Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/oLfiKMBcZ2AKMr4i3XQWPHqaXj8.roa
File: oLfiKMBcZ2AKMr4i3XQWPHqaXj8.roa (raw, json)
Hash identifier: xgmclMJqkFZSyDi71ub4BmWimmL/JEi1kWJaKss34SY=
Subject key identifier: A0:B7:E2:28:C0:5C:67:60:0A:32:BE:22:DD:74:16:3C:7A:9A:5E:3F
Certificate issuer: /CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9
Certificate serial: AC
Authority key identifier: 29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/oLfiKMBcZ2AKMr4i3XQWPHqaXj8.roa
Signing time: Sat 01 Oct 2022 01:29:16 +0000
ROA not before: Sat 01 Oct 2022 01:29:16 +0000
ROA not after: Fri 15 Sep 2023 01:30:03 +0000
asID: 2497
IP address blocks: 101.128.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 172 (0xac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9
Validity
Not Before: Oct 1 01:29:16 2022 GMT
Not After : Sep 15 01:30:03 2023 GMT
Subject: CN=A0B7E228C05C67600A32BE22DD74163C7A9A5E3F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:80:78:d2:41:71:79:6b:2d:c1:a7:a4:de:81:
9b:a4:56:43:06:8a:2d:07:a3:a2:58:37:f2:64:33:
d7:fe:8e:ac:ab:6e:51:77:ff:9f:ee:be:26:53:8c:
cf:90:4f:c5:65:d8:26:79:3f:f0:94:20:f0:7b:a0:
38:00:8b:92:9a:95:37:6e:f3:2f:f8:a7:c4:4e:54:
74:21:c2:53:45:49:79:a2:42:6c:83:22:0f:fa:95:
8e:34:4c:03:5d:2c:e3:db:6f:69:20:8b:3a:49:ea:
49:c7:66:2d:6d:08:02:a2:f6:30:93:40:65:40:b8:
16:56:ec:74:4a:98:f8:59:7c:04:25:c8:67:03:e3:
e5:59:81:e3:7c:dc:21:c1:25:4b:e3:17:2e:93:80:
4e:0e:bf:d0:58:a2:01:86:3c:e6:7d:b3:9a:e1:ab:
b6:c9:a6:06:fa:4b:9f:eb:b8:d1:9e:07:1b:50:d8:
b6:7c:09:50:6d:8d:e7:0c:83:00:81:dd:fa:97:3c:
c0:d3:d6:28:96:c6:7d:ed:01:e0:e9:2b:7f:51:be:
33:2c:b7:1a:b7:3a:8f:cb:bc:6c:77:e5:10:7d:9e:
cf:49:60:69:ab:36:1e:68:cc:29:6c:a5:6b:f8:f8:
20:7f:58:79:a2:bb:fa:59:c3:17:7a:27:08:2a:c7:
30:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:B7:E2:28:C0:5C:67:60:0A:32:BE:22:DD:74:16:3C:7A:9A:5E:3F
X509v3 Authority Key Identifier:
keyid:29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/oLfiKMBcZ2AKMr4i3XQWPHqaXj8.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
101.128.128.0/17
Signature Algorithm: sha256WithRSAEncryption
17:6e:25:d9:cd:fd:80:c7:f3:92:24:96:f1:4c:28:43:d0:1b:
8e:46:0a:c0:69:c0:5e:01:20:94:69:38:ee:54:55:9a:13:1a:
a1:08:ba:c2:d7:b5:4c:53:83:fc:cb:cb:ad:f4:6c:04:92:29:
f8:37:b7:22:22:38:12:e8:18:7f:f0:41:ed:6e:42:3c:83:b6:
ba:94:d9:9c:38:e1:80:0b:af:3b:49:bb:1d:a5:b1:ac:ea:56:
84:f4:21:1d:75:61:64:ec:bb:3b:8b:d7:17:a0:07:f6:71:15:
2b:21:0d:e4:c2:12:98:df:85:90:e4:a3:04:85:af:18:35:a6:
39:73:a5:bb:27:95:8d:90:47:19:5a:f4:5c:08:c9:9f:84:04:
ee:9d:b5:44:d0:0a:70:5f:ca:14:d0:eb:05:b3:46:ee:61:07:
b0:14:19:d2:29:4b:42:e3:6a:be:2c:da:7a:db:1c:a3:99:17:
9a:73:c3:e1:5c:c3:d3:66:de:f0:f0:95:c7:96:50:6c:b3:cb:
91:b6:b2:07:00:d2:3d:23:30:95:60:3d:98:27:82:b9:ba:61:
b3:30:22:ab:41:62:3c:10:83:95:fe:51:82:f5:e7:a1:08:eb:
0c:2e:f4:01:7d:15:54:9d:54:ab:98:c4:f7:b1:82:79:29:30:
ef:9e:79:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:55 2024 by rpki-client on console-fra.rpki-client.org