Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/cYGN5NEq8okDF9c_LqlztbjF_n8.roa
File: cYGN5NEq8okDF9c_LqlztbjF_n8.roa (raw, json)
Hash identifier: D6+JMQF7vUEBjcseyc/XasBUo3ScUNx0u8nr/t/dxcY=
Subject key identifier: 71:81:8D:E4:D1:2A:F2:89:03:17:D7:3F:2E:A9:73:B5:B8:C5:FE:7F
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 059B
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cYGN5NEq8okDF9c_LqlztbjF_n8.roa
Signing time: Thu 27 Jul 2023 17:00:14 +0000
ROA not before: Thu 27 Jul 2023 17:00:14 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 1.74.216.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1435 (0x59b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 17:00:14 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=71818DE4D12AF2890317D73F2EA973B5B8C5FE7F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:3b:4b:7d:6b:92:e8:b4:5f:f6:42:23:5d:b6:
96:12:b1:c6:f2:9f:0f:c0:5a:09:e6:78:57:36:c7:
88:2c:16:4c:da:41:54:1e:24:70:1f:69:35:a2:c4:
60:bd:d4:57:d6:1c:27:53:8c:e1:52:cd:8e:d1:7f:
85:6a:18:8c:94:65:8b:9d:27:6f:54:bf:32:cb:52:
45:19:a3:d7:3c:c2:7c:c8:cf:a4:eb:c1:f3:cc:f1:
32:e0:3e:7b:5b:48:f7:31:3e:be:73:1a:a2:7e:e5:
2b:45:98:07:32:cf:eb:21:94:4c:26:eb:0a:94:8d:
7b:97:d9:43:49:9d:fb:ac:4d:ed:ae:04:d8:40:3f:
3a:1f:ab:3a:bf:65:1b:2a:89:20:79:14:84:27:36:
7f:43:86:73:7e:c5:4c:41:d6:98:14:64:22:98:41:
f3:22:0b:03:b2:ae:0e:13:44:f7:1e:84:6c:8d:62:
c6:dd:79:86:e9:e9:91:8d:97:76:db:62:ea:5d:f7:
c6:5a:0c:a0:27:47:89:5f:3d:e7:12:cb:d8:4c:7e:
a5:89:3c:c5:4c:0a:af:64:b6:aa:48:40:fe:03:f4:
2c:38:af:ff:b2:ee:8c:f5:8a:dc:e5:cf:58:e8:d3:
51:aa:9a:8d:4b:37:52:77:d3:ce:85:a5:e4:5b:b3:
ca:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:81:8D:E4:D1:2A:F2:89:03:17:D7:3F:2E:A9:73:B5:B8:C5:FE:7F
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cYGN5NEq8okDF9c_LqlztbjF_n8.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.74.216.0/21
Signature Algorithm: sha256WithRSAEncryption
d5:19:f7:76:aa:9f:a2:79:98:04:a3:c0:10:bc:10:1c:6a:32:
1d:1c:51:43:0e:43:de:c8:ce:b2:76:c0:d2:75:90:6e:53:c3:
cf:0c:26:70:b6:98:9e:a8:7c:59:75:a8:b2:33:51:ff:37:43:
c9:91:ff:d9:f4:d1:a3:31:1f:01:11:ef:1f:eb:1a:5c:d1:33:
71:cc:2a:19:59:3d:0d:cf:21:91:90:78:8f:71:cd:13:ac:8f:
e3:f3:42:25:9e:fd:86:f8:63:46:2c:63:bf:4e:c7:03:47:49:
a4:a2:9a:9f:51:2d:3a:af:c4:98:61:3c:b9:15:85:6a:d5:7c:
b1:1f:ab:f1:e1:fd:ec:ed:93:47:78:ef:ea:32:9f:2e:db:bb:
2e:40:15:44:31:50:ee:fb:6d:2b:8a:95:6d:ac:55:d9:12:c7:
73:3a:32:f4:71:00:6f:35:a9:b5:fc:6d:2a:6d:ae:f0:8a:3e:
fe:c5:2c:cb:cf:f6:da:5f:60:fc:1f:cb:c0:c4:28:c7:9a:b5:
c7:7b:ea:b7:a1:f6:49:5c:c4:26:e1:10:ef:5b:27:9c:8b:7f:
d6:7a:9f:ca:d5:b1:5b:62:3b:29:8c:9c:ee:68:a3:c6:a9:dc:
e1:59:81:e9:83:e5:27:e1:2b:62:a7:c9:0d:a9:0d:55:91:2e:
ef:3e:c9:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:11:45 2025 by rpki-client