Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/NuAmSWw3BGYx5_Y6RQwZqNJyVio.roa
File: NuAmSWw3BGYx5_Y6RQwZqNJyVio.roa (raw, json)
Hash identifier: ArfryObLDRES5LuoGlGYKVEs77C9DqYzZCi3lL0SLlE=
Subject key identifier: 36:E0:26:49:6C:37:04:66:31:E7:F6:3A:45:0C:19:A8:D2:72:56:2A
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0274
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NuAmSWw3BGYx5_Y6RQwZqNJyVio.roa
Signing time: Tue 30 May 2023 16:34:20 +0000
ROA not before: Tue 30 May 2023 16:34:20 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.76.224.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 628 (0x274)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:34:20 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=36E026496C37046631E7F63A450C19A8D272562A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:26:c5:de:3f:2e:6e:fa:22:2c:0e:b8:32:ca:
f6:5a:8f:45:52:76:93:25:f0:e6:9f:4b:de:40:4f:
9c:80:56:ce:32:3e:e2:df:15:ae:2a:83:ec:65:79:
90:46:15:95:8a:d8:4b:b1:95:bd:dc:d7:3e:cf:db:
4b:5b:5c:37:74:50:bf:b2:fa:85:11:bb:42:c8:7f:
18:b7:36:67:a3:e1:7e:7a:ba:cc:99:d9:08:5b:bc:
62:4c:de:93:d6:ae:fa:e8:46:d6:66:e6:67:cf:ed:
eb:e3:c0:a1:ef:1c:85:6f:7f:db:02:90:81:be:5d:
76:93:6f:55:66:be:22:b4:2f:49:07:11:74:aa:6b:
f3:f8:36:9c:e1:a4:02:1a:43:42:18:79:1b:24:4b:
e2:bb:ff:9b:32:2f:d8:07:6f:ab:a5:c9:e8:03:73:
72:66:85:c1:2c:d1:f9:84:9a:25:f7:d0:7e:8d:09:
16:ed:64:d4:c2:c2:90:de:47:49:f9:49:d8:c4:24:
10:de:2a:3d:f8:d4:00:6d:34:1d:fa:f2:56:12:cb:
5a:f2:c5:b9:8e:e0:db:c3:09:4d:f8:30:65:cf:1b:
fd:e9:5a:3d:d4:22:3b:ca:8b:3e:28:3e:96:60:f2:
90:ee:e8:56:37:4a:e0:54:50:28:ac:b2:99:93:b3:
66:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:E0:26:49:6C:37:04:66:31:E7:F6:3A:45:0C:19:A8:D2:72:56:2A
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NuAmSWw3BGYx5_Y6RQwZqNJyVio.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.76.224.0/22
Signature Algorithm: sha256WithRSAEncryption
01:4e:da:ee:c0:91:94:52:6e:c6:af:63:ae:1f:02:4f:a2:dd:
39:6e:24:13:f9:51:10:ba:3b:d4:0e:41:55:ef:fc:01:75:13:
4b:08:a3:8b:91:67:d8:d4:5b:40:7a:34:5a:d5:b3:e0:5c:90:
f0:2c:88:42:91:c1:2f:58:7d:76:2f:de:15:41:16:de:e1:f6:
2d:6c:53:38:de:9e:97:30:1d:23:09:0a:33:34:83:01:2e:a0:
d4:45:cd:1d:34:4c:08:61:f7:30:3c:f6:6b:10:fc:0e:b8:df:
9c:04:3b:d6:a0:47:7a:3e:7f:09:fa:3a:67:ad:c9:ca:98:e6:
1e:e1:6e:cd:d3:45:9a:c5:0f:89:d4:9e:14:3e:36:d3:c7:22:
42:68:5d:cd:c6:04:c9:e2:16:f3:13:0f:7c:b7:7f:8f:ed:70:
19:a2:8d:ca:8f:e6:6b:55:a4:a8:c2:02:95:49:fd:b3:ef:55:
ac:05:b6:19:a0:04:d0:12:2f:7b:7f:dc:26:84:7d:b8:50:7f:
3f:8b:34:39:75:c2:33:be:84:fd:61:83:4c:72:94:01:d2:0f:
95:ab:4f:0c:9a:cb:f1:1e:ba:a8:06:05:47:4a:15:8f:d1:56:
4f:20:c0:04:0f:08:6c:84:ae:54:cf:e3:b7:84:8f:2e:9d:31:
e2:fe:dd:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:29:58 2025 by rpki-client