Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/_47HIyHuTDg9iiMjKLdlAGpwvg4.roa
File: _47HIyHuTDg9iiMjKLdlAGpwvg4.roa (raw, json)
Hash identifier: CRkL/ia53BYOZOkpPYf3AT7vd5AK4OyAtsVsVQGi1xk=
Subject key identifier: FF:8E:C7:23:21:EE:4C:38:3D:8A:23:23:28:B7:65:00:6A:70:BE:0E
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0529
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/_47HIyHuTDg9iiMjKLdlAGpwvg4.roa
Signing time: Thu 27 Jul 2023 16:54:11 +0000
ROA not before: Thu 27 Jul 2023 16:54:11 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 220.210.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1321 (0x529)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:54:11 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=FF8EC72321EE4C383D8A232328B765006A70BE0E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1d:15:f9:92:ee:c2:03:86:c2:b4:f9:d8:80:
c6:da:ee:f2:2b:7c:3e:f4:53:64:4c:cb:8d:3c:00:
db:27:98:ab:c0:02:82:ef:45:db:f7:1d:4b:f7:e8:
0f:37:e1:13:c2:5f:9f:f6:91:ef:48:c6:2d:3a:02:
03:d2:2e:c3:28:3e:82:cc:0e:75:1b:e7:a6:ef:3e:
60:77:9d:fe:92:3b:e9:ae:12:61:1f:a5:d2:28:c4:
e5:9d:0c:b2:12:de:bb:2c:9d:14:b6:10:35:da:66:
2b:32:30:b6:52:5c:60:8d:91:79:a1:9c:f5:66:90:
24:2c:8c:14:fc:9b:9e:60:ff:b2:3e:73:16:1e:21:
5f:2b:e3:31:5a:05:5c:93:64:dc:b2:70:83:2a:27:
0e:0f:d2:86:5c:4c:05:3e:18:35:71:5f:3d:f9:55:
9f:6c:ec:f7:16:49:fc:63:f0:53:bc:e8:31:fb:9d:
59:11:49:97:17:39:12:4b:21:37:49:19:be:4d:3e:
7e:a4:7c:a0:e6:0f:66:9f:9b:b9:79:ff:97:b3:f2:
4f:06:fd:13:58:0f:80:06:a9:ab:e5:b6:55:b1:09:
09:08:55:41:23:22:63:0b:38:54:17:7b:c2:f1:b6:
6e:e6:4a:e2:0e:6f:61:88:3d:39:b3:99:52:14:90:
76:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:8E:C7:23:21:EE:4C:38:3D:8A:23:23:28:B7:65:00:6A:70:BE:0E
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/_47HIyHuTDg9iiMjKLdlAGpwvg4.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.210.31.0/24
Signature Algorithm: sha256WithRSAEncryption
66:5b:5e:13:dc:91:85:15:82:97:59:95:8f:57:56:0c:62:b9:
04:64:eb:3c:1c:dc:63:a8:a3:f2:2b:1e:1d:91:cf:99:9c:af:
bf:f1:4c:24:d4:a6:64:a3:37:d6:7d:59:b0:ca:f5:aa:03:b8:
d3:19:5d:a6:41:15:71:e6:a0:17:98:c0:ed:59:c3:ea:cd:85:
0e:ae:c4:e4:c5:bc:82:8f:a8:b4:7c:02:0e:f5:69:7d:b1:d3:
05:d0:93:eb:8d:10:3b:f8:a7:11:55:28:14:af:59:4d:f9:45:
a6:46:3c:71:f0:1f:15:3f:1e:c8:d4:80:11:06:39:d7:b3:69:
12:d9:86:a0:57:88:af:00:03:82:8d:0e:0d:c5:7a:31:45:6a:
e4:74:bd:e1:2a:30:d0:b7:db:54:f4:b1:ae:27:0b:d3:d7:d6:
19:8e:a7:40:d0:4f:b5:b4:21:f2:5c:f7:d6:99:e2:3d:9f:70:
94:55:43:0b:e0:76:9a:43:97:ad:c8:12:9b:ae:bd:bd:ea:f3:
7c:d0:33:a2:bd:52:51:60:5c:d1:58:8d:02:2e:72:5f:21:68:
a0:a0:b6:95:d7:44:85:94:7a:ec:fd:7e:03:63:92:db:b3:79:
9d:fa:89:33:82:85:c2:5e:fb:db:28:de:8f:e5:c2:44:aa:24:
6e:ca:95:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:18:46 2025 by rpki-client