Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/gkmMs_pYXWjtNPQj-R1W8zHA3Rk.roa
File: gkmMs_pYXWjtNPQj-R1W8zHA3Rk.roa (raw, json)
Hash identifier: xI9OWkNcYggQ9Cl8AfQvX/VM4pjxFPDJZNKnlLpHxQo=
Subject key identifier: 82:49:8C:B3:FA:58:5D:68:ED:34:F4:23:F9:1D:56:F3:31:C0:DD:19
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 04B9
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/gkmMs_pYXWjtNPQj-R1W8zHA3Rk.roa
Signing time: Thu 27 Jul 2023 16:48:11 +0000
ROA not before: Thu 27 Jul 2023 16:48:11 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 1.73.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1209 (0x4b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:48:11 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=82498CB3FA585D68ED34F423F91D56F331C0DD19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:1e:d2:65:e3:82:43:2b:01:92:9c:11:7d:02:
5c:f2:20:b4:ee:f4:31:a8:98:0c:2e:ba:3a:2e:30:
26:00:4c:79:4d:0d:84:6d:cd:83:4b:d2:8b:30:80:
cf:9f:72:b7:1f:48:f2:23:29:cd:db:ff:20:a4:ac:
87:d6:57:cc:7d:3e:8f:44:66:50:89:e2:b9:d8:c8:
08:08:99:47:dc:cb:31:c5:b4:24:3e:6e:d7:87:6d:
10:0d:c0:57:cb:39:bd:cf:21:30:72:74:16:e1:55:
62:a7:cf:06:4b:9a:73:f5:8b:c7:a0:0b:ee:57:e2:
05:c3:f0:3a:65:bb:9d:f8:31:b9:55:db:5d:a2:b5:
b4:ae:b6:80:85:3c:05:d2:1f:5b:93:b5:a4:45:0a:
fb:59:f9:0c:58:7c:c0:29:de:be:1b:e7:fb:30:cd:
4e:69:a7:1d:92:9e:41:10:82:37:a3:47:59:7d:be:
56:42:90:28:dd:9f:9c:48:55:eb:04:61:53:b4:65:
3e:71:e3:19:73:a5:da:53:4e:4c:22:14:6c:17:d2:
a9:d4:88:11:d5:70:df:8a:48:d9:61:9d:e4:5f:33:
90:23:25:18:77:97:73:f4:fd:a6:2a:c4:87:63:74:
87:0d:ec:cb:7a:0e:af:fc:6b:98:29:4e:91:39:e1:
3c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:49:8C:B3:FA:58:5D:68:ED:34:F4:23:F9:1D:56:F3:31:C0:DD:19
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/gkmMs_pYXWjtNPQj-R1W8zHA3Rk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.73.245.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:df:ed:29:8f:04:a2:65:04:a3:61:9c:ea:ef:6d:93:f1:6f:
03:59:a9:7e:c4:66:f9:8b:bf:2d:c1:68:f8:65:21:fe:42:e9:
1f:d6:cd:b0:ea:64:e3:f6:9a:88:a3:8c:0b:a4:ea:a6:17:65:
13:3c:df:60:54:e4:32:3b:f7:d9:0f:2d:da:9a:bc:4a:b9:35:
d9:1a:4e:98:b9:e9:b2:a6:3a:68:0a:c9:5b:40:6a:2f:90:64:
ef:bc:53:62:10:65:92:7a:fb:24:69:02:26:03:be:23:86:8f:
08:a3:96:18:43:44:bc:68:4d:60:c0:a4:54:47:30:35:fc:56:
d3:48:c2:d8:49:0b:bf:29:8b:14:e1:e2:46:08:48:d1:41:27:
4f:91:45:cd:49:60:eb:3c:28:44:a3:85:5a:42:55:44:1d:cc:
b6:54:58:cd:eb:21:13:70:b2:fb:b6:e7:30:60:25:51:4a:eb:
5d:ac:a3:52:5b:7c:ad:a6:9f:96:b7:0a:dd:2c:5b:8a:de:b7:
20:4d:35:fe:68:30:e1:c1:07:a3:f1:cc:72:59:31:83:98:3c:
2b:43:5c:a8:60:40:98:c4:05:b9:67:cf:59:c0:72:cc:c5:06:
7c:1c:a9:66:a1:67:d1:b2:64:59:e8:43:cf:22:6b:70:b9:e6:
8e:71:35:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:07:30 2025 by rpki-client