Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/21116/iGbX6R969W5bXBew-Q670raTUFU.roa
File: iGbX6R969W5bXBew-Q670raTUFU.roa (raw, json)
Hash identifier: 5CMxCmTh+MzONfcxdFhrHv1Jm5LBz3VPqwzqW0TJamc=
Subject key identifier: 88:66:D7:E9:1F:7A:F5:6E:5B:5C:17:B0:F9:0E:BB:D2:B6:93:50:55
Certificate issuer: /CN=85FB862022BBE5CC40462FBFD8B6BB81135D65FD
Certificate serial: 20
Authority key identifier: 85:FB:86:20:22:BB:E5:CC:40:46:2F:BF:D8:B6:BB:81:13:5D:65:FD
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hfuGICK75cxARi-_2La7gRNdZf0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21116/iGbX6R969W5bXBew-Q670raTUFU.roa
Signing time: Thu 01 Sep 2022 01:28:53 +0000
ROA not before: Thu 01 Sep 2022 01:28:53 +0000
ROA not after: Tue 15 Aug 2023 01:30:03 +0000
asID: 24296
IP address blocks: 154.34.0.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32 (0x20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85FB862022BBE5CC40462FBFD8B6BB81135D65FD
Validity
Not Before: Sep 1 01:28:53 2022 GMT
Not After : Aug 15 01:30:03 2023 GMT
Subject: CN=8866D7E91F7AF56E5B5C17B0F90EBBD2B6935055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b9:36:f6:56:ae:ed:d8:74:e0:ca:00:f7:71:
e2:6d:84:cc:35:03:4b:a4:33:4b:34:9a:16:59:7f:
a5:2a:32:24:95:00:16:e2:48:51:52:41:28:0b:c9:
7c:5e:ae:86:0b:49:94:de:63:ad:a2:db:d9:73:bd:
af:43:61:7f:14:2f:4a:48:7a:36:02:71:b7:91:58:
45:df:9c:4e:c3:ee:9a:67:09:a1:90:24:b5:e2:f6:
9b:0c:19:20:61:47:fc:fd:fb:89:0c:df:a6:f7:7e:
77:3a:97:71:20:e8:8e:dc:57:5b:7f:6b:67:4a:bf:
d5:19:aa:f5:7e:b1:a1:70:b5:15:9d:d4:8c:a3:5f:
e8:09:f7:f3:0b:44:66:50:dd:5e:98:0a:0d:b2:e0:
d1:7d:a7:64:28:9a:b7:c0:4e:52:c4:e9:ac:20:d8:
ff:bf:7f:30:08:57:69:63:1b:5e:d2:d0:7a:a5:5f:
6e:07:78:22:35:65:e8:37:66:02:e3:a5:a3:ab:3d:
09:02:bd:c4:54:76:f2:4b:6f:c4:b3:90:0f:28:34:
cf:59:b9:d3:b2:24:dc:c4:78:0b:d3:57:ba:02:31:
39:f7:a0:2d:3c:67:a4:0f:22:5f:bd:55:db:e1:9f:
d4:64:05:76:ea:3c:7a:ef:eb:5a:58:be:77:fa:a7:
ba:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:66:D7:E9:1F:7A:F5:6E:5B:5C:17:B0:F9:0E:BB:D2:B6:93:50:55
X509v3 Authority Key Identifier:
keyid:85:FB:86:20:22:BB:E5:CC:40:46:2F:BF:D8:B6:BB:81:13:5D:65:FD
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21116/hfuGICK75cxARi-_2La7gRNdZf0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hfuGICK75cxARi-_2La7gRNdZf0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21116/iGbX6R969W5bXBew-Q670raTUFU.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.34.0.0/18
Signature Algorithm: sha256WithRSAEncryption
e4:15:76:91:63:ab:70:22:c2:da:16:cf:18:54:eb:96:94:7d:
2f:ec:d9:34:28:21:c2:3e:16:c6:34:fc:f2:17:72:10:2c:2c:
56:9b:c3:a4:1e:23:55:c2:1c:11:2b:ba:dc:3f:41:0a:38:ba:
9a:36:ba:86:87:6e:05:bf:5d:97:a2:23:b3:bd:ab:4d:b5:3d:
04:17:24:96:f7:3d:d0:64:b4:04:3c:4b:9b:a9:20:38:65:39:
b5:09:a1:c4:0f:9d:73:28:2e:04:38:59:e5:c2:3d:86:85:86:
ae:c5:72:68:47:6a:bd:07:2d:53:0d:6e:a8:98:a1:d7:12:27:
05:f2:0f:d4:89:d6:ca:a4:75:7f:95:86:f1:80:11:78:37:6c:
d0:a6:70:7f:36:bb:90:a1:d4:66:95:c9:ce:43:d3:cc:1d:cb:
3f:8e:c8:72:6d:dc:e4:a1:72:f4:b8:f0:a3:8e:ac:1b:2e:24:
48:9b:07:34:f2:38:ee:14:46:8b:60:7d:aa:95:db:5b:63:42:
c0:71:2a:33:12:e8:b9:57:9f:a2:28:32:e8:7c:f8:e1:0d:9d:
5a:bc:4e:ea:b7:5f:a0:59:21:7a:74:1b:3b:55:42:e8:97:1b:
e8:dd:aa:f4:71:1b:90:36:d7:18:f2:11:4e:40:5d:0d:d9:71:
68:9d:d9:33
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:56 2024 by rpki-client on console-ams.rpki-client.org