Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/2R3n9-nU7y_HPI5SXflWNx8hdxc.roa
File: 2R3n9-nU7y_HPI5SXflWNx8hdxc.roa (raw, json)
Hash identifier: UwI43FAYg5Vh6xTSOmGb394g7EyhrmbrBpgUMTH5hHk=
Subject key identifier: D9:1D:E7:F7:E9:D4:EF:2F:C7:3C:8E:52:5D:F9:56:37:1F:21:77:17
Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C
Certificate serial: 013C
Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/2R3n9-nU7y_HPI5SXflWNx8hdxc.roa
Signing time: Fri 07 Jul 2023 04:08:19 +0000
ROA not before: Fri 07 Jul 2023 04:08:19 +0000
ROA not after: Fri 14 Jun 2024 01:30:02 +0000
asID: 10013
IP address blocks: 36.54.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 316 (0x13c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C
Validity
Not Before: Jul 7 04:08:19 2023 GMT
Not After : Jun 14 01:30:02 2024 GMT
Subject: CN=D91DE7F7E9D4EF2FC73C8E525DF956371F217717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:85:30:54:96:67:92:a2:0a:dc:03:be:41:29:
9d:f7:e4:5b:fe:8f:de:d1:5b:4a:82:73:bb:31:8f:
15:6f:c9:11:b6:50:0a:2c:95:df:eb:1c:9b:94:14:
d5:b7:fd:d3:ed:7f:52:47:39:f5:45:75:70:d8:d6:
3c:af:1b:a0:02:88:2b:d1:72:c2:90:ff:ef:18:7d:
ea:32:bf:83:37:6e:33:43:b6:c9:0f:7a:d0:a9:7f:
14:81:54:11:8e:9a:bb:23:f7:4d:75:5f:1f:e0:c6:
5b:bc:9e:6d:e0:d5:a5:d7:88:48:5c:73:5d:83:11:
bd:13:df:99:a6:de:4c:51:f2:3a:9a:7b:fa:80:ce:
c5:ae:43:1b:7c:c9:4d:54:80:66:8c:db:6c:51:c1:
cc:b6:83:e1:c8:b6:9b:b8:53:09:82:a5:81:7d:4f:
a2:ac:b3:75:0c:7a:a7:68:d7:76:6a:37:e7:3a:c3:
f7:ee:43:e3:18:bc:ff:10:86:90:22:43:4c:f4:80:
cf:61:d6:cf:aa:4e:d5:d0:12:58:e9:29:54:ee:05:
37:89:b5:d4:55:ee:77:b2:d5:2d:69:31:9b:94:c0:
91:35:e3:eb:85:dc:6d:1a:06:e2:46:6b:f6:51:18:
54:38:7e:1c:e1:fe:06:da:53:f2:f4:f1:7f:c1:a0:
b0:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:1D:E7:F7:E9:D4:EF:2F:C7:3C:8E:52:5D:F9:56:37:1F:21:77:17
X509v3 Authority Key Identifier:
keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/2R3n9-nU7y_HPI5SXflWNx8hdxc.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
36.54.128.0/17
Signature Algorithm: sha256WithRSAEncryption
0a:54:6e:2d:37:8a:95:19:9d:79:df:b1:c0:6b:96:8b:29:83:
17:54:89:bb:ed:46:77:74:d9:4f:b6:8e:20:aa:36:e1:41:3f:
80:f9:22:5f:6c:f6:a2:2b:30:82:ce:14:3f:1d:6f:a7:c8:46:
24:ae:8e:c3:b0:6a:34:1c:18:70:f8:b3:8c:7d:d1:65:1f:f1:
56:86:6f:07:33:26:6f:c1:00:a2:8d:92:1a:05:3d:1c:87:5a:
dc:43:f1:c8:9b:24:54:2c:03:53:15:55:04:0d:aa:d4:4b:28:
66:5f:85:34:ce:dd:cc:fd:f6:56:1a:bb:11:b4:e6:dc:bf:e4:
fc:cd:2e:5a:b5:38:4b:0d:5c:31:93:89:f9:b1:ce:89:6f:33:
11:a2:d0:0d:31:72:63:b7:78:bb:fa:58:ce:0c:3a:a3:0d:61:
70:92:84:6b:58:42:73:43:c9:f2:0f:31:f8:1e:98:db:26:da:
10:3b:9d:1f:ff:a6:c9:41:10:d7:f9:c5:24:c4:eb:da:44:f3:
0a:5a:75:43:f5:32:b3:9b:1b:74:68:e1:34:df:ea:6e:f3:2b:
09:f9:e7:41:56:9c:df:e7:d6:3d:1d:d1:71:dd:d3:7b:d9:5c:
38:96:e9:80:ad:ae:24:bb:b7:f9:f3:6e:3f:b1:ca:1d:fb:3d:
ac:c5:f0:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:30:33 2025 by rpki-client