Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/xfedY0HM1ao5Ti8sUHZVRdHKPr0.roa
File: xfedY0HM1ao5Ti8sUHZVRdHKPr0.roa (raw, json)
Hash identifier: QwKRuO98XosirCdlafjpM4ef4SSUoPFjyObadYeRIaM=
Subject key identifier: C5:F7:9D:63:41:CC:D5:AA:39:4E:2F:2C:50:76:55:45:D1:CA:3E:BD
Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95
Certificate serial: 28
Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/xfedY0HM1ao5Ti8sUHZVRdHKPr0.roa
Signing time: Wed 01 Mar 2023 23:32:31 +0000
ROA not before: Wed 01 Mar 2023 23:32:31 +0000
ROA not after: Thu 15 Feb 2024 01:30:03 +0000
asID: 4694
IP address blocks: 203.216.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40 (0x28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95
Validity
Not Before: Mar 1 23:32:31 2023 GMT
Not After : Feb 15 01:30:03 2024 GMT
Subject: CN=C5F79D6341CCD5AA394E2F2C50765545D1CA3EBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c1:71:a3:18:d5:32:b3:b8:b0:7c:a3:f0:e6:
7f:90:59:7e:75:e9:04:38:22:af:9d:5b:9e:4c:1a:
f1:ed:f7:50:ff:92:8b:1e:1c:77:b7:f6:02:7e:bc:
0f:90:42:dc:e5:22:87:a9:7c:07:c3:34:d8:39:b8:
86:33:53:ed:17:45:8e:bb:56:6d:91:db:7d:82:9c:
bd:bf:69:81:23:ba:16:6d:41:d0:3d:a1:a8:cf:a4:
9e:fb:a3:2c:a9:04:a0:60:ad:17:a0:08:04:12:0e:
d6:3c:65:a5:a7:67:f0:68:c4:7d:20:1a:56:89:05:
5c:97:76:40:00:fa:fe:78:74:c7:1d:01:f8:b6:a2:
f8:99:cb:5a:08:af:fd:74:c8:74:bd:c7:d7:ab:bb:
c5:77:30:36:5d:ff:c6:75:a4:03:0c:df:8f:07:fc:
08:98:f8:35:26:dd:d8:63:f9:3b:06:04:b4:b3:8b:
6c:cf:cf:52:bc:4b:27:59:c6:5b:82:f2:a0:54:ad:
07:4d:51:ac:f0:8d:c7:12:83:63:41:96:53:e4:28:
13:7d:0e:66:80:98:4d:cb:20:8e:c4:ac:e0:93:b6:
92:fa:4e:e3:61:7f:4a:31:93:5d:33:fd:c3:89:b8:
e8:e9:32:f7:2f:91:db:10:67:92:13:c6:24:bc:b0:
65:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:F7:9D:63:41:CC:D5:AA:39:4E:2F:2C:50:76:55:45:D1:CA:3E:BD
X509v3 Authority Key Identifier:
keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/xfedY0HM1ao5Ti8sUHZVRdHKPr0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.216.128.0/19
Signature Algorithm: sha256WithRSAEncryption
52:7a:2c:3a:09:62:7e:f3:f1:9b:bb:79:c3:ca:15:33:06:1a:
d0:69:88:bb:b6:08:7a:13:f0:ce:d1:3d:51:a9:bf:ed:c5:af:
32:56:df:32:9f:63:c1:b9:86:7b:58:53:b7:b8:07:e9:18:74:
dc:a4:10:9b:5c:1e:c6:ea:dd:35:be:d5:78:cf:ea:4d:49:d9:
d1:76:90:11:19:68:c3:70:6c:0a:41:56:e5:63:35:9a:bc:66:
15:b5:d6:a6:57:3c:78:df:67:eb:be:4c:b2:ea:f9:83:06:e2:
0f:64:db:50:56:6a:6d:16:d9:0a:8b:5b:fe:29:2f:ee:4e:79:
12:5f:74:d7:74:b2:da:03:cb:4e:33:d2:e7:db:34:76:6f:34:
be:84:2e:17:a3:a8:d5:f8:b3:18:c1:54:db:9a:33:9e:b1:7b:
6c:9b:7a:27:cd:c3:a4:e8:7c:1a:03:75:c1:81:34:86:f6:56:
05:05:71:34:62:f5:3b:80:30:59:a7:6a:48:cd:72:29:9b:9c:
85:2c:3d:39:b2:e6:ec:3c:46:8f:ac:31:44:3b:e7:68:ac:eb:
c5:c4:af:09:2a:cd:22:3c:9a:49:61:dc:67:08:7b:4b:74:3a:
81:ed:85:c2:e3:ad:6b:4a:14:05:bd:4a:46:52:15:88:8e:28:
1e:47:5f:59
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:39 2024 by rpki-client on console-ams.rpki-client.org