Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/395/SURGznFZ-QI4sYckPXpjnlFBzqI.roa
File: SURGznFZ-QI4sYckPXpjnlFBzqI.roa (raw, json)
Hash identifier: fFncOY2XQaQLCsh1Z5IegvbqvBXuN4zG5SL+zDvY2o0=
Subject key identifier: 49:44:46:CE:71:59:F9:02:38:B1:87:24:3D:7A:63:9E:51:41:CE:A2
Certificate issuer: /CN=B333AEDA5B81A6B2F54FF714668F8D63E87B85A1
Certificate serial: 0F
Authority key identifier: B3:33:AE:DA:5B:81:A6:B2:F5:4F:F7:14:66:8F:8D:63:E8:7B:85:A1
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/szOu2luBprL1T_cUZo-NY-h7haE.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/SURGznFZ-QI4sYckPXpjnlFBzqI.roa
Signing time: Mon 20 Feb 2023 03:36:52 +0000
ROA not before: Mon 20 Feb 2023 03:36:52 +0000
ROA not after: Fri 16 Feb 2024 07:35:22 +0000
asID: 9619
IP address blocks: 211.125.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15 (0xf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B333AEDA5B81A6B2F54FF714668F8D63E87B85A1
Validity
Not Before: Feb 20 03:36:52 2023 GMT
Not After : Feb 16 07:35:22 2024 GMT
Subject: CN=494446CE7159F90238B187243D7A639E5141CEA2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:17:c5:e1:00:d3:8b:b7:91:3c:39:35:a9:3a:
01:10:77:80:31:ae:19:51:e1:3b:6f:99:f2:08:f0:
b5:11:70:3d:66:fb:47:fb:51:c2:e4:24:a4:b3:a7:
cf:92:6a:0a:e9:b3:0e:24:02:9b:ec:8e:79:41:67:
72:ce:16:d5:27:a3:0d:02:b8:aa:78:74:b2:fa:cb:
bc:5a:de:15:44:89:3a:e2:a2:70:5e:7d:53:e2:ee:
b9:81:da:a7:9f:b9:f0:67:89:b7:ca:c8:6f:92:73:
32:30:3f:64:5e:06:6f:89:15:e1:66:f6:f7:be:15:
a3:e3:69:26:93:42:94:90:ad:f4:c6:5e:00:2c:65:
6a:af:c0:b7:24:15:74:78:57:fb:88:10:6c:7b:38:
d3:90:34:d2:bf:b0:82:94:39:b5:24:66:67:ba:0a:
3d:91:ff:4f:00:2c:d5:ac:dd:2d:fd:70:a0:8c:36:
b3:ef:9c:c0:c7:f5:e8:58:6a:7d:c0:c9:9a:f5:09:
ea:bc:c1:68:a0:2b:ce:81:2f:0e:c7:f9:d6:98:8e:
32:52:5d:db:cf:53:48:c6:4d:16:81:b7:61:05:f5:
2f:4c:c1:b3:6f:fe:c7:e8:5d:22:31:43:7b:ed:48:
38:07:25:f2:51:64:e5:a1:ed:3e:eb:d2:b2:d6:3b:
00:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:44:46:CE:71:59:F9:02:38:B1:87:24:3D:7A:63:9E:51:41:CE:A2
X509v3 Authority Key Identifier:
keyid:B3:33:AE:DA:5B:81:A6:B2:F5:4F:F7:14:66:8F:8D:63:E8:7B:85:A1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/szOu2luBprL1T_cUZo-NY-h7haE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/szOu2luBprL1T_cUZo-NY-h7haE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/SURGznFZ-QI4sYckPXpjnlFBzqI.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
211.125.137.0/24
Signature Algorithm: sha256WithRSAEncryption
60:8e:d1:e1:e3:60:48:55:bd:f1:32:1b:db:6b:ed:aa:a1:7d:
c2:e0:92:c0:6a:10:5c:bb:86:00:82:b1:a2:16:6e:20:4e:d1:
52:8a:be:f9:52:85:b8:58:81:a6:d3:c9:54:d2:cb:c8:01:6c:
ba:34:a1:c4:ef:38:bc:d6:ab:ca:0f:63:a0:45:97:a3:f4:36:
fb:a3:70:81:86:2e:27:95:b9:51:70:a6:84:5f:12:19:19:78:
73:9a:3c:ba:12:24:4e:84:6e:f8:8e:33:66:d8:9e:f8:66:0e:
2f:c5:c1:ad:c7:66:e2:f3:7f:ad:13:62:1a:1d:54:10:3d:f4:
ac:c9:64:51:a2:a4:2c:24:83:76:d9:61:a7:65:8d:d2:77:c7:
0a:c1:06:7b:d8:8f:91:18:25:92:74:93:b0:c2:86:a6:2f:42:
b1:13:87:8a:f3:6d:76:56:6f:83:72:6a:4b:ae:0c:71:1c:3c:
58:a3:c8:66:41:48:76:19:67:99:2f:bd:4e:b5:92:c8:23:0c:
6f:31:a6:a4:56:f5:b1:4f:da:e0:57:11:6e:47:a1:31:7f:d9:
a3:48:6a:96:25:21:af:d9:4f:67:4d:f8:9d:21:57:8b:6e:81:
65:a8:fc:95:7b:7e:07:c2:c4:95:3d:de:8d:d7:d8:f5:3a:74:
4e:ae:13:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:53 2024 by rpki-client on console-fra.rpki-client.org