Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10173/Ks80yaH_sZ-2UZE1-0yk5ndr2WE.roa
File: Ks80yaH_sZ-2UZE1-0yk5ndr2WE.roa (raw, json)
Hash identifier: iS1imj6L+h4qqVQGe5bd5w9dxwSvQU4T9V1GYzLOUso=
Subject key identifier: 2A:CF:34:C9:A1:FF:B1:9F:B6:51:91:35:FB:4C:A4:E6:77:6B:D9:61
Certificate issuer: /CN=101A90E4E74C403ABE8E5E0A1FE8E4157ABD2AE7
Certificate serial: 8A
Authority key identifier: 10:1A:90:E4:E7:4C:40:3A:BE:8E:5E:0A:1F:E8:E4:15:7A:BD:2A:E7
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/EBqQ5OdMQDq-jl4KH-jkFXq9Kuc.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10173/Ks80yaH_sZ-2UZE1-0yk5ndr2WE.roa
Signing time: Thu 13 Apr 2023 09:53:25 +0000
ROA not before: Thu 13 Apr 2023 09:53:25 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 18126
IP address blocks: 219.117.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138 (0x8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=101A90E4E74C403ABE8E5E0A1FE8E4157ABD2AE7
Validity
Not Before: Apr 13 09:53:25 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=2ACF34C9A1FFB19FB6519135FB4CA4E6776BD961
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a8:48:70:62:d8:42:61:de:25:67:ae:a1:87:
88:5e:81:b2:8a:8f:c5:31:84:e9:be:cb:be:73:ce:
a8:eb:6b:ed:ce:df:30:fd:0e:17:5c:f1:77:fb:bf:
c9:41:84:f9:53:82:0a:f6:4c:cd:05:4e:40:43:8a:
b6:0e:9e:1d:05:ea:b9:9b:25:29:47:66:81:c3:f0:
65:58:a6:23:a8:c3:6c:9a:02:e8:69:b7:14:94:6e:
b7:88:fb:dd:d1:f7:9f:48:d5:c9:57:a4:cf:4e:d3:
96:c9:fb:43:dd:64:01:1f:5c:2c:6e:78:91:d6:a9:
25:0e:ce:34:bd:52:de:65:d9:f5:56:30:e3:29:ca:
9a:27:72:ec:71:c2:35:fb:f9:09:c8:3c:18:65:27:
a1:db:95:27:7a:9f:73:44:e6:27:a0:42:f9:88:d8:
65:c7:3c:45:c7:f4:9b:d1:c3:3d:b7:56:29:35:71:
b4:ca:70:13:6d:76:ca:50:ae:20:ea:ee:b7:f7:61:
16:fd:fa:45:16:5a:fd:54:72:ea:23:c9:e8:01:4e:
5a:f3:d2:ca:d1:50:3c:37:df:75:63:2b:08:4e:e8:
91:f6:23:29:56:d9:39:91:ee:c0:31:58:29:59:f4:
a6:0c:87:c2:e2:67:04:4c:01:c8:df:20:d1:57:ff:
6d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:CF:34:C9:A1:FF:B1:9F:B6:51:91:35:FB:4C:A4:E6:77:6B:D9:61
X509v3 Authority Key Identifier:
keyid:10:1A:90:E4:E7:4C:40:3A:BE:8E:5E:0A:1F:E8:E4:15:7A:BD:2A:E7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10173/EBqQ5OdMQDq-jl4KH-jkFXq9Kuc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/EBqQ5OdMQDq-jl4KH-jkFXq9Kuc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10173/Ks80yaH_sZ-2UZE1-0yk5ndr2WE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
219.117.32.0/20
Signature Algorithm: sha256WithRSAEncryption
a2:45:e8:8b:f3:6e:09:a9:fc:53:ad:e1:a9:37:41:ee:e8:da:
99:a5:2d:c9:74:a5:52:74:fb:fc:4c:be:64:e6:54:46:d0:53:
45:e9:02:bc:c1:78:b4:f1:60:33:c2:ac:3c:72:91:77:ce:60:
29:f1:0a:fd:d1:ac:43:49:ec:a0:a3:36:46:40:ab:b7:1b:95:
e3:d9:70:a7:15:a6:6d:fc:9e:e2:a2:37:26:ca:11:c9:82:92:
73:7d:7c:9f:ac:70:42:cd:05:05:d9:83:de:7a:ab:79:50:10:
8b:54:b9:1a:46:d9:10:74:04:16:9a:9f:eb:cf:e2:76:45:fc:
e5:7e:74:6b:c6:e6:85:73:52:49:c0:ad:b7:44:bb:db:5e:c3:
03:a6:31:f2:9a:c4:38:70:3e:18:6a:59:b1:3d:4d:41:21:73:
ae:49:b5:0a:c1:5e:73:eb:88:cd:ff:48:3d:96:0f:a5:ab:83:
b7:96:a3:86:1a:93:32:c9:7d:0f:f2:f2:ad:7b:2a:64:9d:da:
70:9f:56:74:f0:77:05:1f:1b:2e:a0:64:2a:67:08:ff:fd:b6:
af:92:b6:35:0a:89:c2:9b:10:97:36:d7:84:1b:5f:42:78:51:
8d:4b:c9:0a:b5:cf:f5:7c:12:29:d4:5f:c2:e2:61:16:f9:09:
04:e5:bb:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:31 2024 by rpki-client on console-ams.rpki-client.org