Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/SXx2NqQjBCO52hLyAmicktfOpTE.roa
File: SXx2NqQjBCO52hLyAmicktfOpTE.roa (raw, json)
Hash identifier: NsjxEzY6Hbkxy+rYVoGRSHMDN/524K71Z0o/OC7YE6o=
Subject key identifier: 49:7C:76:36:A4:23:04:23:B9:DA:12:F2:02:68:9C:92:D7:CE:A5:31
Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Certificate serial: 020E
Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/SXx2NqQjBCO52hLyAmicktfOpTE.roa
Signing time: Mon 01 May 2023 01:35:50 +0000
ROA not before: Mon 01 May 2023 01:35:50 +0000
ROA not after: Sun 14 Apr 2024 01:30:02 +0000
asID: 2516
IP address blocks: 202.239.128.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 526 (0x20e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Validity
Not Before: May 1 01:35:50 2023 GMT
Not After : Apr 14 01:30:02 2024 GMT
Subject: CN=497C7636A4230423B9DA12F202689C92D7CEA531
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:be:35:cd:db:83:0d:3a:6b:88:59:1e:59:ed:
c3:72:78:24:76:c8:db:b9:8e:4e:ad:03:f4:64:ab:
c4:b9:1f:45:6f:b7:19:69:fd:ef:03:93:27:8b:11:
da:27:90:e0:3a:1c:3b:63:db:b0:2c:59:54:09:9f:
8f:47:17:54:bf:80:34:2d:2d:ed:15:c4:bd:7b:ba:
d6:f3:ee:eb:aa:16:15:12:84:04:4a:15:40:c2:34:
f4:84:0b:41:d9:ca:21:ab:70:94:a9:52:68:9f:17:
7b:70:54:e3:55:a3:20:38:73:0f:e7:c6:0a:ed:41:
e9:93:18:6b:ef:0d:33:98:6b:f6:46:96:29:b8:1b:
a1:fc:bc:4c:a5:72:28:37:68:b9:20:28:47:a1:1b:
36:46:1c:6f:89:ba:d5:f2:44:1c:2a:bd:0e:3d:aa:
f8:ee:cb:f1:bb:8e:ba:89:c1:00:fe:60:0a:d8:4a:
e7:03:51:54:d3:d5:45:91:af:cc:38:73:52:a9:4f:
c8:e9:a3:40:32:5e:83:ed:73:04:68:3f:91:05:2f:
53:c4:f7:c6:f9:44:82:da:4e:5a:e1:23:49:9b:46:
b3:4d:57:5a:46:30:76:2f:6b:b8:d2:94:74:a3:39:
50:cd:f7:40:63:57:cc:f0:b9:56:75:5e:5a:90:a6:
f0:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:7C:76:36:A4:23:04:23:B9:DA:12:F2:02:68:9C:92:D7:CE:A5:31
X509v3 Authority Key Identifier:
keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/SXx2NqQjBCO52hLyAmicktfOpTE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.239.128.0/18
Signature Algorithm: sha256WithRSAEncryption
5d:14:de:b7:34:98:31:cc:3c:8c:ed:54:88:f9:1e:9b:ce:d6:
24:00:96:bf:bf:23:31:6b:98:76:77:11:c0:31:0b:ac:b3:48:
b0:c3:0d:30:66:43:94:cd:5d:cd:7b:42:07:69:ef:54:50:82:
91:e3:33:1e:e5:a3:95:87:c2:da:73:a3:ee:a9:b7:f9:55:9a:
e2:92:01:31:fc:44:56:ee:4f:86:8c:1e:35:7f:20:e5:48:7d:
c2:52:6a:ac:11:b5:d2:64:c4:ff:7b:b2:ae:c2:cb:c0:4a:f0:
78:a6:ec:56:cf:e1:fa:d0:ed:e2:1a:e3:01:b1:2e:df:da:17:
f6:fc:a8:93:a2:a5:50:ae:2d:98:f1:8a:0d:f4:2d:16:93:a4:
1f:b8:fa:e4:0f:bc:64:6a:e8:7f:dd:8c:b5:ff:6d:b7:69:e5:
2b:4d:1f:47:29:a2:8a:f9:c4:86:b5:ac:a0:ae:65:cf:6f:10:
19:db:2d:59:cc:3f:d2:79:51:f9:6d:19:ec:ea:14:bc:06:7a:
42:90:fa:ba:49:7f:e0:33:61:86:89:2c:b5:e8:77:aa:74:36:
18:d3:67:6f:85:5c:00:5c:00:41:93:f4:0f:ff:06:1d:bc:6f:
01:6f:07:51:fa:3c:38:b6:2c:fe:45:e9:65:df:18:3b:4e:e2:
4c:ae:53:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:38 2024 by rpki-client on console-ams.rpki-client.org