Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30040/AzgIct6YCKOiYSRYpULOELXRfuY.roa
File: AzgIct6YCKOiYSRYpULOELXRfuY.roa (raw, json)
Hash identifier: bjmlA1S15gb+4gIeccjoO/cbjCzJtQuwQjdsv8zbTMM=
Subject key identifier: 03:38:08:72:DE:98:08:A3:A2:61:24:58:A5:42:CE:10:B5:D1:7E:E6
Certificate issuer: /CN=5DEFF9E1A97D46CCDC12F606EEB38A3E64DBC81F
Certificate serial: 03
Authority key identifier: 5D:EF:F9:E1:A9:7D:46:CC:DC:12:F6:06:EE:B3:8A:3E:64:DB:C8:1F
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Xe_54al9RszcEvYG7rOKPmTbyB8.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30040/AzgIct6YCKOiYSRYpULOELXRfuY.roa
Signing time: Mon 20 Feb 2023 03:56:56 +0000
ROA not before: Mon 20 Feb 2023 03:56:56 +0000
ROA not after: Fri 16 Feb 2024 08:11:04 +0000
asID: 9619
IP address blocks: 2001:cf8:5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5DEFF9E1A97D46CCDC12F606EEB38A3E64DBC81F
Validity
Not Before: Feb 20 03:56:56 2023 GMT
Not After : Feb 16 08:11:04 2024 GMT
Subject: CN=03380872DE9808A3A2612458A542CE10B5D17EE6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:14:ce:84:6f:47:28:07:cb:ac:20:cb:2a:2c:
af:a3:42:19:a0:8d:a3:a2:8c:42:00:1a:4e:cf:90:
e6:cb:d7:ab:2b:86:78:be:33:26:44:06:d3:e8:97:
1b:25:88:85:46:60:bf:71:41:6b:71:f4:fa:de:ef:
ba:24:bd:e5:b7:72:db:1b:42:77:fb:6c:d7:bc:3c:
ae:77:30:f2:90:54:48:90:36:d1:0c:ac:67:bc:31:
78:ea:cf:c9:cf:12:c6:1c:88:76:e5:36:d1:04:e1:
af:08:b8:cc:86:a8:03:f2:27:14:be:4b:50:5d:7a:
3a:0a:4d:2d:eb:7a:ae:d6:ac:e0:14:2c:41:a1:45:
07:b0:d6:9d:77:a9:f5:08:71:c4:98:5f:ec:b8:87:
40:62:88:3c:6e:9f:e7:48:ef:d4:a2:f3:16:86:d1:
80:38:9b:e8:17:9a:65:16:9b:6e:75:ea:5c:00:b9:
40:28:04:09:a9:17:97:fb:55:7a:66:ce:35:10:08:
55:ae:e8:cd:84:fe:47:e9:23:b7:7f:74:d7:08:bf:
1d:1b:ff:a5:e6:5b:be:f2:08:c8:23:4d:40:d4:0d:
1a:d8:d2:99:30:6c:e5:be:9d:c3:20:fc:f5:67:6d:
17:e9:6f:a5:31:b7:44:cf:84:4d:6c:91:03:85:26:
55:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:38:08:72:DE:98:08:A3:A2:61:24:58:A5:42:CE:10:B5:D1:7E:E6
X509v3 Authority Key Identifier:
keyid:5D:EF:F9:E1:A9:7D:46:CC:DC:12:F6:06:EE:B3:8A:3E:64:DB:C8:1F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30040/Xe_54al9RszcEvYG7rOKPmTbyB8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Xe_54al9RszcEvYG7rOKPmTbyB8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30040/AzgIct6YCKOiYSRYpULOELXRfuY.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:cf8:5::/48
Signature Algorithm: sha256WithRSAEncryption
27:00:20:09:e5:1c:5c:78:4c:bf:24:2c:db:72:80:34:c1:04:
a4:58:1f:00:13:66:99:cc:6f:8c:0b:53:0d:53:91:6f:65:1d:
db:8d:ea:bc:d9:2a:30:5a:ff:0f:66:9a:82:0d:78:50:f8:64:
05:a5:ac:32:ee:e9:d3:a0:ff:8c:09:3d:07:95:75:91:a6:b6:
6f:b0:6f:63:c8:79:1a:a0:50:3f:d0:95:1d:f1:af:48:f9:ae:
76:09:b7:2e:9a:94:e8:48:82:07:b3:5e:44:15:44:ca:fc:5f:
01:cb:83:71:65:47:43:a2:9b:57:0b:73:57:d0:4d:60:4c:d6:
53:c9:37:80:bc:18:53:6c:5f:6b:20:8f:88:e1:d3:ec:d4:c3:
59:e3:63:7e:00:b5:90:c2:b4:4b:ff:21:69:5f:68:3f:90:cd:
7a:d5:90:35:ac:f5:54:ea:7d:41:cd:9c:b3:77:95:55:52:aa:
0c:cc:15:a5:a1:98:b2:29:cd:eb:e2:4a:56:a6:9c:6f:14:d0:
03:95:a7:9b:6a:10:07:ad:7f:73:0d:04:29:c4:7a:40:16:23:
fe:29:41:5b:3d:d5:c6:8e:9c:ee:ad:51:0e:05:54:f0:7a:db:
0b:de:39:c3:54:a9:5d:fb:85:0a:c3:ad:36:d6:36:bc:17:31:
4f:b9:47:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:56 2024 by rpki-client on console-ams.rpki-client.org