Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/o3SThZUPFo8XtBowofA_fG653y0.roa
File: o3SThZUPFo8XtBowofA_fG653y0.roa (raw, json)
Hash identifier: 4e5bEsQ7/aFbMQobqf5ifx2Z3ZcqYvpUTbXMcwl0DLs=
Subject key identifier: A3:74:93:85:95:0F:16:8F:17:B4:1A:30:A1:F0:3F:7C:6E:B9:DF:2D
Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B
Certificate serial: 9F
Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/o3SThZUPFo8XtBowofA_fG653y0.roa
Signing time: Sat 05 Jun 2021 03:47:33 +0000
ROA not before: Sat 05 Jun 2021 03:47:33 +0000
ROA not after: Sun 15 May 2022 01:30:02 +0000
asID: 4713
IP address blocks: 219.96.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159 (0x9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B
Validity
Not Before: Jun 5 03:47:33 2021 GMT
Not After : May 15 01:30:02 2022 GMT
Subject: CN=A3749385950F168F17B41A30A1F03F7C6EB9DF2D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f4:cb:46:3b:c2:ee:d5:36:78:fe:49:36:49:
8f:a4:47:be:47:e4:e0:cb:f1:25:6b:7d:36:61:28:
00:0b:6d:2a:cc:97:17:46:e8:51:5d:2f:d6:43:cf:
23:57:55:8e:9a:05:1d:63:53:f9:39:6d:09:90:44:
24:23:55:a1:8a:3b:2d:19:cb:ff:eb:b4:b4:f3:df:
9d:e7:14:0a:99:46:23:d1:40:d3:9c:fc:34:16:c3:
84:d4:ae:43:33:96:2f:66:d6:69:fc:8d:7d:da:5c:
75:a2:80:24:61:85:8a:81:51:8d:ba:6b:7c:9c:69:
49:9a:7a:e3:e2:91:ac:e9:fa:10:af:6e:1c:a6:71:
ff:02:13:0b:0f:9b:68:6e:47:fa:89:2f:ca:be:29:
7b:89:af:71:b0:d2:3e:a7:1a:05:9f:42:64:2d:1b:
d2:3d:eb:f6:dc:71:db:3d:21:de:a5:13:84:52:3d:
5b:4f:15:80:33:37:29:48:b4:d3:cc:ca:e2:9d:04:
08:1f:8b:5b:89:19:fc:e3:90:5e:0e:59:99:30:86:
aa:fd:aa:d5:9e:bb:0e:02:60:c4:91:c3:91:2d:52:
7a:cb:58:56:83:5f:9a:03:ea:04:02:13:9a:6e:97:
ac:d1:f8:12:80:9d:c7:a0:ae:63:39:be:dc:a2:39:
07:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:74:93:85:95:0F:16:8F:17:B4:1A:30:A1:F0:3F:7C:6E:B9:DF:2D
X509v3 Authority Key Identifier:
keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/o3SThZUPFo8XtBowofA_fG653y0.roa
sbgp-ipAddrBlock: critical
IPv4:
219.96.128.0/17
Signature Algorithm: sha256WithRSAEncryption
df:67:35:2d:de:38:a9:5a:d9:4f:46:37:0e:93:74:07:05:92:
e6:1c:bd:62:f8:0b:8e:36:40:6f:4e:38:ff:36:b2:8c:cc:ba:
78:2f:c1:4f:62:c0:10:fa:ed:7d:04:f5:76:9a:b1:f2:90:63:
cf:dd:51:3e:56:88:04:be:2f:c5:dc:1f:7f:d2:7b:a5:30:f7:
ad:90:5f:4e:aa:64:6f:3c:ad:bf:85:b9:4f:40:74:c5:07:fe:
cd:4e:36:47:71:50:1d:ee:4d:00:7d:3f:00:6d:2e:4a:5d:5f:
d4:06:b6:60:fc:51:70:80:4d:ac:60:6b:6c:c0:3a:60:d7:5b:
1f:05:4c:f5:12:57:73:21:0b:0e:c5:61:fa:23:4a:0e:b3:06:
09:39:93:c9:50:b1:5d:e2:98:d1:79:df:d6:d8:a6:60:df:40:
48:e3:6f:e0:6b:8d:b5:5c:26:29:53:84:fd:aa:4e:6f:c3:fd:
76:f6:99:7b:0c:11:a5:f4:68:5e:38:87:5e:1d:83:2c:91:15:
ae:50:78:20:ec:10:36:cc:2c:88:f4:85:04:fe:d4:e5:cb:4a:
bf:b7:cb:d3:71:74:8a:23:82:d2:a9:f4:51:0e:2e:6d:d0:44:
51:fc:ba:d7:cc:60:0a:02:c5:8d:0d:1e:80:cc:8d:6e:47:db:
3e:d8:7c:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:42 2024 by rpki-client on console-fra.rpki-client.org