Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/2370/itSrrwjrxKK4DzaEEGhcqgTF_Og.roa
File: itSrrwjrxKK4DzaEEGhcqgTF_Og.roa (raw, json)
Hash identifier: 8+/+3MTPhEhWJXp00fiRAPEjxjSCCMoY0Frb1rA4md8=
Subject key identifier: 8A:D4:AB:AF:08:EB:C4:A2:B8:0F:36:84:10:68:5C:AA:04:C5:FC:E8
Certificate issuer: /CN=00711F2DD7667CFB08804BE8FA284A49E613EDC4
Certificate serial: 22
Authority key identifier: 00:71:1F:2D:D7:66:7C:FB:08:80:4B:E8:FA:28:4A:49:E6:13:ED:C4
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/AHEfLddmfPsIgEvo-ihKSeYT7cQ.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2370/itSrrwjrxKK4DzaEEGhcqgTF_Og.roa
Signing time: Wed 01 Feb 2023 01:29:53 +0000
ROA not before: Wed 01 Feb 2023 01:29:53 +0000
ROA not after: Mon 15 Jan 2024 01:30:02 +0000
asID: 55396
IP address blocks: 192.50.152.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34 (0x22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00711F2DD7667CFB08804BE8FA284A49E613EDC4
Validity
Not Before: Feb 1 01:29:53 2023 GMT
Not After : Jan 15 01:30:02 2024 GMT
Subject: CN=8AD4ABAF08EBC4A2B80F368410685CAA04C5FCE8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:9e:36:e6:8b:c9:54:3a:3f:d9:92:e3:ad:83:
68:d6:ba:b4:13:ec:41:f0:57:85:48:f7:a7:70:37:
96:1e:5c:a1:cc:50:63:6b:46:a7:08:da:4f:11:a9:
d0:52:e6:4c:0b:fd:e5:65:8b:95:ec:94:80:3e:a0:
64:06:a8:75:ec:de:bc:48:9c:29:14:bd:73:4c:38:
09:52:0d:49:05:e3:72:8e:a6:0d:ce:bb:46:bf:9f:
63:f1:17:22:5c:59:b3:2a:ce:ba:e0:07:72:c5:f3:
33:fe:2b:4b:c1:86:66:0f:76:7a:b4:dc:26:a4:33:
8e:f6:65:62:fb:22:6c:9c:30:b5:b9:23:59:06:3b:
7c:93:ad:49:dd:84:ab:d4:12:1d:41:95:05:e4:3b:
dd:2e:3d:00:8b:7a:76:91:e2:da:6a:35:1f:ad:52:
f1:fe:e9:d3:dd:93:f4:82:bd:f7:90:63:a4:dd:a0:
4b:58:dc:2e:dd:98:d6:7f:a2:a2:ea:86:91:a5:32:
21:e5:1a:6a:8d:ea:d8:68:ef:6e:ba:4f:f8:cd:01:
4b:20:9b:60:ed:62:e3:e7:ae:88:32:46:a6:da:8e:
2e:f3:2f:37:03:a9:ff:e4:2d:fb:8d:0e:71:b4:8c:
b8:fb:f4:7a:8b:9f:25:08:58:f6:c1:b2:99:6b:9f:
64:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:D4:AB:AF:08:EB:C4:A2:B8:0F:36:84:10:68:5C:AA:04:C5:FC:E8
X509v3 Authority Key Identifier:
keyid:00:71:1F:2D:D7:66:7C:FB:08:80:4B:E8:FA:28:4A:49:E6:13:ED:C4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2370/AHEfLddmfPsIgEvo-ihKSeYT7cQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/AHEfLddmfPsIgEvo-ihKSeYT7cQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2370/itSrrwjrxKK4DzaEEGhcqgTF_Og.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.50.152.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:91:d2:ff:81:de:94:66:6c:13:04:b7:6f:fd:f9:0d:2f:44:
12:5f:0d:d9:92:09:ea:dc:1b:df:bf:bc:7d:63:0d:d4:7b:d9:
fc:ba:90:52:db:4e:f6:f7:ea:48:de:98:f7:ce:47:04:9f:c0:
83:8e:bf:40:fc:d6:c3:84:c2:08:c1:2a:5e:cd:e0:72:50:77:
1f:06:a4:45:65:11:e1:0f:45:bc:6a:97:18:89:c4:53:d5:20:
68:86:f4:fa:53:e5:e9:3f:6a:6b:08:f4:13:36:c6:ea:7b:bc:
a3:d9:c1:35:09:82:84:16:00:f8:1d:e3:42:34:68:f8:11:81:
90:1c:3a:d2:70:cd:f6:3e:42:75:da:1a:56:f4:60:8d:5a:87:
66:e6:8a:2c:dc:c7:d7:a1:f2:a5:ae:40:36:d2:93:16:7e:6d:
de:dc:5f:e0:79:d1:ee:e7:8c:98:1e:1d:f0:8c:28:d5:eb:cf:
15:ef:10:05:a1:2c:de:c1:29:b2:1e:bc:bc:90:0e:43:f9:47:
60:42:46:46:bc:ee:b5:53:04:9b:66:67:1b:ee:39:6d:e6:91:
fb:c6:b2:d3:b8:b5:c2:6b:ab:70:58:01:52:ba:a1:0b:bb:c1:
67:89:5f:8d:fb:3e:00:41:a5:f7:fb:eb:eb:39:5c:09:30:be:
17:6b:04:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:56 2024 by rpki-client on console-ams.rpki-client.org