Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/173/BUH7E77S4XbIT55NJ7velBHJQAs.roa
File: BUH7E77S4XbIT55NJ7velBHJQAs.roa (raw, json)
Hash identifier: ZoNdyWbBaXnxNzZ1Fri6uQg+7q14/hUw9YwNYtZLY44=
Subject key identifier: 05:41:FB:13:BE:D2:E1:76:C8:4F:9E:4D:27:BB:DE:94:11:C9:40:0B
Certificate issuer: /CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5
Certificate serial: 82
Authority key identifier: CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/BUH7E77S4XbIT55NJ7velBHJQAs.roa
Signing time: Sun 01 May 2022 01:30:33 +0000
ROA not before: Sun 01 May 2022 01:30:33 +0000
ROA not after: Thu 27 Apr 2023 09:52:34 +0000
asID: 18126
IP address blocks: 218.216.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130 (0x82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5
Validity
Not Before: May 1 01:30:33 2022 GMT
Not After : Apr 27 09:52:34 2023 GMT
Subject: CN=0541FB13BED2E176C84F9E4D27BBDE9411C9400B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f2:e5:d6:62:aa:f4:d3:49:c0:55:e2:fd:94:
4b:cc:99:df:bf:34:81:5f:1e:1a:24:84:71:47:c7:
ca:f1:e5:f5:b0:f4:ba:e5:7f:a1:a8:8c:94:6c:a9:
09:b9:82:7b:19:1c:da:55:5d:db:7d:6c:65:9a:a3:
43:f7:d7:cf:33:88:97:48:8e:24:e2:fc:62:eb:2f:
d6:34:0b:ed:f3:fc:1d:de:69:b9:70:00:cc:25:4c:
a5:33:28:8d:9c:ef:c0:ed:44:f3:b0:28:1b:c1:a4:
52:ac:33:41:f5:76:8e:e9:a7:d5:20:88:7a:28:9d:
fe:45:4f:5a:95:a9:d3:4b:34:a7:dc:20:08:6d:49:
da:e9:b9:5e:f9:9b:2f:a0:fb:d0:c0:13:6c:57:68:
be:bc:9a:7f:47:5f:37:31:d1:c5:ae:b6:f1:07:bd:
60:b2:f7:c3:2e:96:6d:54:70:f1:08:a6:d3:ae:f8:
29:d8:0b:ef:e0:a9:c3:d2:6c:91:1c:ca:ed:eb:54:
b4:a9:14:1d:e2:b1:4d:d0:12:b7:e8:85:73:a7:4d:
df:61:24:dc:da:82:ae:c0:35:78:53:67:0a:7f:05:
a1:21:4a:f9:29:05:5b:3b:9d:25:74:10:14:47:39:
e4:ce:45:35:d5:61:bb:3e:39:e1:1e:6f:b7:b5:80:
93:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:41:FB:13:BE:D2:E1:76:C8:4F:9E:4D:27:BB:DE:94:11:C9:40:0B
X509v3 Authority Key Identifier:
keyid:CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/BUH7E77S4XbIT55NJ7velBHJQAs.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
218.216.176.0/20
Signature Algorithm: sha256WithRSAEncryption
9d:41:b5:c5:b7:fc:1d:e8:af:d1:09:27:5c:2b:16:88:e0:f2:
fb:a4:5b:34:f4:b7:7d:92:e1:20:da:0d:da:41:d4:03:4a:c7:
76:ff:30:12:ba:69:c6:07:1a:26:e2:37:82:e0:cf:b9:d9:a3:
1a:26:1a:e4:5a:09:26:11:fe:ac:5b:54:68:cc:73:4f:32:4d:
6d:e6:21:a2:cd:df:12:a2:5d:87:75:17:81:93:b4:a0:d7:79:
cd:71:90:57:a0:7b:fe:06:67:58:e6:8a:10:8a:de:a1:93:b2:
e6:12:a5:af:73:1f:88:e6:fb:66:b8:7b:1f:e8:db:87:d9:50:
d9:81:2c:8c:85:31:d6:3d:b1:25:f2:07:20:7f:44:c7:7d:2d:
da:9b:da:1f:73:66:05:ee:48:47:6e:56:2e:38:6b:09:13:c4:
07:fa:3c:5a:e2:6f:ef:91:51:8b:39:60:ac:29:20:a9:a9:c1:
af:3e:25:6b:2d:cf:29:fb:64:db:6d:c8:d6:96:96:71:63:bd:
e2:3e:b4:e0:eb:12:47:6c:2b:73:b4:62:7e:54:da:11:a4:cd:
d8:c2:8a:7d:6a:7f:1f:a5:1e:84:54:8f:a2:34:14:99:e9:45:
13:41:fa:6e:86:47:d2:75:24:17:fc:09:41:91:32:24:01:fd:
55:a6:c2:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:02 2023 by rpki-client on console-fra.rpki-client.org