Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/1Aw2cTHtcJIxVsTYAJT78xPDUYM.roa
File: 1Aw2cTHtcJIxVsTYAJT78xPDUYM.roa (raw, json)
Hash identifier: 43A7+44eggYAJ9jkWW6XWaPDvghSm9UMsGAbLf+zuAs=
Subject key identifier: D4:0C:36:71:31:ED:70:92:31:56:C4:D8:00:94:FB:F3:13:C3:51:83
Certificate issuer: /CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9
Certificate serial: 9E
Authority key identifier: 29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/1Aw2cTHtcJIxVsTYAJT78xPDUYM.roa
Signing time: Sat 01 Oct 2022 01:29:12 +0000
ROA not before: Sat 01 Oct 2022 01:29:12 +0000
ROA not after: Fri 15 Sep 2023 01:30:03 +0000
asID: 2497
IP address blocks: 103.2.58.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158 (0x9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9
Validity
Not Before: Oct 1 01:29:12 2022 GMT
Not After : Sep 15 01:30:03 2023 GMT
Subject: CN=D40C367131ED70923156C4D80094FBF313C35183
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:2c:69:2c:17:99:8f:9d:6c:a7:be:7f:f9:e0:
6a:79:d1:cc:7f:b2:af:d0:71:fa:0d:2b:6c:f0:14:
a3:e7:6f:be:c5:62:8c:56:a9:7a:9c:b2:1a:c8:4f:
06:a7:5d:e5:69:09:f1:7a:fd:bb:37:62:45:9e:31:
52:5e:67:14:62:d1:c7:6f:b6:19:fe:ab:48:c3:ea:
45:96:9a:7c:25:8a:bf:96:58:4d:e8:a2:fa:94:90:
3e:6d:46:b9:6b:f1:2f:a5:3f:42:6f:e4:59:66:70:
be:69:60:67:c2:ce:ff:37:b7:9e:76:c6:62:8b:23:
be:09:2c:b6:ce:b8:a5:7d:a7:f0:5d:00:b7:21:f8:
54:70:cd:94:93:44:c9:1b:d7:9c:49:24:fd:be:26:
7f:88:0c:1c:cb:c0:df:d0:68:d0:4d:92:71:1f:b8:
c3:d2:4f:01:e6:62:cc:96:5f:c4:d8:b4:c4:27:00:
cf:07:6b:31:ef:0e:2f:e5:fc:f1:5e:c5:8a:27:9d:
3b:c4:89:c6:8c:71:78:ad:59:6a:bc:ef:58:b4:c2:
6a:b8:e7:b3:0d:60:ba:0e:83:fb:b3:89:91:79:af:
63:ac:c0:c9:a6:10:50:1f:75:21:b5:5d:c3:99:53:
94:bf:ad:e0:76:53:3f:65:68:d2:28:e8:5b:31:d4:
90:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:0C:36:71:31:ED:70:92:31:56:C4:D8:00:94:FB:F3:13:C3:51:83
X509v3 Authority Key Identifier:
keyid:29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/1Aw2cTHtcJIxVsTYAJT78xPDUYM.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.2.58.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:8f:c6:3f:b2:15:51:a7:e9:66:80:6b:38:96:78:6e:67:65:
5a:49:4f:f4:b3:3e:1a:17:ac:46:d5:c8:53:f9:4a:19:5d:85:
56:9c:b3:ad:2e:0e:3b:2d:37:bf:a0:09:3a:60:55:62:0c:39:
e5:0a:77:73:1f:fd:83:0f:fd:bb:9e:5a:f9:c0:a5:51:d4:29:
c5:14:0b:ee:61:3e:3c:0d:01:68:7d:41:57:bb:a4:bf:4f:17:
7e:6f:1d:f4:53:b7:eb:c5:86:54:f1:6a:d9:41:1f:38:5e:f4:
07:b7:93:b0:e3:e5:34:0b:9a:90:3f:2b:00:4c:6b:91:51:2c:
f8:5a:27:0b:26:cd:27:28:c9:68:34:7f:13:bd:75:e4:af:43:
2a:7b:ad:c3:a2:8c:76:8b:0c:97:61:a5:46:21:b7:db:51:93:
1d:64:9a:53:48:fc:75:38:33:57:87:ab:ba:ad:f2:2f:3a:02:
24:2e:02:0b:4c:5c:0f:6b:96:cf:75:dc:08:fb:aa:0d:36:dd:
25:3c:32:75:b0:3c:14:d4:b5:ea:dd:71:f7:cb:db:bc:cd:ff:
79:9a:75:e1:b2:28:4e:11:8f:13:69:61:e9:cb:f7:be:8c:a8:
1f:ee:c7:3d:53:66:da:ab:79:5f:84:ec:52:e4:93:8b:f8:dd:
cf:d3:6f:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:12 2024 by rpki-client on console-ams.rpki-client.org