Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/zg3lg9E-iO9T89SU40HcQ3-forE.roa
File: zg3lg9E-iO9T89SU40HcQ3-forE.roa (raw, json)
Hash identifier: yj3paQCErPBYoRdkvz+4Gy/oTCkE/zN+W7aVeWTLtQg=
Subject key identifier: CE:0D:E5:83:D1:3E:88:EF:53:F3:D4:94:E3:41:DC:43:7F:9F:A2:B1
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0239
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/zg3lg9E-iO9T89SU40HcQ3-forE.roa
Signing time: Tue 30 May 2023 16:32:20 +0000
ROA not before: Tue 30 May 2023 16:32:20 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 220.159.208.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 569 (0x239)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:32:20 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=CE0DE583D13E88EF53F3D494E341DC437F9FA2B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f6:39:99:0a:f2:b2:e2:f7:e1:31:8d:2c:c9:
38:fa:05:ef:05:2f:bc:8b:48:c4:88:97:be:ac:b4:
ad:39:d4:23:bc:cb:ca:57:34:7d:30:51:3f:68:8d:
1a:af:23:9b:91:17:72:1e:7a:1b:8e:ab:ce:0a:5b:
5f:6e:90:23:25:40:16:4b:cb:10:78:da:bb:92:5b:
83:40:96:59:67:97:a5:cd:c7:66:9d:b7:a1:28:d4:
16:0b:b7:3a:c2:41:44:9b:75:8b:60:c4:5e:a3:76:
fc:7b:59:5b:fe:d0:28:d8:51:49:df:bd:cc:ff:7b:
ad:cc:b8:80:c2:7f:06:3e:de:9e:13:f6:77:40:74:
45:5f:c2:93:eb:09:17:b3:54:c3:44:d1:a9:6b:9e:
dd:a3:47:a0:67:5e:d9:74:0a:91:58:63:96:b6:18:
c6:58:4b:e3:5b:26:09:47:4d:11:a6:64:af:12:b1:
49:74:cc:9a:97:12:ec:d5:b8:5d:09:1c:1d:fc:87:
02:49:f1:bb:c7:00:46:5b:14:88:cc:77:9d:1e:b0:
b2:67:c4:2c:de:8c:de:ea:88:b8:56:16:de:b1:38:
34:87:2d:34:2c:c9:60:3f:6c:fb:28:47:49:ec:aa:
f6:f6:12:4b:68:29:17:d3:0f:5a:19:aa:ac:e0:eb:
02:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:0D:E5:83:D1:3E:88:EF:53:F3:D4:94:E3:41:DC:43:7F:9F:A2:B1
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/zg3lg9E-iO9T89SU40HcQ3-forE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.159.208.0/21
Signature Algorithm: sha256WithRSAEncryption
86:b1:9b:74:84:2d:c3:55:23:b7:c7:ac:0e:57:19:1f:65:a5:
17:a8:8e:2e:cc:31:b0:a9:1f:d5:54:6d:c6:87:8a:50:32:72:
52:a7:0e:31:87:30:d0:90:f1:35:22:7e:15:84:45:90:7f:58:
80:19:73:28:94:46:7a:d2:0c:74:7d:d3:df:7c:0b:8d:16:5e:
ee:a4:96:51:ad:33:d4:88:e4:5b:7b:f6:97:3d:e8:2a:e2:75:
e4:78:79:19:21:8d:fd:4a:34:78:e3:1a:a3:b4:cc:04:fd:4d:
ee:57:23:f9:13:8a:f2:70:12:c4:c3:82:55:2d:5f:af:74:a0:
e8:fb:75:81:86:d9:2e:cf:65:04:b9:9f:76:56:74:ee:44:b6:
95:3d:ca:3b:3d:de:33:73:13:f5:cb:c0:60:87:70:6c:97:cc:
6d:3b:f5:4b:24:e9:cc:94:55:5b:c2:24:b2:74:ed:ab:5f:2d:
18:fc:6d:da:0d:82:17:e6:d5:f9:1c:b8:de:b6:4f:f9:74:25:
94:52:aa:b8:fa:a4:47:3d:25:bc:a3:ef:24:dd:23:b6:e4:9a:
43:9c:75:ac:45:6e:27:13:d3:1b:69:5e:50:16:af:08:14:c4:
b0:4c:41:11:dd:6a:1f:b2:5e:fe:c8:a7:96:79:0c:6c:be:8b:
6f:37:94:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:31:48 2025 by rpki-client