Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ipQP_FI1aDFhIfTAF9xO9FFH_VQ.roa
File: ipQP_FI1aDFhIfTAF9xO9FFH_VQ.roa (raw, json)
Hash identifier: /LHx+MyK0Dq2kKN45m10Kx1Vbli8rxJz42rqAGeEIk4=
Subject key identifier: 8A:94:0F:FC:52:35:68:31:61:21:F4:C0:17:DC:4E:F4:51:47:FD:54
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 05AA
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ipQP_FI1aDFhIfTAF9xO9FFH_VQ.roa
Signing time: Thu 27 Jul 2023 17:00:20 +0000
ROA not before: Thu 27 Jul 2023 17:00:20 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 211.14.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1450 (0x5aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 17:00:20 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=8A940FFC523568316121F4C017DC4EF45147FD54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:ad:51:93:91:47:d3:c6:97:40:d4:9f:51:b4:
6b:44:fc:f8:d3:8d:1d:78:f7:8e:18:98:78:89:7a:
7e:a9:f9:28:ae:6e:27:0e:48:fa:f5:47:d4:07:b8:
bf:c4:5d:eb:95:19:d5:0a:db:eb:e3:88:10:5b:40:
3c:c9:9c:93:0f:1b:fc:9c:38:c5:ae:fa:ae:7e:95:
fe:60:19:5f:cc:f8:10:80:e6:97:a4:e1:b8:95:c5:
50:50:80:88:d4:95:5e:15:af:ea:62:e3:05:64:1c:
a8:0c:cc:f0:b8:90:f6:f6:8b:5b:b5:78:a8:f5:20:
a0:d8:8f:fe:f3:37:7c:ee:84:4c:12:25:f4:6f:b0:
2d:30:be:a4:13:3d:72:ef:3c:1e:e1:15:4e:ce:f8:
6d:0d:95:cf:d2:1b:d1:74:85:98:c3:c1:32:08:0d:
a4:00:ba:18:fa:46:1c:46:23:a4:0d:53:fb:dc:82:
f0:3c:db:ce:9b:ca:e4:40:7f:f2:26:49:ea:33:df:
43:07:c0:b2:65:2b:16:15:0c:f5:66:6d:68:b1:ee:
b0:a2:a2:97:be:a3:18:c4:85:9a:3f:cd:3f:dd:90:
8b:20:f7:b7:8c:d8:a6:d2:aa:8e:62:e7:51:9a:96:
f7:1d:a1:ea:2a:c2:8b:50:c6:02:98:25:5c:55:72:
79:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:94:0F:FC:52:35:68:31:61:21:F4:C0:17:DC:4E:F4:51:47:FD:54
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ipQP_FI1aDFhIfTAF9xO9FFH_VQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
211.14.95.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:be:9f:17:5d:b7:85:0d:27:14:1b:59:8c:ed:3e:53:b9:d6:
a9:95:fa:e4:99:50:25:e8:a2:91:4d:e6:a0:25:0e:28:ff:8b:
dd:1c:4e:ad:37:12:93:67:44:a8:60:44:11:b3:83:18:0a:f9:
db:31:ae:2c:35:d2:24:cf:23:79:d7:15:77:ba:ad:d2:5c:1f:
9e:df:2b:2a:ae:4e:6a:12:f2:9d:9f:be:82:4a:2c:98:96:d4:
4a:14:86:07:b7:8e:99:a7:44:5a:bf:75:2c:15:a8:05:6d:1f:
a6:76:80:17:16:29:cc:d7:77:8b:e8:d7:95:39:98:2b:60:2b:
6c:bb:52:92:d5:a6:b3:5a:f4:0b:49:8f:98:d6:93:04:58:5f:
06:9e:80:41:9e:53:1d:02:be:13:c9:0d:65:3d:b6:aa:f9:2f:
f2:f8:8c:3e:3d:61:1d:70:6b:89:c9:bd:bc:3d:28:3c:18:c8:
6a:02:e1:07:50:71:b2:74:d6:2b:2b:26:dc:74:dc:91:42:b8:
b0:e8:d6:8b:ee:94:c5:35:45:7e:6d:1a:fc:81:42:d9:b5:5d:
ab:3b:7c:02:42:d2:b0:85:3f:c8:c3:ea:53:9f:fb:bf:d0:88:
f3:92:91:c2:77:1c:05:e8:d6:a9:74:db:57:a7:1e:be:98:35:
ce:e5:b5:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:18:40 2025 by rpki-client