Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/k2smz8QfQtsFIl2V7RAAF_4nbqo.roa
File: k2smz8QfQtsFIl2V7RAAF_4nbqo.roa (raw, json)
Hash identifier: PMlsPJb1w/XbRr/fpoIaBJ92/So1WitUJ4uglN+oH/k=
Subject key identifier: 93:6B:26:CF:C4:1F:42:DB:05:22:5D:95:ED:10:00:17:FE:27:6E:AA
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0221
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/k2smz8QfQtsFIl2V7RAAF_4nbqo.roa
Signing time: Tue 30 May 2023 16:30:30 +0000
ROA not before: Tue 30 May 2023 16:30:30 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 220.210.108.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 545 (0x221)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:30:30 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=936B26CFC41F42DB05225D95ED100017FE276EAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:c1:07:02:b8:9f:6b:90:66:50:84:36:b0:c4:
60:5b:28:fc:7e:e1:6f:01:47:82:d1:e5:a0:90:93:
52:d3:0c:d2:56:b8:09:c3:9d:63:2c:7a:8e:99:d2:
1d:49:bb:a1:b9:ad:e3:ab:c0:39:fa:27:cc:f2:0c:
4f:53:e4:41:d2:9a:cd:a8:5f:99:0b:65:c3:88:2c:
f2:cf:10:03:9e:ab:50:23:9a:d6:77:48:b3:86:e9:
c4:9e:c2:74:53:28:0e:91:72:b4:ad:7f:09:07:b5:
09:81:19:ca:88:a5:f6:19:42:a0:79:a1:d8:a8:fe:
a3:7c:40:cc:15:3e:22:84:e3:9a:bf:7d:c8:62:32:
85:0c:59:15:d9:01:39:ce:62:0d:90:e0:1c:1b:c3:
38:ec:db:6b:ad:fb:11:74:c0:d9:6f:ca:3b:33:09:
05:11:ad:d5:aa:e7:3e:43:f8:07:15:5d:e8:87:63:
8a:61:6c:31:6c:e7:05:ee:d5:81:2a:92:69:0c:33:
26:6d:73:87:ac:f0:c4:da:9e:21:1f:13:e5:22:26:
ae:18:5f:f3:95:de:bc:7e:9d:7f:51:c5:4a:3c:2b:
ba:22:04:4d:30:6b:e0:c9:d8:84:1a:28:d4:69:69:
c9:cc:6b:bf:fb:a2:eb:53:de:49:cb:f4:56:94:74:
7c:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:6B:26:CF:C4:1F:42:DB:05:22:5D:95:ED:10:00:17:FE:27:6E:AA
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/k2smz8QfQtsFIl2V7RAAF_4nbqo.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.210.108.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:df:cc:52:c9:e6:44:5e:d5:b5:62:0e:64:e2:78:b9:7a:a8:
98:85:a9:b2:b9:c9:94:ff:83:08:59:4c:30:c8:b5:87:5b:39:
a9:2b:a2:51:57:02:d7:0f:12:a3:1b:72:01:d0:a8:4f:4d:bb:
29:4c:fe:0d:25:22:51:bc:91:e0:f2:ce:29:13:79:38:26:dc:
0c:f9:70:cf:41:10:c7:cf:47:f0:60:be:d4:49:e8:8c:a9:02:
b8:dc:78:ae:02:db:c6:a8:32:7a:a4:46:b6:22:2f:19:20:bf:
da:9b:3a:2b:59:cc:8a:8c:d7:7e:0f:17:db:dc:ee:bf:f6:09:
59:3c:3f:9c:97:c8:3e:d4:60:e1:3f:10:24:23:9e:df:8a:04:
76:20:9f:2f:23:64:1a:45:d3:4f:cc:14:6a:f8:af:50:2b:88:
3b:27:c7:87:5a:56:e8:62:5e:85:78:a2:9a:e9:18:81:30:74:
5c:82:22:82:fd:5e:28:1c:78:05:2b:e3:84:9a:b1:fc:f1:ec:
6e:ce:77:42:5f:a1:8f:53:26:c8:f0:7e:0e:e1:41:4d:96:3d:
26:4b:9c:e5:61:97:42:80:4e:70:60:89:65:4f:60:ad:5a:70:
5b:9c:cd:e9:4c:2c:29:e0:64:55:9b:c8:d7:4f:2e:ba:90:f7:
3d:3f:c4:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:18:40 2025 by rpki-client