Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/dIspapZbH8vZ11ZSL7ToSnIYfI8.roa
File: dIspapZbH8vZ11ZSL7ToSnIYfI8.roa (raw, json)
Hash identifier: BCzS6Aq/PV+ktaalb48CcW9a+MI8HrcY1Te3Wj7l9oY=
Subject key identifier: 74:8B:29:6A:96:5B:1F:CB:D9:D7:56:52:2F:B4:E8:4A:72:18:7C:8F
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 04EA
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/dIspapZbH8vZ11ZSL7ToSnIYfI8.roa
Signing time: Thu 27 Jul 2023 16:50:16 +0000
ROA not before: Thu 27 Jul 2023 16:50:16 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 220.210.92.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1258 (0x4ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:50:16 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=748B296A965B1FCBD9D756522FB4E84A72187C8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:91:7b:08:20:50:2c:52:39:76:52:1a:d3:66:
28:8b:e2:88:07:0e:21:8f:07:cb:f4:ac:c2:d5:05:
a6:12:ce:26:71:90:42:46:53:0b:7d:d6:9c:f4:3e:
7f:09:82:42:c7:91:03:f4:5b:d5:b0:81:5d:03:05:
f1:81:81:c5:59:96:83:27:ea:37:4d:a5:f9:55:7b:
e0:98:f7:e0:a7:8b:d1:e1:bb:07:63:38:4f:38:ba:
32:4b:62:0d:a3:69:41:31:4d:93:9e:3b:71:70:0f:
bc:6b:73:d0:fc:78:56:04:a5:83:da:2a:14:ee:45:
2f:1b:35:5a:a1:c1:0f:8b:2e:30:f4:e3:09:eb:8e:
bc:6f:d0:36:6c:7a:35:fb:22:e7:03:6f:a3:57:06:
a0:ce:8d:8a:02:0f:f5:03:0a:ed:2c:7b:6a:2d:3a:
94:4c:00:95:55:a6:35:77:5e:db:31:15:bc:1b:4e:
a8:16:01:8c:05:96:88:98:c1:0d:9b:d4:b4:7e:7b:
83:ff:24:f1:88:e9:3b:62:bd:45:06:bb:d8:ec:40:
5b:38:c1:5a:60:b8:2c:cd:6e:12:0b:fb:6b:ea:5a:
80:9a:78:c5:6d:8e:d4:79:93:5a:9b:37:59:84:fa:
17:85:de:d4:86:27:15:a5:c1:7f:fc:66:a3:ef:c9:
1b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:8B:29:6A:96:5B:1F:CB:D9:D7:56:52:2F:B4:E8:4A:72:18:7C:8F
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/dIspapZbH8vZ11ZSL7ToSnIYfI8.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.210.92.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:aa:f5:b8:0f:ec:02:c8:de:93:e2:92:33:d3:b1:44:f1:bf:
87:5b:ca:66:b3:ec:a8:75:89:8d:37:6a:a9:df:de:f9:b4:c8:
a9:d7:ed:f7:a0:73:b9:f7:fa:fd:f2:bd:0b:c6:c2:b9:e7:e7:
c7:d1:3d:aa:c9:c8:4e:af:b5:68:d9:27:f0:bb:17:e7:58:c1:
80:c9:86:d2:66:c3:4d:bf:79:96:f5:8c:5b:ef:8a:60:35:bc:
1d:07:7d:36:09:84:36:81:e7:88:a2:42:ee:63:f9:33:bc:d4:
1e:bc:50:55:6a:f7:47:da:68:0f:92:4d:b9:f7:12:f2:6c:b4:
57:d5:44:2b:6c:75:0f:80:e5:d3:e2:a4:cf:74:c1:c8:65:af:
6e:e5:98:e5:92:2f:e2:aa:2e:63:8d:1e:56:a9:68:3f:09:7a:
76:46:3e:e7:cc:43:b8:7e:f8:68:39:6e:13:fc:5b:e6:28:4a:
21:12:0a:60:7d:8f:d0:b7:a5:b5:ef:26:4d:6d:0c:86:37:21:
e7:9b:b8:2c:60:67:64:b6:89:7d:8d:0e:ff:10:95:c8:f3:63:
fb:62:92:c7:92:f6:65:62:85:a1:ba:1b:49:12:38:37:8f:34:
cb:39:23:78:91:ba:16:87:f7:ed:ae:7b:b4:55:17:00:51:e6:
d5:8f:3f:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:06:15 2025 by rpki-client