Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10602/qKGVKYiIc6PfuV3RC7IgwTN3Z-0.roa
File: qKGVKYiIc6PfuV3RC7IgwTN3Z-0.roa (raw, json)
Hash identifier: BqI9Nnwx0DYkyfhZXBp/JaGNB+q59l8iCXpNwwDctoY=
Subject key identifier: A8:A1:95:29:88:88:73:A3:DF:B9:5D:D1:0B:B2:20:C1:33:77:67:ED
Certificate issuer: /CN=28995D6B0DDC205B35959332D1CB1D9D8CF02283
Certificate serial: 14
Authority key identifier: 28:99:5D:6B:0D:DC:20:5B:35:95:93:32:D1:CB:1D:9D:8C:F0:22:83
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KJldaw3cIFs1lZMy0csdnYzwIoM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10602/qKGVKYiIc6PfuV3RC7IgwTN3Z-0.roa
Signing time: Wed 18 Aug 2021 07:54:18 +0000
ROA not before: Wed 18 Aug 2021 07:54:18 +0000
ROA not after: Mon 15 Aug 2022 01:30:03 +0000
asID: 24295
IP address blocks: 103.28.24.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20 (0x14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28995D6B0DDC205B35959332D1CB1D9D8CF02283
Validity
Not Before: Aug 18 07:54:18 2021 GMT
Not After : Aug 15 01:30:03 2022 GMT
Subject: CN=A8A19529888873A3DFB95DD10BB220C1337767ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b1:ff:f5:fc:3f:0d:05:ab:92:53:55:1e:13:
a6:39:a2:81:66:92:2f:43:31:ec:d6:91:28:30:7f:
b9:1b:fe:98:d2:4e:09:98:b3:52:76:4b:90:3c:2f:
5e:d8:eb:ad:a1:f4:cb:c9:19:fb:32:4b:b2:28:7d:
5c:91:5e:8a:6d:18:73:2d:cb:ba:1b:73:ea:50:b1:
c9:60:9d:c9:14:9d:0c:95:b1:17:b6:ac:71:80:e3:
80:60:c3:f5:c2:d2:70:12:3d:ac:ae:46:29:27:8a:
7b:4b:d9:2c:22:32:cb:3b:91:4c:fb:74:54:e8:9f:
98:a7:07:4c:f9:ef:1f:29:e7:e9:5c:54:6e:28:2c:
81:22:a5:ad:38:61:55:11:3d:6f:99:90:77:42:0c:
d2:b4:7f:8f:2e:4b:15:70:27:92:ff:69:31:9e:1a:
70:38:86:50:0c:f7:67:6c:e4:ce:e7:2e:9b:ac:50:
8c:a7:6a:02:b5:de:26:7f:92:1b:29:35:d3:e5:c8:
3a:d8:ce:f4:d0:de:30:fe:89:9a:3e:b0:f4:67:75:
18:af:cd:22:b5:3e:20:d2:e7:a3:a5:65:b9:d7:0d:
65:3c:f8:aa:6f:e1:e5:32:0c:06:f5:2b:54:d7:83:
43:12:7f:61:62:72:6c:06:dc:2e:1f:6c:1f:67:5d:
a1:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:A1:95:29:88:88:73:A3:DF:B9:5D:D1:0B:B2:20:C1:33:77:67:ED
X509v3 Authority Key Identifier:
keyid:28:99:5D:6B:0D:DC:20:5B:35:95:93:32:D1:CB:1D:9D:8C:F0:22:83
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10602/KJldaw3cIFs1lZMy0csdnYzwIoM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KJldaw3cIFs1lZMy0csdnYzwIoM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10602/qKGVKYiIc6PfuV3RC7IgwTN3Z-0.roa
sbgp-ipAddrBlock: critical
IPv4:
103.28.24.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:fa:ff:84:58:a5:65:f5:25:2e:29:4f:66:45:f8:8e:f2:a6:
8d:e7:52:77:43:a4:6d:55:f6:aa:2e:0a:f1:4a:79:d3:f9:a9:
3f:22:f5:65:ba:ee:45:ad:38:fd:63:39:fd:88:34:d2:7d:a4:
25:ae:ec:c8:d7:b8:6c:b5:2e:0c:9c:a5:b1:83:b9:e3:dc:7f:
4f:3b:9e:b9:11:36:3c:43:cd:6d:aa:84:80:b5:f7:a7:34:18:
e7:65:d5:09:c3:e3:81:ac:6f:b3:74:cb:98:c1:9f:25:72:97:
f4:92:94:7e:a0:24:e7:66:3c:96:ce:4f:7d:0d:ca:19:ad:73:
fa:0c:5c:eb:91:71:97:3c:77:d3:34:fe:b6:d5:46:ab:34:07:
b9:fe:6c:4a:f1:9d:0e:b6:8e:12:69:f7:ea:dc:53:05:5a:29:
c4:c8:ad:9e:19:0d:86:5f:bb:f2:55:14:94:14:98:7f:c5:3a:
85:a8:10:85:34:c4:11:4e:8d:05:df:d2:65:a8:ee:19:cd:86:
17:90:5a:16:f6:0a:cd:ae:1b:a0:ca:f2:f1:78:9d:6a:b8:a6:
31:ef:22:58:50:d9:89:a7:04:99:b3:02:de:14:52:22:5b:2a:
9e:64:80:60:24:d0:d3:6d:ed:6d:fc:47:00:03:f7:f2:b8:e5:
ee:5b:50:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:42 2024 by rpki-client on console-fra.rpki-client.org