Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10762/CmWfpdU1QJP-qYMjIUXVriMh8VU.roa
File: CmWfpdU1QJP-qYMjIUXVriMh8VU.roa (raw, json)
Hash identifier: rJ4sXY3b5njQJ6YU9MWEq+4CjhRIX0ojAQzLk1RGQVM=
Subject key identifier: 0A:65:9F:A5:D5:35:40:93:FE:A9:83:23:21:45:D5:AE:23:21:F1:55
Certificate issuer: /CN=28393FAE129B501824696BAE24B64734A203C376
Certificate serial: 4A
Authority key identifier: 28:39:3F:AE:12:9B:50:18:24:69:6B:AE:24:B6:47:34:A2:03:C3:76
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KDk_rhKbUBgkaWuuJLZHNKIDw3Y.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10762/CmWfpdU1QJP-qYMjIUXVriMh8VU.roa
Signing time: Fri 06 Jan 2023 09:39:57 +0000
ROA not before: Fri 06 Jan 2023 09:39:57 +0000
ROA not after: Fri 15 Dec 2023 01:30:02 +0000
asID: 7514
IP address blocks: 218.216.128.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74 (0x4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28393FAE129B501824696BAE24B64734A203C376
Validity
Not Before: Jan 6 09:39:57 2023 GMT
Not After : Dec 15 01:30:02 2023 GMT
Subject: CN=0A659FA5D5354093FEA983232145D5AE2321F155
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:0b:bf:22:bd:98:19:de:b7:8a:4f:69:50:70:
00:f4:f8:3a:c5:17:4d:94:64:0b:bf:e9:17:80:64:
2c:e3:44:3a:db:74:51:7c:19:96:d2:1b:18:fe:67:
f6:b7:04:2f:31:06:49:2b:45:a1:64:4a:94:03:d0:
1e:f3:70:6c:8e:31:8c:cd:ed:ea:47:d1:0a:ca:fd:
41:d1:59:85:6f:a5:e0:be:a3:f0:16:48:44:d4:b1:
ac:2b:9f:9d:56:dc:26:25:84:69:f6:63:e9:ad:c2:
6c:5d:8d:4e:8a:5b:a1:4f:b6:b0:ed:bf:05:f8:58:
37:81:a4:c0:fc:09:f7:18:57:82:5a:d3:4d:ee:f7:
4b:c2:dc:b6:41:6f:74:b7:05:2d:8d:04:0a:66:6e:
a8:bd:69:3b:29:df:3e:16:9e:2d:75:95:20:b9:8b:
7e:af:4d:28:3a:70:17:a4:09:a6:2d:5e:8a:96:c8:
a9:55:1b:f3:e7:c1:70:ca:fd:75:56:43:46:be:f2:
de:b2:72:ea:0b:68:3f:90:cc:f1:54:0d:33:44:03:
ae:f3:a2:cc:ed:ed:d1:b1:ed:47:5c:c9:ba:66:4f:
9b:cc:b4:b2:13:af:08:89:4b:81:3b:b8:2c:29:25:
24:36:8b:de:5e:c1:2b:04:91:ab:69:3b:95:8e:70:
c4:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:65:9F:A5:D5:35:40:93:FE:A9:83:23:21:45:D5:AE:23:21:F1:55
X509v3 Authority Key Identifier:
keyid:28:39:3F:AE:12:9B:50:18:24:69:6B:AE:24:B6:47:34:A2:03:C3:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10762/KDk_rhKbUBgkaWuuJLZHNKIDw3Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KDk_rhKbUBgkaWuuJLZHNKIDw3Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10762/CmWfpdU1QJP-qYMjIUXVriMh8VU.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
218.216.128.0/20
Signature Algorithm: sha256WithRSAEncryption
b4:6c:4a:cd:9e:f8:12:aa:84:e6:01:d1:f7:42:60:8b:60:43:
ae:6d:db:ed:54:f1:7d:84:c2:c5:ba:0a:c7:55:9a:c1:4c:3b:
ee:7c:a7:5f:cc:15:6c:4a:28:69:c1:e7:82:b7:ed:16:81:e6:
95:5f:26:2b:cc:e8:60:20:ca:56:b1:af:38:14:b4:5c:de:9c:
6c:6d:5a:f0:c3:ac:2a:2b:c6:45:eb:d8:be:67:14:b3:2b:4f:
ec:50:2d:b3:44:4a:25:a3:d2:03:65:ee:fd:2b:ba:86:80:da:
5c:0d:56:b1:bf:3a:76:d5:b2:b4:05:ac:77:e4:38:81:d6:2a:
e0:49:45:70:b2:de:b9:20:fa:bd:27:00:ae:c5:8f:49:49:66:
fd:e4:6a:5e:a1:94:74:79:37:df:26:5a:fd:58:a3:51:61:18:
3b:fd:62:07:86:85:e6:62:72:c1:c4:93:ca:e8:59:e8:88:2e:
c4:eb:13:51:40:2e:ff:40:53:ea:6d:92:2a:63:04:c7:6b:81:
fa:42:34:45:11:29:94:c7:35:c0:dd:0b:20:b0:5b:fc:75:9a:
9a:33:7b:35:bc:c5:01:fc:12:b1:0a:85:04:32:a2:a6:26:79:
1c:21:e6:3b:9a:b3:f9:e6:e9:fd:2a:71:3c:53:9b:2d:bc:6f:
72:5a:b3:01
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:32 2024 by rpki-client on console-ams.rpki-client.org