Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Qk1KXSnGQI5UmAc3MrMx0wp1wLU.roa
File: Qk1KXSnGQI5UmAc3MrMx0wp1wLU.roa (raw, json)
Hash identifier: XRDMfUvDia4r3Sx5OIKC5NAz1bBNsXMjhIartuNI3Zo=
Subject key identifier: 42:4D:4A:5D:29:C6:40:8E:54:98:07:37:32:B3:31:D3:0A:75:C0:B5
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 01CF
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Qk1KXSnGQI5UmAc3MrMx0wp1wLU.roa
Signing time: Wed 24 May 2023 16:40:33 +0000
ROA not before: Wed 24 May 2023 16:40:33 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.79.76.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 463 (0x1cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:40:33 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=424D4A5D29C6408E5498073732B331D30A75C0B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:0d:3e:7c:c5:65:3f:1d:e2:82:24:6e:6a:ad:
e6:db:67:71:9d:fe:56:d9:3c:58:49:71:1a:71:7c:
99:3d:39:14:53:7c:8a:7d:01:32:73:99:c1:a9:e1:
bd:79:34:93:14:b7:8c:0f:5b:cb:b9:6f:15:bb:9c:
64:33:6d:e4:73:d7:1d:4d:4c:df:1a:dc:2d:7b:66:
47:0e:ef:d0:ed:6e:8b:c9:52:d1:12:3e:45:7b:7d:
6f:8a:41:0b:49:ba:ad:6d:d7:24:dc:70:06:70:3e:
ed:9e:9c:4d:fd:14:7e:b0:b5:e9:11:d1:c1:8e:e6:
78:b6:8f:44:b3:97:a5:f0:e5:c4:60:ae:dc:c6:c3:
72:72:4c:39:d7:c2:4c:ce:23:0e:00:c8:a3:b1:34:
8a:33:d1:9f:29:8c:27:7b:04:7d:cb:db:c2:a0:2a:
92:c6:09:f8:2e:52:6a:42:83:d0:92:29:f7:c5:08:
bc:79:96:05:7b:7d:bd:4a:a0:36:5c:7d:ea:8b:4d:
3d:20:c9:61:d5:26:cc:27:93:56:9e:7f:d1:d6:8f:
b5:31:9c:cf:19:15:aa:8b:16:7f:69:cf:a8:b5:5a:
ff:4d:23:5b:c1:59:f2:e1:70:de:73:04:e2:09:b9:
b9:5a:e8:28:ed:53:7d:de:a5:19:4b:9e:de:e1:bb:
91:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:4D:4A:5D:29:C6:40:8E:54:98:07:37:32:B3:31:D3:0A:75:C0:B5
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Qk1KXSnGQI5UmAc3MrMx0wp1wLU.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.79.76.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:54:6d:2a:cf:87:3d:8d:df:43:59:32:87:b8:29:7c:d0:31:
7f:ff:9f:aa:8d:ff:4b:9d:c1:07:1b:54:13:42:50:e0:76:af:
95:be:7c:dd:33:6b:89:dc:38:80:85:38:b1:80:d0:af:32:c4:
61:5b:85:cb:03:1c:11:b7:a1:c9:56:22:d9:30:36:42:2a:c8:
6a:6f:02:70:8d:1a:09:a6:3d:fe:ea:52:23:87:67:7e:35:4b:
08:8b:4a:bc:a8:ca:d5:ea:5b:39:08:b8:ba:11:97:d4:d3:a0:
3a:32:45:00:8f:37:1f:55:f1:61:1e:de:9e:e4:46:d9:c9:dc:
cc:c9:8e:42:5b:21:a9:e4:cf:88:e7:fb:99:05:86:0a:00:57:
21:aa:0c:4a:e2:67:5e:42:e4:94:56:be:07:ff:e0:2a:b5:93:
6e:8a:d9:a0:72:a8:ca:e7:5c:02:85:c3:0f:f7:9f:92:fe:66:
96:11:9c:ac:b0:c4:54:a0:d4:e4:1b:08:a4:6a:d4:27:c0:b4:
84:8c:80:2c:44:67:c6:e4:3d:b3:b1:15:2b:57:35:28:e8:02:
88:19:1e:3d:11:da:86:7a:66:4e:e2:46:8e:99:bb:b2:87:10:
e3:57:9b:90:c0:07:f1:3f:9b:37:73:7c:19:26:62:45:c1:fc:
c8:1c:4b:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:32:45 2025 by rpki-client