Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/454/OKiR1oOt6GnzcD-vDE25pLnKXC0.roa
File: OKiR1oOt6GnzcD-vDE25pLnKXC0.roa (raw, json)
Hash identifier: RMgzY24bB2DtKhKLkJPOjgV9eA9sO9xqo1spuM7TDXs=
Subject key identifier: 38:A8:91:D6:83:AD:E8:69:F3:70:3F:AF:0C:4D:B9:A4:B9:CA:5C:2D
Certificate issuer: /CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0
Certificate serial: 2D
Authority key identifier: AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/OKiR1oOt6GnzcD-vDE25pLnKXC0.roa
Signing time: Fri 29 Sep 2023 06:36:56 +0000
ROA not before: Fri 29 Sep 2023 06:36:56 +0000
ROA not after: Sat 14 Sep 2024 01:30:03 +0000
asID: 10000
IP address blocks: 203.217.156.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45 (0x2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0
Validity
Not Before: Sep 29 06:36:56 2023 GMT
Not After : Sep 14 01:30:03 2024 GMT
Subject: CN=38A891D683ADE869F3703FAF0C4DB9A4B9CA5C2D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:5b:55:36:89:fb:76:c5:da:44:ef:1a:da:98:
bd:4c:a4:f9:57:7e:5f:b5:76:18:99:35:83:f5:fc:
ae:b5:97:28:5d:fa:b4:09:97:34:5a:fb:61:e3:4b:
e1:aa:69:a8:9e:e3:99:fd:a8:87:eb:69:bd:6a:b0:
8a:13:f7:db:1f:82:c8:90:f5:5a:1f:21:5f:bd:5f:
5a:37:07:44:80:ce:54:39:f5:b4:1a:07:ff:d0:18:
12:39:ab:9d:cb:e8:cd:e9:6c:9a:f0:78:da:03:3f:
15:2a:ac:f1:42:bb:14:eb:58:4f:50:ea:f9:b8:68:
26:a0:6c:d2:70:50:04:6b:1a:17:24:4e:35:5b:85:
0d:27:1a:ec:7e:33:b0:a8:fd:9d:ee:df:c9:22:a9:
46:bf:dc:2e:f1:27:cc:c7:b6:5b:ca:5e:a6:8d:b4:
ef:8b:38:b8:a5:49:f7:ce:d8:2d:d5:ab:6f:83:e7:
d7:aa:98:f8:dd:33:d3:e8:a8:e0:c5:d0:fe:b1:be:
b2:ec:f1:fd:d4:74:32:b8:5e:da:c1:fd:52:08:fe:
5f:bc:0f:bd:09:ae:e5:ec:34:fd:05:5e:08:88:ae:
1b:8b:5a:d0:03:f0:2b:16:c4:4e:64:79:a8:81:f2:
70:c6:ec:16:60:9e:43:71:91:d0:92:b6:66:e9:e5:
38:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:A8:91:D6:83:AD:E8:69:F3:70:3F:AF:0C:4D:B9:A4:B9:CA:5C:2D
X509v3 Authority Key Identifier:
keyid:AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/OKiR1oOt6GnzcD-vDE25pLnKXC0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.217.156.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:44:13:33:c2:af:b3:2e:66:50:ab:9a:5d:cf:f8:6e:b8:2a:
eb:9c:a9:e8:66:82:dc:15:f2:4f:5b:f0:88:28:99:01:42:8b:
74:19:62:c9:0f:7c:2d:11:ca:15:6d:2e:fc:91:82:a3:60:20:
77:e6:b3:7f:ed:91:df:ef:6f:a0:cf:00:08:38:4c:cf:3e:ac:
c7:60:56:f2:41:e4:dc:95:0b:42:5e:47:d0:72:92:9a:79:f2:
a0:17:ed:9d:ab:8c:66:3f:59:33:b1:6d:e9:65:d7:d8:ff:d2:
c7:b1:43:f6:0c:9d:8e:13:9e:c4:96:c3:55:d8:39:77:53:ab:
4d:53:e7:16:c1:0c:40:57:a1:e5:77:be:f5:3c:40:f5:62:77:
8f:ca:97:ff:54:77:c8:4e:13:7e:41:6e:b7:3f:45:be:f0:56:
fc:ce:e3:c7:3d:a3:21:3a:80:b5:34:44:5c:8f:44:7d:4f:2e:
a9:e7:eb:3a:e5:5e:81:23:72:a4:12:90:dc:96:0e:ba:87:f0:
8a:4c:79:44:3d:9f:57:38:4a:d3:0f:7e:b8:fd:ab:b3:57:84:
51:c2:f4:65:5c:fa:69:83:5b:94:b0:f8:48:23:c1:07:ca:bb:
69:e5:c8:b1:7b:da:85:3c:ed:2c:fd:ef:ba:e4:08:c8:89:a2:
e2:33:2a:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:15:12 2025 by rpki-client