Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/VVuSRlMBbx5T9AatXQ9RJhzS-BA.roa
File: VVuSRlMBbx5T9AatXQ9RJhzS-BA.roa (raw, json)
Hash identifier: sdkZ+nBTvo7g+3ktNL5LgMFeZ33PGeYh5fb3PN4X1WM=
Subject key identifier: 55:5B:92:46:53:01:6F:1E:53:F4:06:AD:5D:0F:51:26:1C:D2:F8:10
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0477
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/VVuSRlMBbx5T9AatXQ9RJhzS-BA.roa
Signing time: Thu 27 Jul 2023 16:44:08 +0000
ROA not before: Thu 27 Jul 2023 16:44:08 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 1.76.208.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1143 (0x477)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:44:08 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=555B924653016F1E53F406AD5D0F51261CD2F810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a3:e2:25:57:c4:19:73:67:49:bf:02:9f:e0:
7e:eb:42:cb:ce:b3:14:f2:e5:2e:9e:3d:7f:b2:9c:
79:0f:a7:7e:f0:33:72:2c:95:1b:dd:fe:e9:c7:8b:
25:7e:04:ba:d2:ce:11:51:a9:31:23:a7:92:f1:cf:
15:ed:7a:4e:3c:17:2f:41:a3:cc:73:43:2c:6e:1d:
36:65:03:19:74:58:b5:91:0d:ab:e9:e2:57:c4:f4:
ea:40:34:27:74:e2:63:7e:0b:fe:e8:aa:69:39:e6:
ec:22:93:57:55:99:b4:c4:92:34:51:46:b5:fe:bc:
b3:5d:6a:6d:fa:29:1c:11:86:c5:01:eb:ea:20:7f:
43:88:db:44:f8:7e:b2:ba:20:fa:da:9f:9a:eb:2b:
3c:48:cb:dd:97:86:5b:68:d6:25:5b:16:6b:83:fb:
c7:b3:71:3e:1c:da:6c:c8:d7:02:ce:7d:ce:50:bb:
f0:35:73:2e:63:77:ff:2a:2b:47:48:59:19:31:b1:
84:ae:75:91:dc:5f:5a:6a:76:ce:8e:44:4b:8e:94:
92:05:13:0a:e0:1e:c3:33:f1:5a:51:96:ab:f3:b8:
a3:ef:09:d7:1d:4d:f6:d4:8f:87:76:11:15:d7:54:
3f:98:79:32:7a:4f:da:48:db:86:5d:d2:3e:07:49:
e2:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:5B:92:46:53:01:6F:1E:53:F4:06:AD:5D:0F:51:26:1C:D2:F8:10
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/VVuSRlMBbx5T9AatXQ9RJhzS-BA.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.76.208.0/20
Signature Algorithm: sha256WithRSAEncryption
63:48:db:05:7c:70:04:49:c5:24:e9:50:13:ef:6f:87:d3:48:
f9:1e:a1:0a:75:0c:56:a9:8b:11:9c:50:9a:87:b7:45:04:65:
d9:22:08:28:cb:f4:6f:6c:cf:4d:80:df:39:7f:58:77:ef:e5:
11:cb:72:df:26:32:da:5d:7d:1e:af:14:49:d4:23:54:44:ae:
4a:27:4e:e0:27:4e:03:e4:3c:c7:7c:ca:a4:f4:39:3e:48:95:
85:9c:26:3a:65:64:2c:c7:f4:32:7b:75:d6:68:a5:9f:02:71:
08:5c:66:24:90:02:6d:c9:cc:e8:f0:fb:87:c8:80:d1:a4:73:
4c:88:33:e5:df:5b:6b:3d:52:9f:a7:ba:08:dd:e9:3c:d3:fc:
cf:b8:9b:e9:12:7e:14:35:17:e5:0d:e5:52:ab:37:97:c0:a3:
88:00:3e:a0:1b:5f:b9:ac:8b:0d:51:bc:70:c6:6c:28:1c:7d:
fa:86:cf:9a:da:55:50:3a:f8:df:66:41:3e:e9:c9:78:d2:39:
e6:27:cf:78:3f:52:a8:cf:95:87:36:0e:8a:f0:43:80:35:6a:
4d:c2:bf:92:19:a0:88:c5:9b:92:4a:23:b9:3d:8e:97:98:63:
a1:ab:81:fb:c8:6d:fa:c1:69:e7:8f:72:79:1d:49:ab:f5:7e:
8a:c9:35:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:03:49 2025 by rpki-client