Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/AEx0nXAP2Xviy3TxQXjQFzZ2vJY.roa
File: AEx0nXAP2Xviy3TxQXjQFzZ2vJY.roa (raw, json)
Hash identifier: VpnEgBMBQSu30N9hS4BEg9YMZZwQtKJLMcBWPiUxOEg=
Subject key identifier: 00:4C:74:9D:70:0F:D9:7B:E2:CB:74:F1:41:78:D0:17:36:76:BC:96
Certificate issuer: /CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA
Certificate serial: 35
Authority key identifier: 04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/AEx0nXAP2Xviy3TxQXjQFzZ2vJY.roa
Signing time: Tue 01 Feb 2022 01:31:09 +0000
ROA not before: Tue 01 Feb 2022 01:31:09 +0000
ROA not after: Sun 15 Jan 2023 01:30:03 +0000
asID: 2527
IP address blocks: 131.147.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53 (0x35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA
Validity
Not Before: Feb 1 01:31:09 2022 GMT
Not After : Jan 15 01:30:03 2023 GMT
Subject: CN=004C749D700FD97BE2CB74F14178D0173676BC96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6c:00:57:06:d3:5c:e9:69:86:4a:af:79:92:
93:7d:5b:af:f7:7c:80:b8:5e:38:12:e0:d5:e8:bb:
93:63:dc:06:17:ae:e8:e5:03:62:05:70:1c:1c:e4:
cb:6d:01:43:df:a7:7a:0d:90:31:09:50:91:78:92:
42:9a:a3:b5:51:c3:e9:43:19:63:9a:3a:88:80:04:
02:0e:d2:fe:c8:ac:9a:8a:fc:2a:43:80:17:48:f3:
af:87:fb:95:3e:3c:c5:32:4b:56:e2:76:d6:05:ef:
7d:ae:2d:2b:63:85:5f:b6:73:b6:62:f4:b4:4a:4b:
83:2b:29:70:dd:36:b8:dc:c1:01:f1:b4:58:8e:37:
a7:e4:78:cc:0a:65:92:13:a4:7b:13:d0:c4:89:bb:
59:36:8b:af:91:92:e7:ea:bd:eb:cb:77:c3:b6:71:
b9:3f:dc:1c:45:e8:0f:8b:08:70:6f:8d:04:43:32:
8a:19:b5:6e:78:1b:ad:d3:9e:14:aa:a8:09:81:7e:
50:89:b9:61:e0:10:d6:06:56:f6:b8:9e:9f:d1:5e:
c1:9d:64:78:90:aa:ef:ba:12:7b:54:da:4f:7e:47:
c5:04:41:02:2b:70:18:38:ff:6b:ef:0f:d6:3a:87:
1b:db:f7:b5:a8:bf:81:99:25:ab:56:c5:b6:52:85:
fd:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:4C:74:9D:70:0F:D9:7B:E2:CB:74:F1:41:78:D0:17:36:76:BC:96
X509v3 Authority Key Identifier:
keyid:04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/AEx0nXAP2Xviy3TxQXjQFzZ2vJY.roa
sbgp-ipAddrBlock: critical
IPv4:
131.147.0.0/16
Signature Algorithm: sha256WithRSAEncryption
30:4e:da:44:be:9a:d7:74:2c:bd:54:f2:16:19:00:53:ec:ea:
51:85:75:a9:21:44:72:d8:18:51:c6:41:9b:23:1b:93:73:10:
0b:79:86:ca:d5:61:17:63:25:cf:ac:03:3d:f2:72:eb:68:16:
71:89:cc:a2:e1:9c:fb:5c:86:ba:e1:f0:08:d0:90:98:69:2b:
7a:3d:d5:68:48:40:1a:51:e0:dc:8d:6e:2d:8a:50:2b:c2:52:
e7:ea:00:26:db:70:ad:eb:65:65:2e:7d:3c:69:48:fd:57:c5:
88:cd:a7:5b:c8:b7:be:d8:9a:27:58:ee:86:fa:ba:ba:be:87:
90:56:14:07:00:f5:26:ed:7d:67:34:3a:4e:ad:bf:d1:38:86:
5a:ac:04:1c:b2:6e:d0:71:c2:5d:dd:e1:a2:79:4f:74:cd:fc:
95:ac:d9:e6:30:5e:2a:d0:56:4e:c8:de:47:c1:3d:38:20:ad:
19:d3:0b:7f:cb:df:9c:03:52:ca:ef:0f:c1:01:ab:a3:c9:4a:
da:a5:3e:19:0f:81:bf:48:6f:3d:a0:1e:56:f1:fb:4e:04:04:
ff:c6:f9:be:8d:28:f2:19:5a:69:2f:e9:be:da:74:9a:67:ef:
cf:c4:4e:bb:a2:44:29:4c:c4:80:da:69:e6:a0:67:c3:81:37:
0b:f7:37:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:14:36 2025 by rpki-client