Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/Lf-dC0Rr7VERchDR1bUr1SGP1JA.roa
File: Lf-dC0Rr7VERchDR1bUr1SGP1JA.roa (raw, json)
Hash identifier: AmsiR7fgdiKeKySJXYkxmS3DXHSDf73l/o723skoLfE=
Subject key identifier: 2D:FF:9D:0B:44:6B:ED:51:11:72:10:D1:D5:B5:2B:D5:21:8F:D4:90
Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D
Certificate serial: C7
Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/Lf-dC0Rr7VERchDR1bUr1SGP1JA.roa
Signing time: Sun 01 Jan 2023 01:29:34 +0000
ROA not before: Sun 01 Jan 2023 01:29:34 +0000
ROA not after: Fri 15 Dec 2023 01:30:02 +0000
asID: 2527
IP address blocks: 210.156.160.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 199 (0xc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D
Validity
Not Before: Jan 1 01:29:34 2023 GMT
Not After : Dec 15 01:30:02 2023 GMT
Subject: CN=2DFF9D0B446BED51117210D1D5B52BD5218FD490
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:4f:a6:56:85:e9:7d:0f:91:56:a8:91:14:00:
f7:2c:20:a8:88:f5:66:12:da:e8:91:e6:19:c4:a4:
ea:b8:91:8d:e7:55:ad:fd:39:b9:62:20:80:a3:4c:
e4:78:bd:c7:53:3e:22:9e:90:7b:b4:70:be:30:a6:
18:fd:c4:d8:df:0d:f6:28:4f:20:02:03:f2:b3:6f:
97:07:43:35:82:54:75:c6:be:4b:f0:f8:a9:45:0d:
5d:be:31:15:bb:d7:c5:d9:32:f8:03:b1:d9:d5:75:
21:fe:59:e7:9a:f1:f1:1a:40:bf:2d:38:4e:75:b8:
b9:27:cd:b0:83:f0:94:e6:6e:72:78:61:00:ee:fc:
66:f8:ae:bd:e2:17:94:99:ec:db:16:35:be:da:70:
ad:00:d4:06:29:61:86:8d:13:7c:31:ab:26:5e:38:
2c:5b:2c:e3:d2:02:b8:c5:0c:9b:32:ef:c8:f0:13:
ca:49:97:82:fe:78:26:d8:27:11:a8:4c:49:33:d9:
05:57:df:1f:14:d5:a6:c1:1c:98:39:5d:f4:59:0f:
0e:a3:bf:cd:28:31:6f:40:b4:56:5b:61:f8:4e:e5:
fe:31:11:8d:15:1d:8e:14:f3:be:d4:1a:27:f4:94:
80:df:ac:cc:95:b1:ee:ba:d0:de:5d:e7:bf:14:84:
66:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:FF:9D:0B:44:6B:ED:51:11:72:10:D1:D5:B5:2B:D5:21:8F:D4:90
X509v3 Authority Key Identifier:
keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/Lf-dC0Rr7VERchDR1bUr1SGP1JA.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
210.156.160.0/20
Signature Algorithm: sha256WithRSAEncryption
60:f9:59:5e:f0:3a:d5:9e:ad:4e:f7:aa:06:64:d1:b6:a3:54:
d8:3f:06:8b:98:d2:59:c2:38:97:e9:77:5c:80:85:c1:27:b2:
8b:68:5e:ad:c1:ee:ba:f0:86:b0:eb:b1:5a:58:50:b7:3a:4c:
8c:49:3b:15:06:e9:57:25:1b:9f:6a:9e:84:9e:26:eb:e4:e7:
0c:55:ad:7b:0a:64:6c:fd:f9:f0:7d:e7:af:5e:0f:f1:5c:1a:
8b:d6:d7:76:65:df:fa:af:18:54:a7:9c:9d:9f:d5:81:2c:3d:
c8:62:13:7f:11:d2:ff:c5:ea:42:33:da:7d:e5:be:12:d7:4b:
83:1f:80:d7:43:c8:b4:b3:27:74:c2:fc:bb:d6:0d:31:c2:09:
c1:ce:b1:84:a8:d5:57:c2:ce:e8:ba:75:b6:59:a2:ac:a0:2e:
cc:1e:34:9b:c2:99:57:1f:4b:59:28:fe:8b:50:8c:41:3f:51:
db:05:f5:7d:b7:7c:7f:55:3b:b1:1e:56:4f:f4:4e:fc:6c:ac:
50:ab:b9:b1:c4:cd:32:1e:61:95:81:c0:50:c0:d6:a1:5a:7d:
4c:f0:d2:c8:32:69:3c:22:1d:76:6b:eb:4d:cf:42:91:26:69:
70:90:59:a9:ef:c2:f9:21:bc:36:0b:1b:b1:0e:42:ab:3c:fa:
4e:96:04:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:34:26 2025 by rpki-client