Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/CZd3Gjch1IC23x9goD0NNAu8f8c.roa
File: CZd3Gjch1IC23x9goD0NNAu8f8c.roa (raw, json)
Hash identifier: /klDKBtGjbqrQgP5n4uUSHZitwVGsyUK2btNJVIssZc=
Subject key identifier: 09:97:77:1A:37:21:D4:80:B6:DF:1F:60:A0:3D:0D:34:0B:BC:7F:C7
Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6
Certificate serial: AC
Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/CZd3Gjch1IC23x9goD0NNAu8f8c.roa
Signing time: Tue 01 Nov 2022 01:28:09 +0000
ROA not before: Tue 01 Nov 2022 01:28:09 +0000
ROA not after: Sun 15 Oct 2023 01:30:02 +0000
asID: 10021
IP address blocks: 202.7.108.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 172 (0xac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6
Validity
Not Before: Nov 1 01:28:09 2022 GMT
Not After : Oct 15 01:30:02 2023 GMT
Subject: CN=0997771A3721D480B6DF1F60A03D0D340BBC7FC7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c3:08:f3:76:f2:15:ec:9d:53:df:37:91:32:
8c:24:27:9f:70:0f:df:31:57:a5:26:f2:15:9b:8e:
1c:b2:93:9c:16:74:4f:db:6c:74:c7:54:1d:4d:1f:
f1:af:90:dc:39:84:ca:7c:33:0b:f5:29:7b:56:7a:
e2:c4:cc:3c:11:93:fa:06:38:00:3a:cc:93:7c:38:
18:c5:1e:eb:de:61:c9:2d:7f:ad:72:8c:77:c0:35:
db:b1:2a:c3:af:d9:1c:97:b4:9d:e3:61:fb:d7:7d:
ef:d4:11:b0:3e:19:bf:51:ef:05:8e:ed:e6:d4:c9:
a8:2b:53:96:8d:50:97:ee:10:22:b3:23:b6:f2:d6:
2b:e6:1b:5d:5b:ac:d9:f3:78:2c:9c:11:9e:ec:34:
44:10:4d:3f:a9:c8:6e:ac:77:48:81:5b:f3:bb:8b:
28:77:cb:00:ec:f6:ac:bc:71:d5:c0:f3:5b:86:94:
e4:4f:d5:92:7b:e0:72:af:01:a0:30:a9:de:b5:70:
ea:6c:20:22:b2:22:a1:4a:57:dc:9c:e1:a1:b1:6f:
50:24:12:54:ac:f5:1f:92:99:ad:85:a5:e6:f9:e4:
64:cf:d7:46:70:b0:11:1f:32:e7:4c:3c:58:bb:99:
d4:98:f8:04:c0:87:9b:64:3c:65:19:05:39:0f:b5:
6c:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:97:77:1A:37:21:D4:80:B6:DF:1F:60:A0:3D:0D:34:0B:BC:7F:C7
X509v3 Authority Key Identifier:
keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/CZd3Gjch1IC23x9goD0NNAu8f8c.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.7.108.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:78:19:15:d9:20:80:ab:45:c6:0a:41:a4:5d:4e:dc:78:cb:
4f:7c:a4:cc:c2:43:00:7d:69:b9:0d:46:50:03:2a:c7:fd:63:
4f:63:0f:8b:80:bc:de:fd:cf:04:9e:6b:f2:ca:ac:fe:08:0b:
1c:c5:11:86:e9:f5:2e:fd:a7:08:ee:f4:64:6d:19:a4:36:9d:
51:a0:88:8e:bc:f7:76:0e:d8:c0:38:45:5b:1e:44:56:13:14:
33:b3:a8:9d:e3:93:8e:a7:5d:40:61:01:35:b4:61:0a:17:02:
64:69:b4:d2:43:e7:2a:b5:71:ab:ef:3e:7a:1b:de:a8:8e:f7:
32:4b:f2:75:a5:3d:35:a1:1d:b9:1a:37:68:12:d1:4f:da:cb:
a8:fc:39:d1:99:b4:b0:db:d2:4b:86:ae:f0:62:1b:b4:36:d6:
8c:99:48:45:13:da:18:d1:f0:55:9f:d4:0f:59:c8:2a:5c:ae:
7e:bf:a9:a0:de:f5:7e:81:04:74:c4:f2:53:8d:65:1b:7f:b9:
fa:f3:03:b8:db:d9:b0:c5:5d:12:b6:54:f8:ff:71:28:67:1a:
6b:0b:f9:4d:db:0a:19:cd:56:34:16:86:7b:e3:ed:c4:0b:ce:
6c:b5:c3:ff:f3:f5:16:0c:67:b0:84:82:2e:2d:b9:3b:4f:c9:
91:11:73:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:31:18 2025 by rpki-client