Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/CHjsmpLWxyMl-Zko3K4n3z_ztQQ.roa
File: CHjsmpLWxyMl-Zko3K4n3z_ztQQ.roa (raw, json)
Hash identifier: okpceEqXL+p9DyjFWK83LHIWzugzt6NcqMYUpL3Kq7A=
Subject key identifier: 08:78:EC:9A:92:D6:C7:23:25:F9:99:28:DC:AE:27:DF:3F:F3:B5:04
Certificate issuer: /CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9
Certificate serial: A6
Authority key identifier: 29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/CHjsmpLWxyMl-Zko3K4n3z_ztQQ.roa
Signing time: Sat 01 Oct 2022 01:29:15 +0000
ROA not before: Sat 01 Oct 2022 01:29:15 +0000
ROA not after: Fri 15 Sep 2023 01:30:03 +0000
asID: 2497
IP address blocks: 103.2.57.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166 (0xa6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9
Validity
Not Before: Oct 1 01:29:15 2022 GMT
Not After : Sep 15 01:30:03 2023 GMT
Subject: CN=0878EC9A92D6C72325F99928DCAE27DF3FF3B504
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a1:38:d2:28:87:7b:af:af:08:18:8b:9e:13:
a3:77:21:15:97:ee:62:b3:4c:5f:7a:ac:e3:90:a5:
69:75:c7:68:49:4d:55:7e:1c:9a:e0:12:8d:f7:a2:
90:65:d0:cc:80:68:ff:03:69:70:23:82:52:65:0b:
21:5e:b6:dd:5c:a1:1a:e5:ca:14:88:12:d8:87:4d:
cb:9c:7d:f6:8c:74:9e:4e:fb:1c:71:77:ad:4a:d8:
d5:95:61:34:fe:bb:92:e0:2d:bc:53:cb:2e:d1:13:
03:e0:50:56:c7:31:21:89:de:97:43:ed:48:83:09:
0f:e5:40:2c:2b:57:f6:c2:78:45:8d:ec:90:4e:f0:
df:d8:97:37:7f:0b:e3:89:ca:6a:25:d3:73:80:2d:
d3:9f:d7:d1:a0:af:5f:f1:66:f2:c3:84:76:3e:fa:
ac:3d:47:48:bb:0a:98:06:8a:7e:05:75:57:7f:48:
e0:d5:4f:4a:a6:d1:09:91:c0:99:ed:43:05:5d:5b:
77:90:98:7d:77:1e:e1:73:95:fa:78:ff:ee:85:be:
46:9f:51:2c:46:69:7c:7f:fb:2d:2c:e5:4c:b4:cd:
32:3b:e5:7a:85:84:8c:a4:82:9c:28:ef:73:37:bb:
3f:92:0f:45:ae:ac:2b:0a:7d:29:e5:d7:53:53:80:
df:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:78:EC:9A:92:D6:C7:23:25:F9:99:28:DC:AE:27:DF:3F:F3:B5:04
X509v3 Authority Key Identifier:
keyid:29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/CHjsmpLWxyMl-Zko3K4n3z_ztQQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.2.57.0/24
Signature Algorithm: sha256WithRSAEncryption
58:b5:1a:a6:50:62:6d:1e:7d:97:12:ba:af:ff:59:cc:6e:91:
8a:af:f2:71:8a:a0:16:3a:c2:25:07:90:85:77:e2:75:eb:c7:
f6:cc:9a:97:74:0f:83:86:18:1c:a3:2d:0c:cb:f1:b6:53:24:
d1:95:ce:58:6e:09:3b:af:50:d5:5a:c4:e8:6f:2a:03:8c:58:
27:59:52:a0:19:38:02:c4:b9:46:3a:78:be:81:c7:9b:ec:62:
c9:48:92:14:fe:b4:82:82:09:cb:4c:fd:92:ab:bb:ca:73:8e:
5b:18:75:26:fe:ae:14:14:fb:ca:cc:ca:70:d3:ed:ad:72:85:
a4:e5:37:d7:07:9d:1c:19:ab:dc:7f:b5:67:c2:dc:e7:11:02:
97:6c:ea:a8:9c:08:7f:87:d8:36:de:0a:af:4e:5e:e7:18:94:
bf:e3:d2:ab:bf:1b:8a:99:c6:c9:d0:09:5a:8b:3f:65:bb:1a:
36:7b:83:b4:23:d9:78:ac:7d:40:27:00:c6:ad:f3:b5:9e:29:
a5:74:42:24:11:dd:1d:80:2f:2e:83:23:2d:14:dd:e1:8e:94:
e7:eb:a5:85:46:a2:51:ad:01:b1:7b:c5:d0:22:c9:4c:2f:4b:
17:d9:b0:64:3f:22:bd:48:eb:b7:b4:42:13:bc:f7:04:28:56:
75:05:e3:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:12 2024 by rpki-client on console-ams.rpki-client.org