Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/QbhuuhTT_P7bPFuV_Y5zn4pVz7s.roa
File: QbhuuhTT_P7bPFuV_Y5zn4pVz7s.roa (raw, json)
Hash identifier: BuxTY0NumiV5fzfJG+Hwd+l0SekiREkO9Jal/kyiaT8=
Subject key identifier: 41:B8:6E:BA:14:D3:FC:FE:DB:3C:5B:95:FD:8E:73:9F:8A:55:CF:BB
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0526
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QbhuuhTT_P7bPFuV_Y5zn4pVz7s.roa
Signing time: Thu 27 Jul 2023 16:54:10 +0000
ROA not before: Thu 27 Jul 2023 16:54:10 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 220.210.0.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1318 (0x526)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:54:10 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=41B86EBA14D3FCFEDB3C5B95FD8E739F8A55CFBB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ee:6c:2f:cd:0e:4f:5d:9b:39:1c:96:ff:94:
07:01:9e:69:46:e6:c6:42:0b:eb:31:4e:7a:46:74:
66:44:12:a6:60:a5:d3:2f:33:44:a9:15:0a:38:fc:
11:7e:62:a3:2a:f1:5c:74:f0:98:30:b5:e2:d1:6c:
53:90:cd:24:2d:50:d3:09:a8:33:f2:bd:74:76:7a:
15:c7:c7:13:c0:70:a3:70:f2:7f:5a:87:e2:64:50:
b2:7d:9a:54:9f:b6:81:f3:7e:d3:6a:c7:57:a4:4b:
5f:cf:b8:80:74:8d:77:90:2b:06:6c:8f:e5:73:88:
fe:25:4d:eb:9b:13:3c:28:c8:1d:eb:84:41:24:68:
c6:4a:85:5d:fb:a2:12:9e:03:c5:22:db:03:46:b9:
df:da:f9:61:01:e7:34:d3:ef:62:f3:5b:b3:b7:68:
18:4e:0d:b4:82:f2:6d:b1:1f:37:87:c5:d7:24:6f:
0a:f9:bf:4f:3e:0b:0b:a7:45:11:60:20:4a:84:c0:
29:57:c6:78:bf:bb:00:28:ff:21:42:cd:fd:71:00:
f6:ae:30:af:4c:3b:78:fc:fa:a3:10:d6:30:6a:86:
a1:ef:39:53:48:cc:2a:7c:c0:ff:75:ef:71:90:ad:
9d:40:dc:9b:0f:50:22:2e:4d:26:34:25:b0:1e:a9:
9c:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:B8:6E:BA:14:D3:FC:FE:DB:3C:5B:95:FD:8E:73:9F:8A:55:CF:BB
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QbhuuhTT_P7bPFuV_Y5zn4pVz7s.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.210.0.0/21
Signature Algorithm: sha256WithRSAEncryption
0d:1f:01:de:85:bb:fb:c9:23:2a:23:8d:14:88:3d:83:8f:ab:
c9:0f:a3:96:99:81:f7:a9:ba:99:e4:15:84:91:75:48:fc:f1:
72:22:97:f8:59:82:75:41:b9:b5:25:1e:fd:90:28:0d:02:c3:
80:f7:ab:ba:13:61:ca:49:f3:53:c5:94:1e:6d:e0:ad:63:16:
1d:b9:6e:01:09:6d:6c:e6:f9:9b:f9:cd:87:9f:5e:cd:47:7b:
07:9a:4e:a4:96:7b:68:a6:59:48:a0:3c:ff:da:25:2c:4a:ba:
0b:c0:49:63:c5:b3:c7:af:a5:2f:24:7d:4a:bf:83:b4:ae:d4:
98:51:2e:08:15:c4:f9:77:49:db:01:42:64:b0:11:31:f0:b2:
57:3b:95:c3:86:df:0a:f5:7b:2f:8e:cd:fa:97:5e:c2:0f:58:
56:b9:84:76:f8:cb:21:8c:b4:d4:f3:5f:d0:a1:c4:3b:7f:30:
de:17:8f:94:8c:15:52:35:1c:03:e5:60:b0:ec:b9:76:dc:f6:
91:ed:56:d3:ff:8b:e3:45:bd:91:14:a1:e7:73:72:3b:5b:4f:
4a:52:8f:b7:a5:28:2b:f7:10:5c:c1:39:da:9a:e6:f8:ad:32:
59:df:e5:3e:30:5a:fd:da:28:ea:3b:f2:dd:20:a0:96:6f:ce:
94:27:12:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:34:13 2025 by rpki-client