Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/igroKZjZaTXbnuphSbEbx48Oe-E.roa
File: igroKZjZaTXbnuphSbEbx48Oe-E.roa (raw, json)
Hash identifier: S+nMt8Z+mi/elnKy6+ITSX5S9pQ0Wjrnehy/vV7sI98=
Subject key identifier: 8A:0A:E8:29:98:D9:69:35:DB:9E:EA:61:49:B1:1B:C7:8F:0E:7B:E1
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 02CA
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/igroKZjZaTXbnuphSbEbx48Oe-E.roa
Signing time: Tue 30 May 2023 17:18:20 +0000
ROA not before: Tue 30 May 2023 17:18:20 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 211.14.92.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 714 (0x2ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 17:18:20 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=8A0AE82998D96935DB9EEA6149B11BC78F0E7BE1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:c2:50:a5:f8:ba:38:f5:24:a8:92:db:c8:65:
9d:9e:16:52:af:38:76:66:9c:b4:aa:90:a4:26:a5:
ba:21:00:33:47:43:79:b4:1a:f5:3e:46:d9:a1:f1:
c2:dc:9a:72:67:36:36:1f:3a:98:10:c2:70:29:0e:
5c:01:62:5d:88:79:6d:87:a2:f4:59:bc:f6:6f:4c:
f1:87:31:c6:cb:ad:8c:a2:35:18:80:a1:a7:96:71:
22:a5:aa:a3:31:7d:2f:f9:5d:18:ae:d4:45:f8:84:
8b:6d:ec:39:b1:08:e6:08:97:4d:4c:ab:ea:a7:65:
da:5f:aa:fc:89:21:ba:5d:9a:ae:95:40:0f:09:cf:
e6:c0:70:89:78:8f:ba:8a:c1:cf:0a:32:5f:47:1a:
fd:65:28:08:1d:5c:16:f6:f9:31:af:33:be:33:35:
1e:83:5c:ce:c3:3e:f0:3b:e2:79:ae:56:40:8e:3c:
ca:dd:77:42:4c:22:44:01:39:82:91:7b:a6:e3:14:
16:63:3f:8e:e2:46:c7:78:4f:60:bf:5c:9a:08:45:
8c:d0:15:1a:da:e8:3a:24:f8:fa:ba:96:4d:cc:77:
da:97:8b:ca:88:93:40:2c:52:cd:df:7d:ad:56:de:
c4:72:97:b0:19:a6:07:5d:20:29:c8:1b:6c:05:c4:
68:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:0A:E8:29:98:D9:69:35:DB:9E:EA:61:49:B1:1B:C7:8F:0E:7B:E1
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/igroKZjZaTXbnuphSbEbx48Oe-E.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
211.14.92.0/23
Signature Algorithm: sha256WithRSAEncryption
dd:a6:db:6e:3e:62:43:d5:81:69:53:a1:c9:a7:7a:bf:47:04:
c7:9c:7c:c3:49:32:23:2a:9c:db:20:8c:79:7e:48:1b:70:8c:
c0:71:5b:27:0d:bf:4f:d1:79:24:15:da:48:64:bd:a2:29:a0:
8c:94:a7:b7:3b:80:7c:4e:6c:85:48:a5:ab:cb:9b:cc:18:b6:
fa:78:96:d9:08:f6:c6:f3:8d:40:25:64:ab:7a:6a:64:e7:f4:
54:ba:c4:59:22:3f:1e:ef:76:54:eb:25:39:08:c2:e5:26:21:
63:f1:87:6d:9d:55:ba:e5:bd:02:e4:1c:d6:5b:f5:ce:1e:18:
f9:de:cc:ce:8f:4e:17:a9:e9:f0:f1:63:cd:86:45:e6:c3:52:
05:93:43:6d:6d:bc:b5:81:8a:02:4f:4f:97:a7:e3:38:12:ec:
31:67:9e:f8:d3:8b:07:77:a2:85:6a:b5:15:bb:53:1c:28:d5:
c6:cd:9f:a6:45:dc:c6:cc:55:aa:0a:92:23:4e:e8:87:4f:bd:
69:06:73:e7:89:04:c3:fc:fc:2f:23:2a:43:b3:29:d4:15:b9:
e0:5c:48:2b:e8:14:fa:3e:cb:1e:0c:f3:37:4e:b7:2e:4c:8d:
4b:73:e9:1f:09:95:c6:71:3a:e3:74:78:5c:35:52:d9:be:c8:
70:24:d2:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:11:02 2025 by rpki-client