Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/saQJNw8jFc89FBh6UTQ4-TO0D80.roa
File: saQJNw8jFc89FBh6UTQ4-TO0D80.roa (raw, json)
Hash identifier: UqUxr8FbZLbIKpDekAmj4WX7T7TbbIWKAqoWJIxxreQ=
Subject key identifier: B1:A4:09:37:0F:23:15:CF:3D:14:18:7A:51:34:38:F9:33:B4:0F:CD
Certificate issuer: /CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA
Certificate serial: 78
Authority key identifier: 04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/saQJNw8jFc89FBh6UTQ4-TO0D80.roa
Signing time: Fri 01 Dec 2023 01:33:31 +0000
ROA not before: Fri 01 Dec 2023 01:33:31 +0000
ROA not after: Thu 14 Nov 2024 01:30:03 +0000
asID: 2527
IP address blocks: 157.147.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120 (0x78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA
Validity
Not Before: Dec 1 01:33:31 2023 GMT
Not After : Nov 14 01:30:03 2024 GMT
Subject: CN=B1A409370F2315CF3D14187A513438F933B40FCD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:76:d8:19:e0:fa:1f:60:bf:a9:70:ba:18:b1:
23:59:3d:d8:31:4d:4c:6e:1c:fb:d3:bd:bd:b4:ae:
b2:c5:d6:11:aa:5c:2f:06:78:48:47:33:41:e5:73:
eb:59:66:e8:58:bd:5d:4b:74:15:c0:b4:ec:6f:b9:
c4:3e:50:68:fc:d9:80:4b:03:48:d0:20:95:88:f2:
59:cc:5d:ee:59:ee:ca:af:ee:24:e5:49:e4:4e:ff:
7c:6e:79:c9:73:47:01:3e:35:c4:0d:25:6f:e5:a7:
b4:84:e3:63:ad:8d:cf:4f:9d:f6:2d:74:b9:6e:06:
25:dd:b1:aa:6c:be:32:46:cb:c7:1d:95:da:4f:ee:
53:c4:14:04:ea:36:86:4c:78:7f:63:61:ec:31:71:
ac:07:03:0e:6f:75:bf:e8:00:d9:d5:17:a5:3b:d6:
d2:ef:b2:97:b2:7e:e8:d0:aa:2a:21:0d:f5:4a:db:
10:cd:a9:14:7e:f6:58:28:af:17:a4:1c:8f:3f:6f:
c8:d7:92:9c:c3:48:ff:8f:cc:43:6e:f6:34:5b:40:
df:ef:4e:3b:ea:e6:bc:dd:c6:c2:2a:ac:60:ac:84:
f1:ae:63:f2:16:a2:cc:30:1f:99:32:a2:cc:f5:67:
4b:40:e4:ad:2c:73:6a:35:87:97:1e:af:09:84:f2:
21:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:A4:09:37:0F:23:15:CF:3D:14:18:7A:51:34:38:F9:33:B4:0F:CD
X509v3 Authority Key Identifier:
keyid:04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/saQJNw8jFc89FBh6UTQ4-TO0D80.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.147.0.0/16
Signature Algorithm: sha256WithRSAEncryption
d2:52:e7:69:20:82:1b:a4:38:5a:23:4f:d6:85:39:76:39:23:
77:63:97:f0:f7:91:2c:f0:b8:9c:be:0f:cc:cc:e2:72:21:a1:
67:de:ab:f0:24:ae:44:bf:16:9b:a6:e3:ca:97:c3:3f:c8:c0:
99:74:0b:8c:14:04:16:8f:d2:d6:a5:85:31:81:c0:92:63:ef:
ba:45:64:87:b3:5c:0f:92:07:64:9e:3e:0e:c1:bf:89:47:0d:
ec:31:5b:b2:89:7a:e9:1a:34:6f:09:af:94:71:40:36:08:8d:
a4:28:f6:15:ba:71:7f:fb:6d:63:e2:81:f6:e6:a2:79:b7:47:
c9:70:c6:5b:6e:93:9e:76:a4:e6:7f:b7:77:1a:1d:74:3b:79:
40:fc:92:e5:82:aa:6d:88:19:3b:45:78:e4:43:a9:75:9b:38:
ee:3e:9d:62:d1:49:b6:bf:9d:8e:ab:df:67:27:d8:48:d6:ff:
2c:4f:4f:82:5a:2d:7f:0e:e6:35:72:0b:6d:ff:cb:7c:64:2e:
20:11:fa:ff:3d:c1:6c:19:ad:ab:20:d2:18:ec:4f:2a:44:22:
2d:57:e6:76:f6:32:50:b7:cc:db:e2:e0:72:be:05:a9:f3:8f:
df:57:8e:dd:6f:9a:36:59:0e:7e:e3:84:63:c9:4d:3f:be:75:
11:0d:67:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:20:37 2025 by rpki-client