Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20183/e_WdCw0fyYkj5Wdw3LC5q9sv6pE.roa
File: e_WdCw0fyYkj5Wdw3LC5q9sv6pE.roa (raw, json)
Hash identifier: DR61kT5IHUoZJXpAXsHR6lkjZaioTCDJVWyW8QJpMwY=
Subject key identifier: 7B:F5:9D:0B:0D:1F:C9:89:23:E5:67:70:DC:B0:B9:AB:DB:2F:EA:91
Certificate issuer: /CN=1606BEB137B88DBBEEBA7851A0A8F8D7D18294AF
Certificate serial: 0156
Authority key identifier: 16:06:BE:B1:37:B8:8D:BB:EE:BA:78:51:A0:A8:F8:D7:D1:82:94:AF
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fga-sTe4jbvuunhRoKj419GClK8.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20183/e_WdCw0fyYkj5Wdw3LC5q9sv6pE.roa
Signing time: Wed 15 Feb 2023 02:28:33 +0000
ROA not before: Wed 15 Feb 2023 02:28:33 +0000
ROA not after: Thu 15 Feb 2024 01:30:03 +0000
asID: 146979
IP address blocks: 202.236.90.3/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 342 (0x156)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1606BEB137B88DBBEEBA7851A0A8F8D7D18294AF
Validity
Not Before: Feb 15 02:28:33 2023 GMT
Not After : Feb 15 01:30:03 2024 GMT
Subject: CN=7BF59D0B0D1FC98923E56770DCB0B9ABDB2FEA91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1d:65:35:bf:e5:0e:10:cb:bd:3f:02:b8:10:
3e:92:71:46:9d:3e:72:ad:32:a8:fe:1a:8c:a2:93:
cf:2b:7b:de:b0:aa:8b:91:df:05:9a:8e:81:ab:74:
94:df:78:d4:bb:3e:c9:07:c7:63:80:73:07:1e:94:
e8:9c:49:2c:66:a2:fe:b1:81:07:0c:dd:71:7c:56:
60:0b:df:32:21:61:a6:53:0b:46:8c:a9:ee:5d:d3:
32:27:1f:85:d3:8f:19:0a:fd:d2:67:51:a5:b2:53:
4b:e0:70:7a:52:d7:ae:42:81:5e:35:03:58:9a:58:
f8:f2:f3:0c:08:d4:64:fd:d1:a0:2f:88:1a:51:0c:
c7:7d:18:09:21:93:7e:13:76:2a:0d:62:c1:6c:f3:
37:40:8a:16:35:44:dd:39:83:7c:2f:cc:08:8c:b3:
ca:05:ae:73:6e:92:77:d3:ed:d1:de:4e:39:af:bf:
0a:cd:a0:82:e0:87:df:9d:83:5d:6e:e1:de:0e:7a:
1b:41:60:9d:86:8a:82:20:e9:6c:8a:36:cd:7e:be:
cb:fc:75:bc:60:a7:03:ef:17:31:d3:ee:44:1e:86:
f9:f4:6c:35:65:20:8a:91:65:2f:dc:c6:77:c3:7e:
6a:41:c3:30:6b:e6:0e:d3:22:e4:eb:83:a1:82:17:
eb:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:F5:9D:0B:0D:1F:C9:89:23:E5:67:70:DC:B0:B9:AB:DB:2F:EA:91
X509v3 Authority Key Identifier:
keyid:16:06:BE:B1:37:B8:8D:BB:EE:BA:78:51:A0:A8:F8:D7:D1:82:94:AF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20183/Fga-sTe4jbvuunhRoKj419GClK8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fga-sTe4jbvuunhRoKj419GClK8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20183/e_WdCw0fyYkj5Wdw3LC5q9sv6pE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.236.90.3/32
Signature Algorithm: sha256WithRSAEncryption
59:1b:fa:ec:95:3f:46:8b:99:da:c7:af:51:23:92:34:08:87:
5e:53:12:8f:05:b4:66:8b:a1:10:91:ee:4d:9a:4e:62:7c:05:
05:f1:cd:97:bb:90:35:bc:ff:5e:ad:5f:ac:5d:27:df:1c:82:
6d:39:06:25:a7:b4:d9:3c:a8:fa:77:86:3c:a1:5c:da:de:0f:
06:f7:88:3e:ca:e8:46:43:d7:03:68:76:9f:db:3f:6b:74:6d:
8a:aa:db:7e:0e:74:d6:ca:0a:ec:f2:12:17:c6:8e:06:6a:0a:
95:1f:32:91:22:ac:cf:9f:c3:43:f1:77:55:8b:f4:3d:f3:79:
76:53:cc:8b:96:2f:9e:a8:b4:1e:14:52:52:28:96:0b:4d:27:
0b:0a:19:c6:c9:61:b7:1a:c2:93:74:b5:11:4d:3d:19:50:52:
46:72:f4:ee:9e:df:4f:e1:52:78:a3:68:75:60:ad:5a:8b:8c:
1e:51:c9:9d:12:a3:a2:b6:11:e1:d0:20:96:63:10:62:b5:eb:
ca:91:03:ac:51:11:cf:29:54:72:bc:89:6e:7e:26:5b:27:14:
c4:99:fc:a4:84:2f:93:76:68:33:d9:7d:fc:58:d1:48:39:2a:
52:57:e5:94:00:65:6e:57:92:bf:1b:e7:7a:87:06:27:e1:cb:
ba:22:53:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:48 2024 by rpki-client on console-fra.rpki-client.org