Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20183/yhLsrI4iXOi7ohJnS0hG-9aOQZ0.roa
File: yhLsrI4iXOi7ohJnS0hG-9aOQZ0.roa (raw, json)
Hash identifier: ceaVbP7iP8+IZ5xv5VCcB1Ye3LN08vnZrzX1DCbKIzE=
Subject key identifier: CA:12:EC:AC:8E:22:5C:E8:BB:A2:12:67:4B:48:46:FB:D6:8E:41:9D
Certificate issuer: /CN=1606BEB137B88DBBEEBA7851A0A8F8D7D18294AF
Certificate serial: 0153
Authority key identifier: 16:06:BE:B1:37:B8:8D:BB:EE:BA:78:51:A0:A8:F8:D7:D1:82:94:AF
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fga-sTe4jbvuunhRoKj419GClK8.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20183/yhLsrI4iXOi7ohJnS0hG-9aOQZ0.roa
Signing time: Wed 15 Feb 2023 02:28:31 +0000
ROA not before: Wed 15 Feb 2023 02:28:31 +0000
ROA not after: Thu 15 Feb 2024 01:30:03 +0000
asID: 146979
IP address blocks: 202.236.90.9/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 339 (0x153)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1606BEB137B88DBBEEBA7851A0A8F8D7D18294AF
Validity
Not Before: Feb 15 02:28:31 2023 GMT
Not After : Feb 15 01:30:03 2024 GMT
Subject: CN=CA12ECAC8E225CE8BBA212674B4846FBD68E419D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8c:20:b9:73:cb:12:fc:3a:53:23:02:19:5d:
41:98:5a:41:a6:41:59:e7:20:ec:c6:c8:b3:bf:03:
e5:0a:57:fa:b9:ce:64:fd:93:ed:c3:53:3b:e6:2f:
a9:ee:77:25:e7:ba:d1:f0:bd:92:a6:c6:f1:c9:31:
48:69:52:1a:b2:38:71:b0:59:ea:e7:5b:60:7f:b6:
e2:80:9f:56:8f:84:e8:fd:43:60:6f:3e:fd:6f:7f:
2b:98:44:cf:c7:c1:00:e7:09:98:55:e6:b5:c0:75:
16:3c:0c:df:0e:d9:49:e8:42:b2:fa:bb:78:14:45:
ab:64:e7:f2:7a:f4:d2:d8:71:69:00:d6:49:85:7c:
b6:0c:64:c3:43:61:67:85:b0:4d:e0:a8:35:6c:cf:
48:7a:fe:fe:c9:2b:69:05:36:81:82:36:c8:85:b7:
bd:98:69:1e:ec:75:a4:4d:f6:44:32:32:a7:f3:52:
c7:cc:23:db:f7:de:d0:71:f3:86:ce:63:cd:1e:f2:
9e:55:be:75:11:11:66:a7:d6:3f:02:e2:cc:03:35:
f8:8b:2c:d3:51:fd:af:fd:e3:16:ea:b1:b7:98:a9:
87:8e:55:1b:e6:29:61:ab:0a:c0:2e:f3:16:4c:95:
2d:f7:c1:0b:f7:bd:98:87:30:8f:d7:52:28:fe:e2:
ae:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:12:EC:AC:8E:22:5C:E8:BB:A2:12:67:4B:48:46:FB:D6:8E:41:9D
X509v3 Authority Key Identifier:
keyid:16:06:BE:B1:37:B8:8D:BB:EE:BA:78:51:A0:A8:F8:D7:D1:82:94:AF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20183/Fga-sTe4jbvuunhRoKj419GClK8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fga-sTe4jbvuunhRoKj419GClK8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20183/yhLsrI4iXOi7ohJnS0hG-9aOQZ0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.236.90.9/32
Signature Algorithm: sha256WithRSAEncryption
99:33:7f:44:b9:40:91:d0:1a:5a:87:cb:05:fb:3e:c8:dc:cd:
9e:fa:87:47:bf:f2:3b:fa:9b:2f:08:b8:d8:ee:4f:a8:dc:9a:
98:a7:19:29:f4:ce:31:02:95:f4:7a:fa:01:65:48:0d:c9:c5:
cf:5f:57:96:e0:d2:b8:90:c9:33:67:8e:bc:c9:ab:b2:bd:fd:
ed:fd:9e:d7:aa:60:02:84:55:9d:3c:8a:19:db:9d:49:45:dd:
9b:76:3f:40:57:d7:d2:cf:a7:a5:39:ee:ed:30:7a:ec:07:5d:
62:72:cc:35:17:e1:6c:1c:b5:7e:50:d3:eb:dd:f2:9b:ff:6b:
a0:da:8c:5e:73:cd:05:c8:76:82:85:6b:cc:b8:ca:c5:07:f2:
16:d5:89:d8:c6:0a:f6:ff:5a:3a:89:f9:52:92:b9:43:22:68:
9a:bb:52:c7:69:ed:20:36:34:88:a5:95:3c:80:6a:43:f9:c7:
78:80:b3:b2:38:78:40:62:71:da:8e:7a:dd:89:b7:b0:41:24:
ac:29:20:98:8b:e5:b0:15:df:7b:d4:f6:fa:8e:4f:ad:eb:20:
43:42:72:40:52:d0:22:46:c1:21:16:87:bf:50:de:51:8f:6b:
44:9d:eb:4f:a4:32:63:c4:4a:e5:fb:68:e9:c5:fe:a8:c5:28:
27:49:19:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:56 2024 by rpki-client on console-ams.rpki-client.org