Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/I-fofxCnpcUo9tEE4VUeI6Dpufk.roa
File: I-fofxCnpcUo9tEE4VUeI6Dpufk.roa (raw, json)
Hash identifier: 83t1TDc+jvAmibQnnGoieS5Q7BKGnDJt7k3XvHQbq5k=
Subject key identifier: 23:E7:E8:7F:10:A7:A5:C5:28:F6:D1:04:E1:55:1E:23:A0:E9:B9:F9
Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95
Certificate serial: 2D
Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/I-fofxCnpcUo9tEE4VUeI6Dpufk.roa
Signing time: Mon 01 May 2023 01:29:39 +0000
ROA not before: Mon 01 May 2023 01:29:39 +0000
ROA not after: Sun 14 Apr 2024 01:30:02 +0000
asID: 2554
IP address blocks: 211.133.128.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45 (0x2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95
Validity
Not Before: May 1 01:29:39 2023 GMT
Not After : Apr 14 01:30:02 2024 GMT
Subject: CN=23E7E87F10A7A5C528F6D104E1551E23A0E9B9F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:14:22:a4:d3:ae:35:75:15:72:c0:76:7f:d4:
f4:d2:59:c4:87:0b:95:d5:e1:55:f4:c9:16:c0:80:
be:48:5d:e3:d0:f4:d5:71:b5:c9:62:86:ce:ad:32:
50:bb:35:42:e2:e1:9a:17:87:f2:6c:df:b3:fd:2a:
29:3f:1a:c1:02:bc:0c:0a:57:b6:60:de:89:d3:33:
d9:99:61:00:0c:c2:14:91:8d:30:ce:02:78:f2:e3:
e2:cc:b7:8e:c9:f4:9e:1d:78:b7:93:58:90:1b:13:
27:79:e7:31:e2:01:be:fa:f9:16:36:2f:af:15:98:
58:73:d0:7a:05:33:1c:52:cd:06:2c:9f:03:92:f1:
42:23:b8:39:cb:db:55:ee:d8:b2:7a:c5:d0:ca:13:
7e:1a:bb:de:a4:a3:3e:e4:3c:1c:fd:b8:10:71:71:
ef:e3:6b:5b:35:60:d2:39:4c:fb:c3:e1:96:20:4f:
b7:e3:b7:4f:66:ca:fc:b3:ad:61:8a:64:4d:f6:19:
12:45:0c:d0:dd:18:bb:a0:b9:cf:16:1e:c2:be:0a:
40:d1:45:be:2d:75:12:05:4b:6d:41:f8:88:a8:25:
38:83:d8:a2:29:5e:a9:63:7a:89:e3:3e:2b:ce:0b:
18:74:fc:fc:3f:55:a3:ee:ac:3a:dc:3b:86:8d:65:
b7:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:E7:E8:7F:10:A7:A5:C5:28:F6:D1:04:E1:55:1E:23:A0:E9:B9:F9
X509v3 Authority Key Identifier:
keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/I-fofxCnpcUo9tEE4VUeI6Dpufk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
211.133.128.0/20
Signature Algorithm: sha256WithRSAEncryption
76:56:d9:98:2b:80:61:de:be:05:18:c3:ce:be:a4:52:a3:b1:
31:f1:ca:b3:a6:e4:1f:d7:0c:2e:a0:ca:95:2e:38:a3:00:8f:
31:d2:fb:6e:b7:a8:c7:36:91:82:7f:d7:f1:af:f6:eb:35:57:
ef:f6:7f:83:dd:86:72:66:1e:ad:4a:65:6b:c2:ab:22:9b:81:
d1:7f:3d:02:12:6b:e7:d6:d6:f1:18:07:a8:3d:3b:0b:ea:29:
af:39:05:33:aa:59:ef:bf:92:51:0a:5e:8b:08:78:0e:47:9a:
20:ab:f5:a3:74:8b:44:e0:31:0a:30:79:f6:02:ae:a1:ba:79:
7d:3f:40:3b:85:8e:c2:1f:1f:ce:4a:e6:d5:5a:c7:cd:55:da:
77:70:49:ea:88:4a:9c:32:7e:04:42:fc:f9:eb:fe:fb:d9:1d:
8e:04:7e:43:0e:db:d4:95:32:39:35:fa:4f:4a:7f:9e:c1:fd:
99:e2:2b:df:72:1f:de:72:3d:b5:d4:56:62:49:ab:fa:d4:4a:
a2:1f:4d:48:c2:9b:3c:18:6e:d8:26:60:7a:a7:ef:99:08:f6:
5a:2b:04:20:4f:a2:91:ee:4c:e3:71:9f:41:7a:90:aa:ef:83:
2c:b4:54:de:c1:4b:96:fc:e4:aa:de:18:73:50:dd:c5:f7:ae:
6f:db:03:2d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:39 2024 by rpki-client on console-ams.rpki-client.org