Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/4sp4dkhBQ5XF4AQP25aQDc7kc9E.roa
File: 4sp4dkhBQ5XF4AQP25aQDc7kc9E.roa (raw, json)
Hash identifier: mblREXDP8oUWC3HWtIcNzmWsfKAKsF7yKjQwmB4FtJ4=
Subject key identifier: E2:CA:78:76:48:41:43:95:C5:E0:04:0F:DB:96:90:0D:CE:E4:73:D1
Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C
Certificate serial: 0152
Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/4sp4dkhBQ5XF4AQP25aQDc7kc9E.roa
Signing time: Fri 07 Jul 2023 04:08:27 +0000
ROA not before: Fri 07 Jul 2023 04:08:27 +0000
ROA not after: Fri 14 Jun 2024 01:30:02 +0000
asID: 10013
IP address blocks: 36.52.28.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 338 (0x152)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C
Validity
Not Before: Jul 7 04:08:27 2023 GMT
Not After : Jun 14 01:30:02 2024 GMT
Subject: CN=E2CA787648414395C5E0040FDB96900DCEE473D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:af:6f:5f:13:f1:0d:0a:9f:82:b1:cd:38:23:
33:2e:be:78:e4:88:fa:02:8b:51:54:59:5d:33:53:
8a:c7:14:b8:9e:ef:da:60:8c:98:3b:75:a9:18:99:
63:8f:0c:26:52:c4:fa:ee:18:e1:8e:e0:ff:9b:43:
ec:d3:0b:12:68:16:db:72:fb:8a:00:b6:83:6f:79:
ec:fe:b7:2e:23:11:cf:26:36:1e:36:1d:e9:68:24:
58:f6:4b:9e:91:aa:ca:98:06:5c:6f:e1:d5:3b:52:
2f:e6:e8:7d:9b:8a:32:cf:06:06:06:d8:27:5a:49:
d5:c7:d3:8b:36:0f:9e:c8:1b:e4:3f:04:5e:ff:be:
af:32:e6:e6:99:dd:52:a5:46:b7:6d:89:16:ad:b1:
b5:83:f2:d7:df:71:8d:c5:97:5c:df:96:49:7d:d2:
43:fc:7f:93:a4:e3:64:ab:f0:ad:23:4e:8f:10:e6:
5c:02:89:34:9d:5a:10:e8:17:40:d1:a4:84:19:75:
cd:1b:b7:2a:1c:6a:05:b0:ce:41:a8:6d:2e:9e:ba:
d0:11:74:03:b4:eb:2d:28:10:13:05:ee:8d:b3:fb:
38:3f:be:f0:27:b7:d7:a5:0a:4c:c7:8a:4a:2f:18:
b6:d9:b7:0b:8c:95:6c:19:0f:c0:f2:ba:59:e9:82:
ad:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:CA:78:76:48:41:43:95:C5:E0:04:0F:DB:96:90:0D:CE:E4:73:D1
X509v3 Authority Key Identifier:
keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/4sp4dkhBQ5XF4AQP25aQDc7kc9E.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
36.52.28.0/22
Signature Algorithm: sha256WithRSAEncryption
24:10:ba:9a:1b:d7:03:e3:d7:ce:bb:47:57:8e:a9:72:f6:4a:
46:24:d8:62:66:c0:6f:c4:66:66:ef:b1:3e:79:ca:c9:c7:63:
c5:ab:9f:7a:be:0b:25:b1:f2:07:37:b4:d5:47:8b:d6:5d:89:
1f:8a:01:25:17:8f:0b:c6:7a:a9:2a:72:dc:a1:42:1b:e4:e0:
99:0e:0f:4e:aa:d9:94:91:50:e9:50:23:08:eb:c3:fc:77:0b:
eb:14:90:f1:af:46:81:ea:77:fc:0d:48:16:6b:95:65:ea:a3:
66:0d:f6:12:77:39:58:c9:a2:00:6f:26:02:45:ba:b3:64:0a:
33:8d:ea:d4:ba:7d:a7:29:86:aa:99:81:37:f2:d9:6b:9d:01:
01:7d:50:7f:3b:9d:6b:12:f4:c0:af:65:c0:4e:50:07:d1:00:
8d:a6:88:1b:b5:d5:fd:2c:3c:ca:78:0e:40:15:c6:60:4e:81:
7d:aa:74:55:92:f6:04:c2:84:89:2e:49:fd:62:1e:c4:fa:a8:
1f:cf:4a:96:b9:df:ae:ba:7a:4b:ab:72:0e:8b:22:18:94:7f:
9b:ec:a8:c7:74:24:e8:32:9a:ec:68:33:70:ed:18:b6:47:5a:
e2:cf:eb:a7:af:5b:54:66:8c:77:7a:0f:f0:f0:80:ac:79:c4:
55:80:6d:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 01:51:27 2025 by rpki-client