Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/td74w0cL1nsFMGphRB2uj26kxVE.roa
File: td74w0cL1nsFMGphRB2uj26kxVE.roa (raw, json)
Hash identifier: ARA/bMnaKZzLppFpTWclKzNj77n2vt4pMfyYkAgO6gs=
Subject key identifier: B5:DE:F8:C3:47:0B:D6:7B:05:30:6A:61:44:1D:AE:8F:6E:A4:C5:51
Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D
Certificate serial: D9
Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/td74w0cL1nsFMGphRB2uj26kxVE.roa
Signing time: Sun 01 Jan 2023 01:31:00 +0000
ROA not before: Sun 01 Jan 2023 01:31:00 +0000
ROA not after: Fri 15 Dec 2023 01:30:02 +0000
asID: 2527
IP address blocks: 211.128.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 217 (0xd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D
Validity
Not Before: Jan 1 01:31:00 2023 GMT
Not After : Dec 15 01:30:02 2023 GMT
Subject: CN=B5DEF8C3470BD67B05306A61441DAE8F6EA4C551
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:06:8d:d4:fc:c4:0d:40:18:fa:86:09:81:f6:
72:c7:91:ce:f3:05:b9:0f:0a:d1:07:e3:39:b4:f4:
5e:0f:c9:7b:97:e6:d8:eb:e2:72:50:a4:38:c3:c4:
7a:cc:4e:b1:ae:9f:dd:6e:4a:59:73:97:37:b3:60:
98:10:54:a8:ae:be:ad:a4:9f:73:b1:9e:46:cd:3d:
32:53:35:48:52:9a:c8:4c:54:ee:62:58:be:8d:0d:
21:9c:c3:0c:91:2b:5b:d3:78:e5:aa:b5:2d:aa:67:
30:52:d0:a6:95:a5:9c:c0:a7:75:ab:18:02:0d:2d:
d8:bc:50:ca:f3:2d:8e:22:8a:75:c6:b5:c6:f2:69:
76:ff:6a:be:9c:dd:05:d9:74:76:c3:a3:5e:4f:09:
ed:5e:6c:43:47:9b:0d:db:a2:bb:61:31:e7:45:2f:
6c:52:31:ca:3d:61:0f:b9:5a:df:95:9c:62:99:56:
88:d4:99:7d:27:2f:5f:43:07:4d:bb:05:f2:96:c0:
94:b4:e4:97:00:1b:be:49:70:0e:d6:a9:cc:42:02:
86:19:40:08:55:8b:86:28:60:bd:f6:fd:6f:a2:d3:
a1:2c:2c:9b:51:56:7c:88:50:5c:22:cf:70:fa:67:
bb:19:12:95:ed:ff:f5:8c:bd:40:34:40:27:02:3e:
3d:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:DE:F8:C3:47:0B:D6:7B:05:30:6A:61:44:1D:AE:8F:6E:A4:C5:51
X509v3 Authority Key Identifier:
keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/td74w0cL1nsFMGphRB2uj26kxVE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
211.128.32.0/19
Signature Algorithm: sha256WithRSAEncryption
8f:16:c1:e1:90:7f:fc:28:2e:ec:cc:62:06:5f:36:34:f8:04:
6a:cf:94:0c:72:07:fe:87:7d:9f:2f:aa:19:cc:81:fe:27:fa:
5b:10:b9:f8:bb:cf:98:98:c2:95:5d:25:57:55:7f:24:ba:64:
47:06:41:87:b1:bb:2c:bb:8d:a2:3b:57:11:26:05:dc:82:34:
dc:22:62:76:df:d4:ad:d3:17:e9:04:60:ce:e8:68:1b:96:17:
28:0b:22:f7:d3:c3:4c:67:03:f4:e2:71:8e:f5:4b:6e:16:91:
2c:b7:6b:3f:97:46:79:b3:63:2c:77:05:04:fd:5e:cc:d3:d7:
c1:5b:ca:be:42:20:dd:65:a7:30:45:ce:e2:15:a8:40:66:39:
2f:3d:41:5b:2a:2e:fd:73:2b:23:fe:37:a8:69:e1:96:56:75:
7f:be:d9:bf:d7:69:96:c1:67:bf:28:b5:34:48:29:d3:83:d2:
3f:b8:cf:48:35:1d:04:98:c4:7f:4c:72:05:b9:73:2c:d3:e9:
38:4e:86:0a:b7:0f:ce:ec:47:81:a8:0b:7f:95:09:8e:9d:12:
10:ec:84:d1:5a:67:00:78:9f:14:40:b2:89:db:38:19:09:5c:
fd:ee:65:d1:19:58:47:f2:cf:62:7b:bd:ff:1c:c7:e1:a3:a5:
c2:d9:a2:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 01:42:13 2025 by rpki-client