Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/ExtAfDtfTKY7af8o70cCwILIrdo.roa
File: ExtAfDtfTKY7af8o70cCwILIrdo.roa (raw, json)
Hash identifier: GHwmksN/iYiyRg6+OIBZ35qnmQ4ierxpRRY0VtMKElA=
Subject key identifier: 13:1B:40:7C:3B:5F:4C:A6:3B:69:FF:28:EF:47:02:C0:82:C8:AD:DA
Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C
Certificate serial: 01E6
Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/ExtAfDtfTKY7af8o70cCwILIrdo.roa
Signing time: Tue 01 Aug 2023 01:31:31 +0000
ROA not before: Tue 01 Aug 2023 01:31:31 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 10013
IP address blocks: 153.120.240.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 486 (0x1e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C
Validity
Not Before: Aug 1 01:31:31 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=131B407C3B5F4CA63B69FF28EF4702C082C8ADDA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:5c:cf:9a:b4:c3:24:8a:72:20:5a:55:3c:f4:
fc:32:80:50:d4:90:c5:4c:6d:34:f8:89:51:bb:a0:
df:b4:cf:d1:21:81:e8:6e:35:66:47:7e:63:a6:0d:
ce:58:d2:f3:ed:b8:1d:46:2c:d7:be:37:32:33:12:
51:1b:49:c5:a6:16:e4:ce:8c:55:27:e6:c2:72:79:
03:e6:57:19:95:3e:70:02:05:4d:e7:74:79:4d:4c:
03:5b:52:dc:d9:a1:cb:a3:be:42:d1:a6:f3:f2:c7:
1b:d3:cc:83:10:68:ff:34:67:f0:be:74:b5:d1:03:
73:2f:14:c1:c7:86:28:a8:15:61:95:e5:95:d6:8d:
6b:a9:f8:eb:11:c5:b8:25:9d:4e:80:83:b4:b8:95:
9a:ba:a6:a0:42:45:51:3e:6d:7b:6b:88:f7:a4:36:
89:bd:0d:10:fe:ff:40:3f:d3:d1:81:a6:98:e5:05:
bf:6e:14:98:48:35:c6:dd:39:c0:e0:1e:61:e7:03:
78:c6:f1:d6:d7:b7:b8:d5:e8:79:4c:91:85:0e:cf:
1c:28:94:86:c6:5b:f4:b4:c0:0c:eb:13:e2:c7:9b:
f6:af:28:a5:9e:21:4f:3b:94:4a:de:90:a1:4c:3c:
af:39:67:72:8d:11:b1:da:fc:9d:b5:5e:fb:3a:d8:
19:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:1B:40:7C:3B:5F:4C:A6:3B:69:FF:28:EF:47:02:C0:82:C8:AD:DA
X509v3 Authority Key Identifier:
keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/ExtAfDtfTKY7af8o70cCwILIrdo.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
153.120.240.0/20
Signature Algorithm: sha256WithRSAEncryption
26:92:dc:ac:df:ad:a0:79:34:12:5f:b7:27:e4:da:2f:35:5c:
d4:c4:b9:7c:fe:82:38:02:f3:0c:8c:8d:48:5c:9a:08:71:77:
a3:11:77:1b:ea:86:a1:e1:91:42:d3:16:9f:fb:f6:d6:7e:3a:
18:1a:e6:f0:e9:26:c2:fe:c7:60:34:57:d8:ef:45:3e:09:6a:
d6:79:3f:7d:1f:48:c4:35:91:58:f7:e4:d0:6d:6f:c7:9e:18:
77:55:23:7f:28:11:a0:c7:3d:9a:89:27:32:b2:dc:8e:61:1f:
82:9b:51:1a:e8:17:d3:8b:b3:b4:c2:ee:82:3e:ff:08:50:c2:
f9:f8:48:4c:8a:d0:44:10:5c:c6:13:8f:31:a7:5e:c2:87:cc:
e3:65:cd:3f:de:78:a9:a4:81:b9:e4:75:d7:1f:68:43:eb:cd:
51:d1:bc:d0:a9:7f:9d:5c:8f:da:18:fc:c9:f6:90:33:5f:7f:
b5:3b:6c:43:48:37:d4:e1:6b:3c:ac:90:f5:c0:a6:b7:47:41:
e6:60:53:ee:74:65:8a:cf:c5:79:5f:c4:13:7f:fa:a4:72:8d:
0a:cf:97:51:53:67:c1:c7:f0:7e:d2:3a:ef:8a:3b:d7:e6:4f:
40:e7:97:9e:76:4c:bf:ae:ce:2d:98:b6:0f:28:eb:8e:08:86:
ed:a2:7d:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:28:23 2025 by rpki-client