Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/694/IEeMFXX5L8xiYaP2Wq6teOEWSUQ.roa
File: IEeMFXX5L8xiYaP2Wq6teOEWSUQ.roa (raw, json)
Hash identifier: SUicm7z0qh8IUYjZ7tzECX5s00oLFQVG1FneXLj2oGM=
Subject key identifier: 20:47:8C:15:75:F9:2F:CC:62:61:A3:F6:5A:AE:AD:78:E1:16:49:44
Certificate issuer: /CN=2DD3FD68BD774CF9C2B99D670ADA9CAD9F963A5D
Certificate serial: 03
Authority key identifier: 2D:D3:FD:68:BD:77:4C:F9:C2:B9:9D:67:0A:DA:9C:AD:9F:96:3A:5D
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/LdP9aL13TPnCuZ1nCtqcrZ-WOl0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/694/IEeMFXX5L8xiYaP2Wq6teOEWSUQ.roa
Signing time: Tue 12 Dec 2023 02:15:23 +0000
ROA not before: Tue 12 Dec 2023 02:15:23 +0000
ROA not after: Wed 11 Dec 2024 02:02:58 +0000
asID: 7511
IP address blocks: 202.79.8.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DD3FD68BD774CF9C2B99D670ADA9CAD9F963A5D
Validity
Not Before: Dec 12 02:15:23 2023 GMT
Not After : Dec 11 02:02:58 2024 GMT
Subject: CN=20478C1575F92FCC6261A3F65AAEAD78E1164944
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:59:9a:0b:e3:dd:fb:0d:24:10:6e:61:62:cb:
f1:65:89:ed:ea:4e:dd:29:49:69:89:39:73:bf:14:
b3:3f:da:6c:d1:91:f0:7a:f9:4f:13:a0:b9:58:21:
80:28:e0:68:06:1b:02:6a:5c:b4:a6:a3:59:3e:c3:
77:c4:91:5a:73:7c:01:eb:69:61:5c:69:12:f7:96:
8d:16:f0:68:b8:32:9f:8f:d8:58:18:ff:ce:60:9a:
c6:8a:d0:a4:c8:29:e7:1f:e8:aa:b2:79:03:51:7a:
4d:ae:7e:7a:b9:9b:6a:45:3c:26:0a:1d:77:e5:bb:
5f:05:17:83:10:e6:18:c6:24:42:54:11:7f:64:53:
58:cb:58:86:ae:4e:2f:b8:c7:be:ae:46:e3:9f:12:
7a:a2:e0:86:fa:dc:56:f0:55:17:69:ad:a6:7c:78:
99:5d:3e:18:87:ab:1f:a6:ac:95:67:3f:51:6b:cf:
57:09:e0:56:7d:5e:f9:06:55:9f:d9:d3:3e:6b:6d:
d2:0f:0d:7d:9c:73:b0:be:3b:84:14:75:cd:d4:6f:
c2:bb:d3:05:bc:98:d1:b2:d0:0c:23:88:43:90:07:
88:52:72:f4:0e:3c:78:40:b3:66:d9:a4:9c:21:fb:
f6:0b:bf:3d:5a:10:d4:89:c6:cc:79:5c:f6:92:2c:
a7:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:47:8C:15:75:F9:2F:CC:62:61:A3:F6:5A:AE:AD:78:E1:16:49:44
X509v3 Authority Key Identifier:
keyid:2D:D3:FD:68:BD:77:4C:F9:C2:B9:9D:67:0A:DA:9C:AD:9F:96:3A:5D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/694/LdP9aL13TPnCuZ1nCtqcrZ-WOl0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/LdP9aL13TPnCuZ1nCtqcrZ-WOl0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/694/IEeMFXX5L8xiYaP2Wq6teOEWSUQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.79.8.0/21
Signature Algorithm: sha256WithRSAEncryption
65:2f:a8:57:99:3a:7c:15:7b:6a:cc:6c:f8:f7:8b:36:46:7e:
c6:65:74:45:ea:83:56:a3:f3:2f:b2:50:3c:48:0c:9f:d7:67:
02:c7:2d:a1:ac:1e:c9:5e:6d:f9:0b:f0:61:59:af:1a:63:9b:
df:05:ab:b7:13:80:f0:1b:b9:c2:ac:ba:81:f3:32:4c:3f:c9:
ad:3d:1c:01:42:11:ff:61:16:65:f0:e7:ac:58:f6:44:b2:7a:
84:87:70:38:f3:3c:c6:98:c8:64:5d:f9:2f:c5:5a:7c:49:2e:
16:14:ee:b8:b0:55:bb:65:28:6d:6d:a2:c1:40:52:6f:be:4b:
af:a5:10:d4:d4:69:46:a7:5e:ed:e8:f8:0c:45:94:cc:90:0e:
e8:7b:64:09:9d:48:54:f9:aa:e6:e7:c3:d2:a6:88:32:67:9e:
84:d2:65:6f:dd:42:b3:7e:76:c1:69:2f:8d:49:de:d4:0d:76:
a9:dc:1a:3d:bd:01:9c:ae:89:12:74:f6:0b:3b:ed:41:f3:6d:
58:76:35:1b:a3:d7:19:43:fc:81:80:3b:07:c1:3a:02:5f:f2:
a0:07:a5:50:fd:1a:9e:f6:5f:63:51:fa:f8:ad:97:0f:a0:f4:
db:09:61:3d:e9:73:e5:fe:11:9e:1f:fc:f5:bf:8c:7e:9d:89:
3e:1d:5e:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:05:27 2025 by rpki-client