Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/11247/mPFnGonP5Z_IyZtrU-PKpkcm1Ok.roa
File: mPFnGonP5Z_IyZtrU-PKpkcm1Ok.roa (raw, json)
Hash identifier: 15Pf5YIQQPUo5SGeDOq5SuOtxr/N9S13B+flQiLNoQI=
Subject key identifier: 98:F1:67:1A:89:CF:E5:9F:C8:C9:9B:6B:53:E3:CA:A6:47:26:D4:E9
Certificate issuer: /CN=FBC46294A5D56437E19A11AEF9FB9B877690143E
Certificate serial: 3C
Authority key identifier: FB:C4:62:94:A5:D5:64:37:E1:9A:11:AE:F9:FB:9B:87:76:90:14:3E
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-8RilKXVZDfhmhGu-fubh3aQFD4.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/mPFnGonP5Z_IyZtrU-PKpkcm1Ok.roa
Signing time: Thu 01 Jun 2023 01:29:29 +0000
ROA not before: Thu 01 Jun 2023 01:29:29 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 7684
IP address blocks: 157.17.48.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60 (0x3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FBC46294A5D56437E19A11AEF9FB9B877690143E
Validity
Not Before: Jun 1 01:29:29 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=98F1671A89CFE59FC8C99B6B53E3CAA64726D4E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:e0:8d:f8:ee:dc:d9:8f:b3:3e:12:89:90:fc:
fe:28:fb:17:c3:b7:12:a7:8d:ce:16:d1:a6:ba:d3:
50:c9:c6:01:0b:e6:b2:b0:f6:fa:29:8a:91:6a:32:
c6:70:ba:5b:35:3e:7d:0a:84:c3:1d:a0:19:90:4d:
16:e9:b7:3b:0f:e0:e8:54:e2:e7:70:b4:6d:53:45:
ae:ba:1c:c8:e5:68:1c:23:a0:37:12:65:29:4b:60:
be:b0:ff:c0:5b:ef:55:5b:06:86:e5:79:0b:dc:1a:
f1:5b:34:ba:04:ea:f9:f7:ad:e8:d3:ab:d5:1d:5a:
b8:e1:8e:3b:68:dc:af:ee:73:33:0a:cf:92:45:76:
97:fe:df:1f:4a:e4:e4:59:d4:5f:92:b2:74:80:f7:
fb:8c:2d:8c:d3:83:4c:9b:20:c4:23:ec:a0:39:27:
53:fa:d1:b6:54:43:99:73:e6:62:9d:3c:ed:8e:3f:
f5:e3:39:09:fc:03:b7:a8:ba:84:1e:80:88:c4:b2:
1c:4b:cd:0d:b0:ee:69:4c:58:1a:51:36:d5:55:33:
db:0e:53:29:11:06:6f:f3:c0:72:40:1e:56:5e:4f:
e8:ef:a2:33:5e:bc:3c:dd:51:fa:0f:70:7e:a0:cc:
a6:5f:0b:63:3b:79:19:85:3e:5f:cb:a9:0c:a9:cd:
9f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:F1:67:1A:89:CF:E5:9F:C8:C9:9B:6B:53:E3:CA:A6:47:26:D4:E9
X509v3 Authority Key Identifier:
keyid:FB:C4:62:94:A5:D5:64:37:E1:9A:11:AE:F9:FB:9B:87:76:90:14:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/-8RilKXVZDfhmhGu-fubh3aQFD4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-8RilKXVZDfhmhGu-fubh3aQFD4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/mPFnGonP5Z_IyZtrU-PKpkcm1Ok.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.17.48.0/20
Signature Algorithm: sha256WithRSAEncryption
a7:9b:59:8f:56:f9:62:3a:d2:e3:c5:7c:e9:51:77:f9:45:94:
ee:ed:be:5a:7a:21:db:73:f0:67:8d:f8:c8:b1:70:7c:31:f6:
c9:7c:66:c2:b0:e3:13:fc:43:33:57:bc:00:35:0e:03:f5:16:
ee:6a:33:e3:fa:fe:82:82:24:91:ba:cc:3e:a5:73:91:fc:74:
04:72:1d:9a:57:1e:65:e7:99:91:d4:4c:c3:92:17:ad:5d:b0:
f3:f1:8f:dc:f5:12:44:6b:1b:d7:09:fb:a4:20:e8:10:7b:4d:
0f:8c:97:5e:4d:90:6b:3e:07:85:c6:d1:78:22:e8:ef:9f:fb:
42:27:cf:1c:6c:83:50:73:a5:41:65:a3:24:67:3c:8e:ef:34:
c3:94:6b:70:0c:18:b5:be:b4:20:39:a2:9b:86:7e:88:77:65:
d7:7b:bf:d9:e0:13:72:ab:23:84:f8:10:cc:29:c5:03:2c:9a:
b9:8c:f8:e4:32:af:60:c8:d1:7f:f7:88:6e:9f:cd:9d:66:e2:
c9:4f:fc:c4:bc:02:cf:9f:9f:70:0c:75:13:84:97:33:ca:25:
16:05:db:8c:00:57:4c:c4:d1:2a:c9:ef:42:ad:fb:70:7a:53:
60:5c:8a:95:2f:65:4e:70:86:44:8b:18:d2:84:de:b0:1f:1a:
08:a5:08:b2
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:42 2024 by rpki-client on console-fra.rpki-client.org