Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20063/Is9ze-dmfRBX9vCY-u65oFDrQ84.roa
File: Is9ze-dmfRBX9vCY-u65oFDrQ84.roa (raw, json)
Hash identifier: C8lH5eXKy0bBsFhMhRp3WC4yaMr2XsKC1gPbU3HilmI=
Subject key identifier: 22:CF:73:7B:E7:66:7D:10:57:F6:F0:98:FA:EE:B9:A0:50:EB:43:CE
Certificate issuer: /CN=9DB0764C6DFC1E3DF6BD580EA6994A1E7098F52A
Certificate serial: 63
Authority key identifier: 9D:B0:76:4C:6D:FC:1E:3D:F6:BD:58:0E:A6:99:4A:1E:70:98:F5:2A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/nbB2TG38Hj32vVgOpplKHnCY9So.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20063/Is9ze-dmfRBX9vCY-u65oFDrQ84.roa
Signing time: Thu 22 Jun 2023 00:35:07 +0000
ROA not before: Thu 22 Jun 2023 00:35:07 +0000
ROA not after: Fri 14 Jun 2024 01:30:02 +0000
asID: 24277
IP address blocks: 115.166.172.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99 (0x63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9DB0764C6DFC1E3DF6BD580EA6994A1E7098F52A
Validity
Not Before: Jun 22 00:35:07 2023 GMT
Not After : Jun 14 01:30:02 2024 GMT
Subject: CN=22CF737BE7667D1057F6F098FAEEB9A050EB43CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c6:49:d1:b7:91:19:0b:eb:91:71:96:5b:5b:
d7:4f:4f:88:e5:32:33:55:2d:b3:03:58:0c:a0:8f:
e3:76:65:87:90:0d:04:10:ba:d0:58:fa:50:b9:56:
c3:6c:cd:d1:13:37:71:35:dd:1e:22:de:d0:11:65:
92:5e:b7:41:f6:13:c3:99:59:b7:18:1a:d6:17:3f:
de:db:8d:d7:31:b8:15:f0:34:c7:09:11:09:d8:a3:
77:fb:7d:79:2e:9b:d1:13:e6:cf:4e:cd:ac:89:91:
8c:41:c1:99:d2:35:8a:48:b0:cf:ad:b2:6d:60:85:
1c:b0:3b:10:2d:45:f1:7b:50:46:88:2a:1c:d0:07:
4d:42:31:3e:60:2b:12:a8:55:84:39:da:e8:ae:2e:
7d:b8:b1:dc:c6:9a:0e:2c:46:75:18:9c:76:ca:9e:
56:6b:23:31:f7:a5:2a:15:55:47:08:54:a0:85:6c:
5d:56:38:39:09:02:5f:20:52:71:92:ef:ba:38:d8:
16:d1:c6:0c:d2:cf:46:39:0d:37:d3:13:65:b4:ee:
5b:d1:b2:8d:d6:2f:09:3f:ef:97:be:b7:47:54:9f:
35:19:e3:ca:55:c6:89:37:bc:9a:30:88:a6:73:3e:
44:61:b5:28:ec:85:4e:9b:38:f3:e2:13:2f:cc:76:
bc:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:CF:73:7B:E7:66:7D:10:57:F6:F0:98:FA:EE:B9:A0:50:EB:43:CE
X509v3 Authority Key Identifier:
keyid:9D:B0:76:4C:6D:FC:1E:3D:F6:BD:58:0E:A6:99:4A:1E:70:98:F5:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20063/nbB2TG38Hj32vVgOpplKHnCY9So.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/nbB2TG38Hj32vVgOpplKHnCY9So.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20063/Is9ze-dmfRBX9vCY-u65oFDrQ84.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.166.172.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:c0:73:33:07:ea:16:3c:fe:cf:be:11:81:27:4c:40:2a:62:
42:8f:36:24:2b:39:67:5e:75:f1:30:ad:a9:6e:14:bf:a4:50:
04:97:23:94:d8:d6:b0:45:cd:4f:ed:2b:3b:e9:89:d3:38:d8:
42:67:6a:49:25:ea:39:d4:a4:18:72:37:fa:43:90:9a:71:b0:
83:9b:63:9c:8c:b3:e7:81:4b:cc:f3:37:96:70:91:90:8d:d2:
35:ac:6f:d1:24:9d:54:6f:02:17:a2:48:12:e4:6d:a3:14:df:
ad:b8:50:ab:0c:58:5a:d9:bc:8b:d1:ee:59:2f:38:88:96:fc:
b7:36:6e:90:59:11:65:79:14:b0:1b:ae:92:8e:75:21:8d:a0:
7e:b0:ce:da:07:a9:66:70:b2:f0:f1:aa:2f:d6:48:59:23:0f:
fa:d9:ae:02:31:9a:a4:b3:8f:fb:93:00:94:78:aa:d9:c9:90:
28:0c:32:99:80:cc:d3:ba:c8:9c:f8:c7:2f:c6:93:2d:a7:af:
3c:72:d4:fb:78:0a:6b:50:b2:22:41:a9:9a:ea:22:5e:fa:16:
8f:5b:97:c5:95:3d:18:b7:75:f8:2c:1f:44:e7:ce:3e:29:62:
69:54:9e:82:7b:4e:92:12:be:e4:f8:20:20:68:7b:b6:e7:33:
66:87:76:8e
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed May 7 21:40:53 2025 by rpki-client