:59:5b:c6:32:09:5e:22:
82:b4:81:b5:bc:a5:f0:ac:29:d5:6d:ad:70:f8:0c:
f0:1a:ee:03:6e:4c:1e:db:60:8d:e9:bf:a2:ae:8a:
58:e1:be:fb:f7:9e:ad:a2:ce:f8:c8:0b:0b:b8:e5:
5f:a1:d2:1c:e8:44:f3:87:88:a8:4c:29:c8:8c:b2:
e8:a9:c2:41:8c:88:70:51:d8:d3:8f:a4:43:64:db:
db:2d:3d:67:d6:f2:57:74:8f:d6:8b:b0:55:b0:30:
96:cb:6e:42:d5:ec:b2:9a:b2:c0:b4:e3:7f:ae:25:
a2:a7:9d:4c:e1:54:2b:b6:f6:b0:ec:74:06:e3:0e:
d9:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:13:06:41:EE:DB:32:39:65:58:38:94:46:B3:20:5D:7B:2B:9C:F5
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/DRMGQe7bMjllWDiURrMgXXsrnPU.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.210.60.0/23
Signature Algorithm: sha256WithRSAEncryption
e5:c5:47:c0:57:44:68:16:88:7a:1f:bc:19:33:89:ce:b4:cb:
e5:5d:f5:79:2b:f9:a0:b2:af:cc:ad:aa:fe:08:38:12:35:3b:
da:63:c5:12:93:f1:83:2f:c9:87:7b:bd:0c:ad:10:24:c1:31:
d0:9d:af:20:e7:98:e4:48:12:3a:03:21:94:c5:af:ac:f4:f0:
b0:99:e2:70:3f:85:e1:d9:15:3d:ba:0a:71:01:33:cb:e5:89:
0d:cd:04:5e:e8:55:20:3a:91:18:02:ce:1f:67:ec:25:00:73:
b5:b6:b8:44:cd:5e:4e:f8:6e:7f:b3:06:8d:e4:5c:af:de:37:
41:77:e0:65:74:7e:93:d8:63:7d:eb:10:5f:b8:fc:e2:55:8f:
02:1a:81:84:9e:07:3a:77:e6:a1:f8:db:e9:fb:f3:e7:a9:3a:
02:f1:a3:fb:eb:9f:3f:0f:45:74:f9:90:b6:f4:c4:34:96:d4:
eb:76:9f:1f:0b:05:1c:e2:c6:a2:62:17:16:5d:bc:fd:22:41:
7b:d3:23:19:87:50:71:df:64:11:08:d3:1e:43:06:26:0a:b6:
46:58:64:3b:78:3f:ca:4a:70:46:49:56:1d:e9:3f:7f:d3:3d:
a9:ea:e5:65:d2:72:36:b3:6a:a2:79:04:7f:b3:90:d2:8c:70:
d4:a7:95:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:14:32 2025 by rpki-client