Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/877/kzgQe01abS4_eetb8_0glFFQOas.roa
File: kzgQe01abS4_eetb8_0glFFQOas.roa (raw, json)
Hash identifier: P4xogtaaPLXnTfc3iVJ+SaAt0GYCFhsbvIo6Qxt73f0=
Subject key identifier: 93:38:10:7B:4D:5A:6D:2E:3F:79:EB:5B:F3:FD:20:94:51:50:39:AB
Certificate issuer: /CN=1933DE3EF96450CA120C77A5EA826434DD149549
Certificate serial: 2A
Authority key identifier: 19:33:DE:3E:F9:64:50:CA:12:0C:77:A5:EA:82:64:34:DD:14:95:49
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GTPePvlkUMoSDHel6oJkNN0UlUk.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/877/kzgQe01abS4_eetb8_0glFFQOas.roa
Signing time: Thu 01 Feb 2024 01:30:23 +0000
ROA not before: Thu 01 Feb 2024 01:30:23 +0000
ROA not after: Tue 14 Jan 2025 01:30:02 +0000
asID: 55385
IP address blocks: 202.174.56.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42 (0x2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1933DE3EF96450CA120C77A5EA826434DD149549
Validity
Not Before: Feb 1 01:30:23 2024 GMT
Not After : Jan 14 01:30:02 2025 GMT
Subject: CN=9338107B4D5A6D2E3F79EB5BF3FD2094515039AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:9c:a7:d1:41:d7:7a:5b:69:9e:b9:16:97:45:
b1:4f:b3:66:f1:7f:5b:c9:ff:38:5c:35:7d:66:ae:
5f:03:43:ee:b5:09:0f:c0:fc:15:24:fb:fe:6d:3c:
5b:b1:7c:40:b5:01:ea:e4:72:41:1c:0d:bf:d4:fd:
4a:79:59:c9:79:82:70:64:29:e0:1c:0c:84:83:52:
99:7e:d8:d2:1c:62:94:d1:06:f8:7e:a1:9d:cf:2d:
ee:7f:f0:71:81:98:9f:57:41:b4:11:d1:c6:7c:eb:
79:19:3f:66:dc:cf:33:1a:a3:ae:f6:08:8b:fe:04:
16:77:20:67:e6:69:64:f8:51:12:60:65:16:f5:70:
47:9f:3c:3a:e8:42:1f:b8:8d:e4:1a:f8:1b:f2:6f:
5f:ed:5e:d4:05:34:75:20:dc:a7:e1:52:3a:59:12:
e8:39:ad:71:31:75:7a:d6:12:5e:0e:4f:69:9b:67:
cc:18:cc:a5:c3:f0:6a:fb:88:7f:a6:cd:50:db:ed:
e5:39:5e:5e:91:ab:81:a9:84:0d:46:34:8d:b5:24:
5b:fa:af:41:b8:f0:1b:70:24:97:7e:85:e1:1b:64:
60:88:95:03:18:12:0c:aa:78:27:1c:86:f8:90:d4:
76:d5:68:d0:c2:9e:0e:7c:32:f9:5e:19:c3:77:27:
2e:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:38:10:7B:4D:5A:6D:2E:3F:79:EB:5B:F3:FD:20:94:51:50:39:AB
X509v3 Authority Key Identifier:
keyid:19:33:DE:3E:F9:64:50:CA:12:0C:77:A5:EA:82:64:34:DD:14:95:49
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/877/GTPePvlkUMoSDHel6oJkNN0UlUk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GTPePvlkUMoSDHel6oJkNN0UlUk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/877/kzgQe01abS4_eetb8_0glFFQOas.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.174.56.0/23
Signature Algorithm: sha256WithRSAEncryption
c3:a7:fd:1b:ee:4a:62:53:c2:bf:71:3d:5f:bc:19:bf:85:ec:
e9:13:d2:93:80:17:36:0e:fc:20:18:6c:f4:d7:5b:f3:36:c3:
7b:41:48:bb:1c:ce:9c:d5:75:1a:36:45:00:9e:49:15:7e:8e:
41:f1:ef:06:df:34:33:3f:d2:2b:89:9e:96:d1:97:6c:26:ab:
4e:fe:b7:3c:7a:95:77:95:01:fb:1c:30:ad:2b:78:b1:b3:19:
80:1e:92:cd:e0:7a:bb:14:ef:3e:df:5b:6e:74:9f:60:ad:b6:
5c:a4:57:92:93:60:cf:c1:45:60:30:ac:d5:f2:7f:03:a8:84:
fc:cf:88:12:5f:b0:d6:d5:3a:4b:bd:60:cf:bb:6b:de:6e:72:
d0:0d:61:75:0b:84:35:83:e8:2a:f1:7c:26:f4:4a:23:ee:9e:
6f:76:c1:63:c9:ba:aa:b9:91:2f:e0:f0:2c:3e:ec:a4:72:c7:
e1:7d:d7:4f:b4:68:4c:33:d4:32:dc:c4:33:b3:30:60:6b:c7:
83:c0:28:eb:b1:44:9f:21:6c:bf:44:ca:8b:8a:e2:e5:f1:7e:
58:9a:b9:55:e1:1b:1e:71:23:c6:d2:0a:34:01:6c:c4:01:16:
12:0c:ca:3d:8d:0c:f1:fe:9b:11:7d:d8:b2:0a:5a:34:b8:0d:
5f:77:cd:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:16:48 2025 by rpki-client