Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/KHxPZRuwXXPrTAF7ORBFEEbW7OA.roa
File: KHxPZRuwXXPrTAF7ORBFEEbW7OA.roa (raw, json)
Hash identifier: EfAKTHTwRc3PfUbUFefsrYOysq+sPPWAASrWh7/eCXA=
Subject key identifier: 28:7C:4F:65:1B:B0:5D:73:EB:4C:01:7B:39:10:45:10:46:D6:EC:E0
Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C
Certificate serial: 0112
Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/KHxPZRuwXXPrTAF7ORBFEEbW7OA.roa
Signing time: Fri 07 Jul 2023 04:05:53 +0000
ROA not before: Fri 07 Jul 2023 04:05:53 +0000
ROA not after: Fri 14 Jun 2024 01:30:02 +0000
asID: 10013
IP address blocks: 27.120.64.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 274 (0x112)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C
Validity
Not Before: Jul 7 04:05:53 2023 GMT
Not After : Jun 14 01:30:02 2024 GMT
Subject: CN=287C4F651BB05D73EB4C017B3910451046D6ECE0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b2:ca:9c:85:99:d1:bc:ab:c4:ad:74:56:4e:
00:13:79:87:69:6b:5f:0c:33:79:a4:f0:6d:7d:17:
eb:6c:4e:d8:1a:bd:17:11:98:75:8c:52:5a:d4:eb:
6e:f7:b9:65:77:4f:cb:0d:95:d3:45:87:91:56:7e:
ce:e7:a3:56:db:44:0f:70:da:61:12:56:5b:90:6f:
9e:dc:00:dd:59:d0:eb:c8:54:d4:39:0f:bb:c7:bd:
b5:5c:21:7e:c6:85:51:08:5a:a6:5b:db:c9:dd:24:
57:d1:25:df:a6:c8:40:f0:40:e3:cf:99:28:f3:75:
c9:5f:ac:ca:8f:f2:ee:aa:7d:aa:8c:71:4f:3a:94:
1a:0a:b4:a3:bd:35:3c:7d:e7:f9:fe:f8:09:46:a9:
22:7b:0c:46:bd:9d:56:a2:3a:d0:91:15:a9:7b:f4:
a8:23:ce:01:44:b1:39:a9:be:29:63:27:ff:0a:51:
cd:51:3a:fa:d6:06:05:98:6c:42:1d:ac:c5:66:2c:
0a:4f:2c:58:95:bd:15:02:55:30:a2:f0:18:93:84:
07:df:c4:20:9d:2e:33:02:22:93:7a:d5:43:ef:02:
01:11:ee:86:0a:f1:48:fd:99:63:3f:44:0b:60:94:
ff:87:33:8d:e4:57:a5:93:6a:6a:54:06:bd:12:37:
65:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:7C:4F:65:1B:B0:5D:73:EB:4C:01:7B:39:10:45:10:46:D6:EC:E0
X509v3 Authority Key Identifier:
keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/KHxPZRuwXXPrTAF7ORBFEEbW7OA.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.120.64.0/18
Signature Algorithm: sha256WithRSAEncryption
9e:02:c2:2d:60:4a:11:f4:45:20:be:ad:d3:c6:7e:63:16:10:
16:3c:95:16:79:39:d6:06:eb:6a:a0:70:dd:b7:86:46:21:38:
9d:42:ca:5d:96:ef:1f:c0:9a:13:fc:d6:19:32:10:36:e0:5a:
53:6e:92:27:89:ec:50:4a:47:61:2c:f4:bf:9b:5a:ae:a5:53:
e6:9f:66:2e:fb:cb:60:8a:c5:79:92:61:b1:21:99:5d:f9:57:
f5:32:28:ea:55:67:19:05:11:9a:8c:9f:66:72:75:2a:ac:14:
71:53:0e:82:d2:74:5e:1c:15:46:ad:65:ae:fd:ad:dc:53:a4:
a1:a7:c9:dc:03:d2:f9:cd:32:4d:e8:93:94:ca:f3:6e:98:e6:
45:18:4c:34:9d:6f:fa:c9:75:7b:5a:9e:30:96:4c:56:6b:9e:
3a:de:e3:16:63:88:2d:7e:92:08:8c:44:57:1c:24:48:5b:89:
f7:e7:c1:fd:59:ad:29:cc:10:fd:a2:ba:22:be:33:d5:06:e4:
49:ea:54:4c:57:d7:4c:68:6e:ef:b2:b1:4e:ba:0a:78:23:23:
b1:ea:ea:1d:e0:c7:02:11:d0:a2:c3:84:a2:23:1b:1b:10:fd:
70:c2:6c:f6:78:f2:b3:48:92:37:68:80:30:a7:f9:23:ff:a4:
12:60:18:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 01:48:51 2025 by rpki-client