Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/3tKKfv6qWut7mOtIG1GrTz222fE.roa
File: 3tKKfv6qWut7mOtIG1GrTz222fE.roa (raw, json)
Hash identifier: rYueMRdbniRVu0n8WcC2fHDgfXwIMuQaK5xD9nTtGxo=
Subject key identifier: DE:D2:8A:7E:FE:AA:5A:EB:7B:98:EB:48:1B:51:AB:4F:3D:B6:D9:F1
Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB
Certificate serial: 01D8
Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/3tKKfv6qWut7mOtIG1GrTz222fE.roa
Signing time: Sun 01 Oct 2023 01:38:26 +0000
ROA not before: Sun 01 Oct 2023 01:38:26 +0000
ROA not after: Sat 14 Sep 2024 01:30:03 +0000
asID: 9617
IP address blocks: 218.220.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 472 (0x1d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB
Validity
Not Before: Oct 1 01:38:26 2023 GMT
Not After : Sep 14 01:30:03 2024 GMT
Subject: CN=DED28A7EFEAA5AEB7B98EB481B51AB4F3DB6D9F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:49:f9:3d:8f:18:5d:c5:55:67:4e:f3:5a:36:
8d:ba:fa:b0:b8:40:0b:c2:b8:74:86:c1:e9:c9:23:
78:22:ce:a1:7b:b3:45:4b:25:e5:e0:3b:cf:cd:c4:
7d:bd:37:81:8d:a3:f5:18:f8:a4:cb:e4:fe:73:d4:
7a:de:f0:44:da:a0:d0:57:e1:50:98:6c:cc:57:be:
9c:ad:81:b3:3e:88:77:06:d5:9f:3b:d4:b9:46:e7:
e1:cb:46:9c:e0:0e:b5:f1:7d:c2:95:1a:62:66:39:
18:c4:82:74:a9:3e:02:74:2e:a0:af:27:f0:5b:2a:
4d:3e:f2:80:7f:e6:e4:37:52:c0:e4:44:ef:7e:05:
d2:a1:cb:90:3a:19:1c:c1:50:4c:3e:4c:9c:99:e2:
a1:a6:c6:8d:2b:3d:50:fe:b2:9c:fe:29:a1:b1:35:
b5:d2:89:c2:68:55:82:a3:be:d1:f0:8c:61:ff:a4:
00:11:28:43:f4:de:a7:17:15:ed:67:ed:63:81:72:
b7:da:81:5e:db:0b:c1:3c:55:be:80:b6:41:e1:85:
7b:72:7e:31:e2:e0:b8:88:e4:7d:30:8f:80:5f:ca:
0d:a6:68:5e:98:38:42:33:41:ba:ff:20:63:1b:3c:
fc:6c:30:17:ca:c3:34:9f:62:55:e0:0e:ff:6d:49:
ab:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:D2:8A:7E:FE:AA:5A:EB:7B:98:EB:48:1B:51:AB:4F:3D:B6:D9:F1
X509v3 Authority Key Identifier:
keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/3tKKfv6qWut7mOtIG1GrTz222fE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
218.220.0.0/16
Signature Algorithm: sha256WithRSAEncryption
4e:71:5c:58:bd:c7:ca:e2:ca:49:bb:a3:18:32:51:60:3f:4c:
49:9f:17:0a:46:e7:a2:d2:30:21:7a:d9:9d:c3:99:79:2b:a4:
c3:d3:f2:c0:e1:31:2a:ef:c8:78:76:ee:a9:2e:0f:35:6d:ad:
3f:5f:d8:14:89:06:9d:fc:2d:13:6a:6c:03:ca:19:7c:23:d4:
85:7f:b0:73:d3:eb:40:58:91:0c:c2:60:af:ec:c9:39:d2:da:
60:95:23:3e:f2:ea:8d:bc:f4:55:ec:42:5f:8c:63:63:a9:3d:
b1:7e:48:fc:41:0c:b9:49:c3:db:76:b9:9b:2e:d3:35:c7:0c:
1c:1d:7b:ca:d1:89:5a:86:e0:4b:cf:c4:d1:e6:a0:5b:09:d6:
bf:db:16:e0:4c:9e:b5:2d:19:8f:d6:2d:d1:ab:e3:17:57:6c:
b8:e3:0e:a1:3b:69:69:70:18:af:67:67:36:4c:fa:73:31:54:
c2:c8:23:86:1d:f6:9d:16:98:19:3c:67:4e:33:4f:fd:b7:cf:
62:d0:9e:b8:99:33:8d:6e:13:3b:a0:f9:41:37:c2:f0:f9:8e:
9c:e7:7c:1c:86:84:c6:be:c0:9c:c7:29:f9:12:02:06:ee:e0:
1d:73:4d:88:38:97:30:26:a2:2d:79:f9:1d:de:89:d0:c6:05:
41:82:d9:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:21:26 2025 by rpki-client