Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20183/4nfXECiPH3LdjnXCg9Q75hKlKuk.roa
File: 4nfXECiPH3LdjnXCg9Q75hKlKuk.roa (raw, json)
Hash identifier: 9ZZkrcLocO/eIl4oM3t4RwusP5wdys2QMbw0Px+gd/s=
Subject key identifier: E2:77:D7:10:28:8F:1F:72:DD:8E:75:C2:83:D4:3B:E6:12:A5:2A:E9
Certificate issuer: /CN=1606BEB137B88DBBEEBA7851A0A8F8D7D18294AF
Certificate serial: 84
Authority key identifier: 16:06:BE:B1:37:B8:8D:BB:EE:BA:78:51:A0:A8:F8:D7:D1:82:94:AF
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fga-sTe4jbvuunhRoKj419GClK8.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20183/4nfXECiPH3LdjnXCg9Q75hKlKuk.roa
Signing time: Fri 10 Feb 2023 07:45:32 +0000
ROA not before: Fri 10 Feb 2023 07:45:32 +0000
ROA not after: Mon 15 Jan 2024 01:30:02 +0000
asID: 146979
IP address blocks: 202.236.90.20/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132 (0x84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1606BEB137B88DBBEEBA7851A0A8F8D7D18294AF
Validity
Not Before: Feb 10 07:45:32 2023 GMT
Not After : Jan 15 01:30:02 2024 GMT
Subject: CN=E277D710288F1F72DD8E75C283D43BE612A52AE9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:8c:25:cb:ea:9f:ca:44:0a:b6:8f:2a:90:53:
e0:08:94:c2:1f:3b:2e:ca:d9:a3:22:cd:70:26:8e:
c8:f4:64:5a:51:2c:01:9d:7e:cf:01:67:37:8f:50:
ed:e3:c7:6a:fb:3c:60:bd:0b:09:f2:27:3c:2c:ca:
47:e0:6b:60:88:3c:4e:dd:a1:03:e0:2c:17:11:94:
7f:9e:21:51:fd:ac:33:5a:06:a4:5c:c7:ad:ba:2e:
48:65:98:25:4a:ef:5a:6c:52:e3:4d:38:33:c2:6b:
af:34:74:d5:20:16:17:f6:de:71:77:aa:fd:f0:02:
11:7c:7c:a0:6f:fd:0c:ac:2b:18:18:9e:e6:27:b0:
71:9f:8a:db:3c:7a:03:b3:7a:79:da:9f:de:37:a7:
cc:61:88:be:ba:34:1e:c5:33:c9:36:6b:2f:5d:fd:
b7:e3:ce:f6:47:df:e4:4d:98:af:03:c3:c0:dc:99:
b4:5c:f3:37:5b:86:64:69:3c:4c:7f:bd:a2:a9:b7:
d4:1e:5b:f2:f8:c0:b8:f9:2c:5a:47:8e:af:4b:02:
23:4a:bc:7d:45:2b:79:2d:2d:88:40:8e:9a:8a:ed:
e9:3c:ab:74:42:76:c6:d2:ef:c1:e3:db:03:ae:2a:
d1:b0:e7:a2:de:92:23:69:d6:95:db:48:2a:ea:90:
6e:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:77:D7:10:28:8F:1F:72:DD:8E:75:C2:83:D4:3B:E6:12:A5:2A:E9
X509v3 Authority Key Identifier:
keyid:16:06:BE:B1:37:B8:8D:BB:EE:BA:78:51:A0:A8:F8:D7:D1:82:94:AF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20183/Fga-sTe4jbvuunhRoKj419GClK8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fga-sTe4jbvuunhRoKj419GClK8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20183/4nfXECiPH3LdjnXCg9Q75hKlKuk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.236.90.20/32
Signature Algorithm: sha256WithRSAEncryption
96:20:eb:8e:a7:bf:34:97:24:0a:a7:fb:90:aa:b0:c5:e0:a3:
a2:91:40:b6:80:1f:83:d4:e6:f1:c6:eb:dd:6b:98:ef:84:7c:
c8:9e:f3:71:ed:e1:eb:3e:b0:8e:c0:b1:84:f1:a9:bd:21:7e:
90:a4:c0:af:1b:01:88:e3:bd:be:64:fb:50:ae:82:9b:3a:34:
b1:85:75:35:c2:0c:f0:a0:90:38:ae:d2:10:7e:e4:48:48:60:
67:2c:44:f6:57:d2:ff:4d:ac:6f:8f:7a:97:33:f9:b8:9b:aa:
92:c3:45:b7:5f:20:dc:ed:fc:07:3d:07:59:2d:1f:fd:b1:73:
7e:8b:a4:44:21:30:56:03:24:22:d3:8c:57:20:2d:52:10:32:
94:da:d1:9a:5e:6b:01:4e:bf:a0:37:b2:ee:e3:0c:3c:cb:93:
52:b3:fa:7b:c0:f3:62:fc:51:12:d6:c9:0b:67:59:45:60:a1:
3b:f8:4b:9c:b1:33:0a:d5:3f:e8:95:9c:09:9b:88:74:02:3f:
22:d9:b3:8b:b4:b0:50:6c:ce:ca:fb:27:bd:a7:38:73:78:c1:
98:cd:77:6e:83:e9:13:57:a5:93:b2:01:d5:73:a4:ec:94:80:
e7:09:3f:af:ef:df:c9:72:49:fb:c0:14:b5:41:4f:42:50:59:
50:59:5f:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 19:29:51 2025 by rpki-client