Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/573/1FfbLdeBjGRs9Ya8J4pxC7yOBuQ.roa
File: 1FfbLdeBjGRs9Ya8J4pxC7yOBuQ.roa (raw, json)
Hash identifier: Ur/8cVSQUboMI255yx7wnM5K4Jiq5OEVpmGftQiEM5Y=
Subject key identifier: D4:57:DB:2D:D7:81:8C:64:6C:F5:86:BC:27:8A:71:0B:BC:8E:06:E4
Certificate issuer: /CN=C814D85BD48360A65D9D4144EC6D20752C1EDC7D
Certificate serial: 3C
Authority key identifier: C8:14:D8:5B:D4:83:60:A6:5D:9D:41:44:EC:6D:20:75:2C:1E:DC:7D
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yBTYW9SDYKZdnUFE7G0gdSwe3H0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/573/1FfbLdeBjGRs9Ya8J4pxC7yOBuQ.roa
Signing time: Thu 01 Dec 2022 01:28:59 +0000
ROA not before: Thu 01 Dec 2022 01:28:59 +0000
ROA not after: Wed 15 Nov 2023 01:30:02 +0000
asID: 131896
IP address blocks: 103.198.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60 (0x3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C814D85BD48360A65D9D4144EC6D20752C1EDC7D
Validity
Not Before: Dec 1 01:28:59 2022 GMT
Not After : Nov 15 01:30:02 2023 GMT
Subject: CN=D457DB2DD7818C646CF586BC278A710BBC8E06E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d0:f6:4c:1b:62:55:7f:d3:24:55:98:47:7e:
6d:c1:51:5a:4d:f8:d2:c5:3b:85:87:7f:5c:91:9c:
99:0a:35:ea:72:77:72:e3:5b:9d:89:1c:99:43:00:
9f:1c:39:93:2a:f1:21:89:b9:f1:30:bc:39:16:a1:
9a:52:76:90:fa:7b:e1:dc:39:b6:44:9d:49:f1:cd:
42:a2:46:ec:44:ea:3e:3d:7c:d9:4f:d1:33:ad:51:
d6:b5:4c:85:5a:c7:3e:1c:10:39:0e:cd:c0:e6:8c:
03:1c:8f:dc:70:1d:fd:86:d1:79:dc:79:c4:4f:72:
de:47:68:1c:a8:20:6a:36:22:0b:ff:23:db:47:6e:
47:09:17:fd:bb:75:03:28:e2:75:c8:4e:50:e5:1e:
22:80:40:90:1c:1f:c0:0c:4f:fc:ae:c7:92:17:2c:
08:be:5c:7f:4f:29:64:be:16:c5:b3:d7:65:8e:43:
07:08:41:08:67:40:16:9b:0b:fa:7c:d1:1b:d7:01:
05:65:6c:c4:96:a0:e1:90:df:99:20:b0:67:9c:a1:
13:7e:55:ba:fe:81:a5:37:a2:a8:18:ac:ee:00:cd:
60:7d:06:50:b1:c6:0e:d9:54:3c:45:5f:f3:6d:ac:
c1:62:be:57:8b:f5:08:8e:4d:e9:98:e4:39:bc:74:
b7:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:57:DB:2D:D7:81:8C:64:6C:F5:86:BC:27:8A:71:0B:BC:8E:06:E4
X509v3 Authority Key Identifier:
keyid:C8:14:D8:5B:D4:83:60:A6:5D:9D:41:44:EC:6D:20:75:2C:1E:DC:7D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/573/yBTYW9SDYKZdnUFE7G0gdSwe3H0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yBTYW9SDYKZdnUFE7G0gdSwe3H0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/573/1FfbLdeBjGRs9Ya8J4pxC7yOBuQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.198.111.0/24
Signature Algorithm: sha256WithRSAEncryption
97:82:00:fd:04:cf:4b:e1:92:56:f6:36:69:14:2b:40:bc:7f:
e2:de:e4:2b:9b:83:53:8e:12:f3:37:76:91:eb:8e:60:e5:5a:
e3:66:c7:c2:fe:6d:22:28:32:9c:dc:2d:55:b5:1a:20:34:18:
6e:13:fd:f2:ea:ff:c6:53:dd:ba:23:77:af:bb:d8:0f:c9:7d:
49:09:04:26:0f:ca:cc:2c:93:3f:b6:b5:4c:d8:18:34:08:84:
82:bf:28:1e:b4:f8:4d:66:d8:73:cd:7a:b0:60:7d:66:08:dd:
e2:ee:d8:ac:f1:44:d9:54:96:08:85:48:44:a0:cd:b6:11:2b:
db:e2:7e:7d:2c:e0:98:66:46:ca:e9:5e:ee:bf:21:bf:eb:f2:
73:77:4b:13:3c:67:a0:a2:7c:96:d6:c9:c0:07:04:38:79:0c:
f1:57:1e:90:7f:06:2a:00:ce:ee:ce:74:cd:4e:74:42:19:b3:
fb:d2:68:d9:ef:21:bc:1c:b3:b7:f7:ca:47:f6:72:6f:87:8a:
62:a4:85:c6:18:62:5b:b5:2e:52:10:8c:f6:84:f9:88:5d:60:
7a:a8:7c:af:cd:4a:06:f3:d2:8b:de:f8:79:65:2c:53:a0:24:
e6:d7:72:a6:57:ae:c5:f5:b5:f3:3e:a9:ce:e2:a0:72:9f:02:
19:33:a5:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:23:20 2025 by rpki-client