Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/O2zFY_HWIoxaeG4GNm1O0cjKBKA.roa
File: O2zFY_HWIoxaeG4GNm1O0cjKBKA.roa (raw, json)
Hash identifier: pSRz7FihYLQy2uRJ8WzvzUZgLiUHfsBiw4dVmwqnllg=
Subject key identifier: 3B:6C:C5:63:F1:D6:22:8C:5A:78:6E:06:36:6D:4E:D1:C8:CA:04:A0
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0510
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/O2zFY_HWIoxaeG4GNm1O0cjKBKA.roa
Signing time: Thu 27 Jul 2023 16:52:12 +0000
ROA not before: Thu 27 Jul 2023 16:52:12 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 1.76.84.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1296 (0x510)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:52:12 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=3B6CC563F1D6228C5A786E06366D4ED1C8CA04A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:40:b6:6c:64:8a:4a:ce:c7:c2:5d:c2:33:7e:
53:7c:da:0f:7f:80:2f:c8:b8:cd:3f:11:dd:14:72:
97:11:dd:1e:bc:95:e3:0e:a1:7a:d3:2b:ac:0f:05:
2b:1b:7a:76:82:86:33:54:22:23:50:6c:4f:e8:24:
8d:b5:f8:a6:da:99:68:c3:33:e3:2e:e4:7e:3a:81:
12:71:aa:a8:8c:58:7c:63:de:65:a2:20:eb:9c:63:
a3:e6:35:11:9b:35:bd:5a:96:33:2a:e1:15:96:5b:
b3:16:71:c3:3c:60:d6:05:62:5d:25:e8:46:34:b0:
3e:02:c2:a2:4d:8f:e4:8e:84:e8:52:71:b5:29:b2:
f5:c3:9f:cf:10:2c:20:af:28:10:1d:54:5f:d6:16:
11:ce:b1:21:41:30:c7:ed:65:04:0b:cf:55:e4:c5:
a6:5e:de:aa:ed:df:6d:ac:ea:ec:9a:e8:9f:42:a4:
1b:c4:0d:0f:f5:c8:59:fd:3f:1a:2d:04:de:18:e8:
8a:57:83:90:0c:44:e8:bc:17:82:01:69:ed:41:34:
53:90:d9:ca:e3:a7:70:6b:46:7f:11:0e:38:af:bd:
11:b0:79:14:5d:0d:f4:8e:0f:69:3f:d0:b1:84:ee:
07:a2:52:48:6f:da:36:09:a6:80:89:70:6c:01:49:
37:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:6C:C5:63:F1:D6:22:8C:5A:78:6E:06:36:6D:4E:D1:C8:CA:04:A0
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/O2zFY_HWIoxaeG4GNm1O0cjKBKA.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.76.84.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:22:4a:7b:a5:b4:00:57:56:23:da:d6:e0:f2:48:43:ca:8a:
01:63:4b:15:41:ea:5a:95:1f:69:8f:53:42:83:e5:d9:3e:16:
0e:d6:b6:b6:dd:df:82:1e:8c:68:dd:a8:59:21:47:1b:b9:ac:
a7:2d:16:0b:ea:37:67:7c:d2:28:38:32:98:98:a4:02:f2:56:
42:81:61:24:bc:68:74:84:ae:39:0e:72:3b:03:5d:f0:00:24:
7f:01:80:a8:fb:c8:8a:15:ec:19:c6:6e:7b:e6:f1:94:6e:7c:
d0:21:39:fb:cb:f7:85:01:8f:91:ea:b4:9d:4d:9e:e3:23:46:
63:5d:e9:c9:40:61:ac:6e:2a:8a:d0:77:c1:78:3b:c6:73:38:
d8:af:a8:9b:84:f7:58:19:1d:00:46:06:6d:5d:32:21:86:6b:
a1:ad:75:fe:8c:8f:11:e3:70:53:3c:ee:7b:56:bc:89:42:c5:
93:72:9f:aa:c3:e8:db:76:58:cf:0b:8e:79:5e:43:f0:b7:ef:
1b:67:43:c1:8a:a8:2b:5e:a2:48:a0:c1:36:27:14:1d:0e:4e:
9c:45:14:2b:20:4a:d7:5f:61:3c:e2:64:32:42:ce:07:69:a9:
ea:17:dc:d3:68:48:22:83:67:d7:7c:f5:17:a7:46:7d:66:52:
e4:91:ff:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:06:39 2025 by rpki-client