Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/40cB7KzY5QKEPcYbg8_9ONLG9yg.roa
File: 40cB7KzY5QKEPcYbg8_9ONLG9yg.roa (raw, json)
Hash identifier: J3bOnirdJev8LpfTVaYy4eotf5d+MTESI+zb/5Sm/Z4=
Subject key identifier: E3:47:01:EC:AC:D8:E5:02:84:3D:C6:1B:83:CF:FD:38:D2:C6:F7:28
Certificate issuer: /CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9
Certificate serial: A7
Authority key identifier: 29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/40cB7KzY5QKEPcYbg8_9ONLG9yg.roa
Signing time: Sat 01 Oct 2022 01:29:15 +0000
ROA not before: Sat 01 Oct 2022 01:29:15 +0000
ROA not after: Fri 15 Sep 2023 01:30:03 +0000
asID: 2497
IP address blocks: 220.208.192.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167 (0xa7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9
Validity
Not Before: Oct 1 01:29:15 2022 GMT
Not After : Sep 15 01:30:03 2023 GMT
Subject: CN=E34701ECACD8E502843DC61B83CFFD38D2C6F728
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b5:79:0b:98:c4:c7:98:8a:c5:78:ca:74:90:
ca:a3:0c:29:44:03:49:4b:b2:51:0f:38:6b:48:40:
ad:72:48:51:b4:fd:3b:ef:c5:0c:7b:4f:b5:a0:91:
ae:25:6b:8b:1d:23:e7:5e:e2:e4:70:d0:8e:4b:20:
5a:a4:f2:90:7e:83:f5:c8:71:49:72:32:0a:6e:fe:
5a:f9:20:aa:32:9d:32:27:3b:ef:8d:24:9e:61:3d:
33:df:bf:5d:6e:40:3d:76:66:e7:47:51:ee:a5:00:
c6:80:65:5f:81:ec:72:b1:32:7a:a1:b6:df:01:d7:
db:ae:98:03:85:3c:ab:fd:54:66:c3:60:d4:b1:46:
3a:29:49:c6:f3:bb:0b:7f:a6:5c:17:53:7c:36:50:
a8:0f:5d:06:ea:78:30:b3:64:3d:f8:3b:84:10:a0:
ed:d0:e7:20:7a:e9:10:f2:90:eb:31:cd:ec:29:f9:
d5:e4:01:87:a2:9a:07:35:a8:30:b1:55:98:4a:1a:
f5:45:bd:32:da:b1:6f:12:3f:14:38:ac:18:65:1c:
0f:2b:d5:bb:00:e3:e0:eb:9a:22:70:a1:a8:9c:23:
a6:13:7b:d5:22:0d:d2:87:a9:05:f4:91:00:12:67:
8e:f3:95:10:39:1b:7c:4c:b5:c9:e2:83:90:28:aa:
b0:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:47:01:EC:AC:D8:E5:02:84:3D:C6:1B:83:CF:FD:38:D2:C6:F7:28
X509v3 Authority Key Identifier:
keyid:29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/40cB7KzY5QKEPcYbg8_9ONLG9yg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.208.192.0/19
Signature Algorithm: sha256WithRSAEncryption
53:f9:d5:71:19:18:2d:ad:2f:e8:b5:80:2e:78:eb:f0:c1:9a:
8f:88:6f:43:a7:f8:1a:fc:d7:d9:24:ea:65:3a:3b:60:04:73:
28:e4:3b:d4:5b:b6:06:86:95:6f:84:95:c1:b0:7e:6d:e2:e3:
4b:f7:2f:b3:85:cf:24:66:23:29:ff:9e:9a:84:8d:b7:76:c6:
74:4b:d9:50:83:bb:fb:6b:4f:12:02:34:b6:52:f3:ca:9a:15:
d8:ba:8d:d1:b8:62:3d:a5:39:a3:01:77:3d:fb:51:c9:6e:63:
39:f8:9d:f6:2f:d2:00:a1:44:1f:50:47:9d:27:01:45:cf:86:
f3:a7:7c:9e:b7:05:e1:67:79:77:ff:4b:36:9b:88:9d:b1:ce:
4e:69:4b:21:45:cf:40:9d:9c:04:52:75:09:d2:c9:81:65:53:
ed:b1:d1:51:8f:9d:bd:aa:be:b8:6b:31:7e:e5:9b:55:40:dd:
19:c9:5e:40:30:ca:d8:96:e6:b7:47:66:0a:ad:21:18:51:79:
bb:cf:00:af:e9:45:f2:5c:2e:d7:b1:19:ff:ce:97:14:41:5b:
8f:b5:9a:16:f2:23:6b:9a:e4:a2:97:bf:ae:44:62:b4:75:6e:
e3:a9:e0:b9:ef:01:8d:39:b6:b1:0c:07:dd:c3:d8:65:da:da:
f0:86:e5:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:55 2024 by rpki-client on console-fra.rpki-client.org