Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/X7jBh1bv-aRg20FoANMAlgtwXQA.roa
File: X7jBh1bv-aRg20FoANMAlgtwXQA.roa (raw, json)
Hash identifier: Y9jK+1XJwilqzJOtehaoEBC/DzcIs4yj7bE/yUtvkik=
Subject key identifier: 5F:B8:C1:87:56:EF:F9:A4:60:DB:41:68:00:D3:00:96:0B:70:5D:00
Certificate issuer: /CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA
Certificate serial: 63
Authority key identifier: 04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/X7jBh1bv-aRg20FoANMAlgtwXQA.roa
Signing time: Mon 01 May 2023 01:28:35 +0000
ROA not before: Mon 01 May 2023 01:28:35 +0000
ROA not after: Sun 14 Apr 2024 01:30:02 +0000
asID: 2527
IP address blocks: 152.117.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99 (0x63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA
Validity
Not Before: May 1 01:28:35 2023 GMT
Not After : Apr 14 01:30:02 2024 GMT
Subject: CN=5FB8C18756EFF9A460DB416800D300960B705D00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c7:63:8e:1f:c3:13:7d:45:70:bc:83:cb:da:
88:bf:90:3a:cf:ac:f5:bf:86:49:11:db:76:1a:51:
40:1b:20:f1:68:41:be:da:af:6b:ae:45:b1:18:67:
6e:dd:fc:ad:be:fa:3d:ec:67:d4:26:73:ab:78:8d:
65:54:96:d7:d7:8c:20:7d:aa:49:9e:cb:95:8d:10:
c3:a4:94:b3:a3:85:59:8c:b3:87:ff:64:ea:d8:30:
97:0a:f6:ae:c9:63:ff:f5:73:0d:57:4d:31:64:92:
d9:9f:6e:07:21:a3:09:18:36:04:00:95:93:98:00:
6a:b3:13:83:42:7f:14:5e:89:45:9a:23:cd:6b:72:
3c:7e:81:28:9d:f4:10:44:f1:8a:96:57:ef:de:dc:
c3:2c:aa:6c:97:46:fb:16:4a:4e:aa:ac:12:24:ac:
a5:32:00:a6:e6:1a:26:66:6d:3e:dc:3c:a1:84:db:
19:db:5f:95:b5:9c:09:be:36:92:70:e9:9e:6a:94:
a6:a9:f9:e0:f6:03:23:78:c2:d8:9c:7a:48:4d:fd:
82:6d:d5:90:89:53:3e:04:fe:bc:dd:ee:2a:86:ed:
9b:f5:d2:77:31:36:f7:c6:90:a6:dd:aa:5f:99:9a:
6f:ea:56:60:34:69:90:ad:04:1e:d4:75:b3:18:c9:
48:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:B8:C1:87:56:EF:F9:A4:60:DB:41:68:00:D3:00:96:0B:70:5D:00
X509v3 Authority Key Identifier:
keyid:04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/X7jBh1bv-aRg20FoANMAlgtwXQA.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
152.117.128.0/17
Signature Algorithm: sha256WithRSAEncryption
bc:77:23:92:f6:32:d0:8a:32:42:53:1a:5a:84:92:92:de:ab:
7a:7c:e6:e8:fb:12:98:39:f2:e7:0d:14:39:1d:8e:26:c9:c6:
52:5d:6f:1d:02:16:e9:74:3e:ba:40:39:0f:97:f3:4e:fc:df:
86:9a:8f:67:a7:3c:97:4d:1e:d3:80:c2:09:74:1e:8d:00:1e:
df:7b:66:03:49:56:fc:59:83:62:83:8b:15:39:0e:37:e2:c3:
de:37:44:50:5a:76:e7:17:f6:79:6f:63:9c:31:fe:64:93:47:
03:76:eb:e5:bd:31:4d:8c:5c:12:a0:00:11:d0:27:04:a6:a8:
1e:08:23:6b:ff:dc:09:5e:17:58:a1:a1:47:5b:b8:13:16:3a:
33:e0:f8:d0:ce:78:90:5a:fb:39:1e:65:51:c0:88:6e:48:6c:
32:83:54:73:92:f6:05:00:b6:f0:29:a8:0d:ae:be:0c:b8:2f:
71:93:01:8e:b1:23:4b:31:fe:1b:a9:35:15:fe:82:fc:62:4f:
19:dd:59:ee:10:77:a0:cc:ac:d9:f8:4e:66:d9:21:0a:f9:27:
52:49:1d:50:d6:a0:37:56:a4:da:24:69:73:6d:be:4f:4d:f9:
ae:9a:36:b7:1d:5c:01:0a:71:19:4e:61:20:8d:16:68:fb:c3:
49:37:f3:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:04:37 2025 by rpki-client