Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/hkMuMTnM2tA3UIowg0Kz4UXjXf0.roa
File: hkMuMTnM2tA3UIowg0Kz4UXjXf0.roa (raw, json)
Hash identifier: 00H06E/F1XYFpbsOJIK88M0xtrY5pg0yKdkJxI4Rc/o=
Subject key identifier: 86:43:2E:31:39:CC:DA:D0:37:50:8A:30:83:42:B3:E1:45:E3:5D:FD
Certificate issuer: /CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9
Certificate serial: CD
Authority key identifier: 29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/hkMuMTnM2tA3UIowg0Kz4UXjXf0.roa
Signing time: Tue 01 Nov 2022 01:28:01 +0000
ROA not before: Tue 01 Nov 2022 01:28:01 +0000
ROA not after: Sun 15 Oct 2023 01:30:02 +0000
asID: 2497
IP address blocks: 210.130.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 205 (0xcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9
Validity
Not Before: Nov 1 01:28:01 2022 GMT
Not After : Oct 15 01:30:02 2023 GMT
Subject: CN=86432E3139CCDAD037508A308342B3E145E35DFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f0:ea:6c:f9:9e:83:96:01:66:13:71:9b:5a:
a8:90:db:0a:ee:79:be:6e:b5:5d:b0:4b:56:7d:ba:
df:48:a0:ac:37:67:bd:b3:e4:2d:19:a4:e4:f4:20:
fc:d5:7c:a0:b3:9f:e3:ac:44:88:47:4b:d3:ea:d4:
c7:0e:9f:98:39:fa:4d:dd:e9:f9:6d:07:68:21:d4:
8e:cf:3c:32:7d:7d:e9:be:df:4f:d7:62:21:b1:de:
b3:0a:aa:9c:cc:50:d8:b9:5b:74:91:05:50:8b:1d:
2a:b5:7e:ac:a1:db:35:6e:b2:b7:d0:72:de:c1:b9:
8f:55:89:90:80:43:2a:cc:d4:07:d0:a2:5f:c0:3f:
11:cb:2c:d2:eb:80:d9:00:e5:20:01:32:10:3c:5b:
81:68:a8:60:a2:a6:8a:3b:70:85:18:bd:3a:98:4e:
30:4d:4b:3a:47:09:7e:5d:1a:04:e3:48:81:80:48:
86:95:c8:5e:fc:b2:a1:a0:a2:04:5b:8d:23:8e:65:
1d:4f:0b:11:79:e3:74:57:8d:7d:9a:0b:6d:6a:fa:
c7:44:31:f6:d2:29:ab:cb:4e:73:eb:64:ae:e7:5a:
c8:7f:c6:7f:ca:93:0f:16:a0:51:f9:e8:6f:3d:d4:
e9:74:44:3d:c8:81:7d:07:eb:25:08:b8:c6:a1:7c:
6e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:43:2E:31:39:CC:DA:D0:37:50:8A:30:83:42:B3:E1:45:E3:5D:FD
X509v3 Authority Key Identifier:
keyid:29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/hkMuMTnM2tA3UIowg0Kz4UXjXf0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
210.130.0.0/16
Signature Algorithm: sha256WithRSAEncryption
10:39:92:6f:b9:f9:e1:62:c6:df:de:3b:5a:33:b1:14:86:b6:
f2:c3:7c:a3:f7:06:64:19:b2:50:92:cb:c8:2b:b8:97:c9:6b:
23:11:5f:7d:c0:68:80:fa:b6:0f:19:ca:16:eb:12:02:24:9b:
31:01:e6:08:8e:73:dc:a5:9a:45:e8:e4:33:52:a0:b8:f6:ee:
ae:07:c2:38:c1:f0:6e:ae:0e:e0:57:d7:d8:a7:3c:5f:09:ee:
16:f8:dc:99:a7:b7:e1:5e:11:10:7b:4c:27:0f:49:13:e3:65:
d4:09:1b:34:21:3c:d3:e7:8c:26:e4:cd:16:25:ae:56:cd:ce:
af:36:cf:ec:be:ee:f0:2d:3a:e4:29:6c:a8:db:c7:cf:27:d5:
75:a7:ba:ba:5e:5c:7b:9b:5d:fe:f5:27:1f:71:c4:70:9a:01:
9c:e6:96:68:8e:62:b2:92:2b:43:52:d9:31:85:d7:d9:b5:fa:
46:18:2c:4c:7f:f7:f6:77:75:24:bf:c9:a9:77:a8:f9:6d:c3:
9d:52:3a:e3:0b:86:dd:6d:c2:0c:b0:26:29:f8:68:a5:c9:ad:
49:49:a8:cf:97:d8:e4:6b:cd:32:70:44:5b:a5:dc:2c:83:99:
f5:86:eb:21:36:d7:6e:21:b6:48:5b:1a:77:40:52:40:dc:bd:
9b:ff:5f:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:55 2024 by rpki-client on console-fra.rpki-client.org