Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/POpUuKyQeorAvJHzwduhC3CMxWw.roa
File: POpUuKyQeorAvJHzwduhC3CMxWw.roa (raw, json)
Hash identifier: yz54iybvmsVAcfM6WazJ1rEUTZd3vUcb7pYTBQzF9V4=
Subject key identifier: 3C:EA:54:B8:AC:90:7A:8A:C0:BC:91:F3:C1:DB:A1:0B:70:8C:C5:6C
Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C
Certificate serial: 01EF
Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/POpUuKyQeorAvJHzwduhC3CMxWw.roa
Signing time: Wed 01 Nov 2023 01:32:35 +0000
ROA not before: Wed 01 Nov 2023 01:32:35 +0000
ROA not after: Mon 14 Oct 2024 01:30:03 +0000
asID: 4686
IP address blocks: 124.255.208.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 495 (0x1ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C
Validity
Not Before: Nov 1 01:32:35 2023 GMT
Not After : Oct 14 01:30:03 2024 GMT
Subject: CN=3CEA54B8AC907A8AC0BC91F3C1DBA10B708CC56C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ee:07:d7:1f:65:41:17:23:8d:3a:f8:2f:c5:
bf:8c:4c:2d:1a:94:b4:57:eb:00:42:fa:27:e7:7d:
de:a3:41:89:7a:3b:5e:49:28:74:fc:d4:4f:13:44:
50:c2:4f:8b:51:b2:58:32:88:6b:2a:ae:6c:97:2b:
88:2c:0c:02:b3:d2:9d:7d:ed:bc:a8:1f:3c:37:a2:
84:d7:37:b5:a2:a7:59:6c:97:fd:a0:ea:27:c1:f1:
8e:ef:50:27:ce:f2:c7:0f:4d:c9:17:45:e8:1d:e7:
07:1c:8a:6b:91:b5:cb:76:67:08:a4:d0:a1:2b:0e:
7d:12:46:ec:a4:04:ca:0a:7f:58:5f:1b:31:23:9e:
54:1f:71:a5:ea:b1:e0:07:5f:99:43:39:a4:79:27:
26:3d:bf:45:79:2c:66:04:37:da:a3:0b:df:25:01:
a8:fe:70:ab:5d:51:21:3f:be:1a:c1:16:a0:e4:23:
bf:57:04:26:98:3c:7a:23:ee:e5:44:0f:49:41:a1:
72:d6:90:bc:a6:90:8a:a7:26:68:aa:cd:f0:32:a5:
e3:7d:00:dd:e7:be:f6:46:2d:1f:2b:46:63:db:33:
a5:c1:95:a0:49:1e:20:09:ed:5c:b8:b4:b6:03:65:
06:85:1a:02:af:e5:9f:eb:e5:ae:c3:de:11:3b:83:
6e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:EA:54:B8:AC:90:7A:8A:C0:BC:91:F3:C1:DB:A1:0B:70:8C:C5:6C
X509v3 Authority Key Identifier:
keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/POpUuKyQeorAvJHzwduhC3CMxWw.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
124.255.208.0/20
Signature Algorithm: sha256WithRSAEncryption
12:0a:aa:d8:6e:ff:00:0e:f7:06:11:eb:10:8e:75:29:ba:37:
09:20:fd:98:2b:be:93:8a:44:a7:8a:7c:ae:5a:b8:99:f6:ab:
59:18:88:17:72:03:34:ac:a8:ee:a9:3d:ad:71:14:44:19:5d:
7c:8d:4c:f5:73:70:d1:9e:f2:37:01:70:6b:45:2f:dd:77:e4:
02:1b:b1:b1:34:56:8f:43:d5:2e:c6:5c:92:96:d9:cd:b0:24:
0e:19:b3:b1:da:9a:fc:c9:d5:3e:db:f2:82:78:b9:fa:69:c6:
ab:88:0a:90:be:e1:78:76:b1:4c:e8:14:04:ee:31:89:ff:6b:
a3:00:f6:98:0d:30:b8:a2:bd:46:9e:74:21:74:ec:b8:1e:ca:
64:41:30:15:20:29:1c:8b:3e:ba:f0:ec:0d:8f:1a:45:84:07:
c3:9a:15:db:dd:47:fb:b5:89:11:2e:7c:be:d6:18:23:af:21:
ce:ce:4e:ce:a5:3a:1d:3c:90:2a:54:9f:d2:b9:31:f6:11:c9:
fd:79:a4:70:42:66:e2:36:81:a8:64:cc:b0:8a:be:e5:fb:2f:
c2:20:98:16:bf:f1:3c:79:16:27:a8:75:e2:14:1d:ee:06:6d:
32:5f:c3:f0:db:39:13:eb:91:3f:5c:7b:cf:58:0f:f4:0e:15:
3b:a4:6d:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:05:55 2025 by rpki-client