Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30156/i0H4snWl6W4f8oSzwBPgR1L-7Vw.roa
File: i0H4snWl6W4f8oSzwBPgR1L-7Vw.roa (raw, json)
Hash identifier: 6Y7Egg6zoB5oUFxMgDewGEJl+4/kJMjoDm0Hni1/37c=
Subject key identifier: 8B:41:F8:B2:75:A5:E9:6E:1F:F2:84:B3:C0:13:E0:47:52:FE:ED:5C
Certificate issuer: /CN=66BB158F422A7BC0ADAE187EE4858F3A1DA91312
Certificate serial: 3F
Authority key identifier: 66:BB:15:8F:42:2A:7B:C0:AD:AE:18:7E:E4:85:8F:3A:1D:A9:13:12
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZrsVj0Iqe8Ctrhh-5IWPOh2pExI.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30156/i0H4snWl6W4f8oSzwBPgR1L-7Vw.roa
Signing time: Thu 13 Apr 2023 09:52:44 +0000
ROA not before: Thu 13 Apr 2023 09:52:44 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 55392
IP address blocks: 2409:250::/28 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63 (0x3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66BB158F422A7BC0ADAE187EE4858F3A1DA91312
Validity
Not Before: Apr 13 09:52:44 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=8B41F8B275A5E96E1FF284B3C013E04752FEED5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:1f:7d:a0:8c:97:04:58:7b:ea:94:d8:27:23:
8e:db:1f:74:63:d4:8f:6a:1b:c2:8a:c0:76:16:74:
d7:22:af:dd:c2:af:46:5d:2e:96:09:cc:30:1c:26:
56:de:3b:98:45:6c:99:86:85:e4:91:72:42:4f:a7:
3c:99:b1:e5:00:19:14:6b:4f:57:63:e3:10:bf:2d:
66:e8:e1:e7:74:77:0d:e4:9f:3d:be:4b:25:0a:90:
4a:0a:bc:90:d9:b7:3c:d4:e8:69:85:2f:14:67:ed:
12:39:96:09:52:7d:55:d3:d1:79:f2:38:8b:cc:a4:
59:67:2f:56:ff:1a:c0:60:a7:dd:48:9f:1b:59:c0:
4c:40:61:70:dd:5e:3f:1a:dd:6c:6a:40:cc:49:22:
76:e1:e8:96:48:83:b1:18:a7:cd:01:fd:10:a9:12:
b2:4c:30:a6:99:69:92:e6:af:11:4f:dc:0d:56:22:
d5:f9:6c:9a:c0:eb:fe:6f:b2:b8:00:2e:da:33:9e:
b5:3e:3c:8d:5a:67:ad:18:b9:f8:72:7b:44:0e:56:
66:b0:98:70:b1:61:cb:28:4b:e1:a5:6c:ca:a9:19:
91:1c:5b:e7:29:52:8d:9b:55:67:a3:1d:48:be:0b:
3b:85:e6:5f:65:da:3a:71:47:27:92:0b:63:43:3e:
61:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:41:F8:B2:75:A5:E9:6E:1F:F2:84:B3:C0:13:E0:47:52:FE:ED:5C
X509v3 Authority Key Identifier:
keyid:66:BB:15:8F:42:2A:7B:C0:AD:AE:18:7E:E4:85:8F:3A:1D:A9:13:12
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30156/ZrsVj0Iqe8Ctrhh-5IWPOh2pExI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZrsVj0Iqe8Ctrhh-5IWPOh2pExI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30156/i0H4snWl6W4f8oSzwBPgR1L-7Vw.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2409:250::/28
Signature Algorithm: sha256WithRSAEncryption
75:5a:13:a3:13:b6:fd:45:57:0f:ed:f6:ba:13:b4:11:a6:58:
fc:a2:a4:dd:47:24:05:4f:0f:20:59:3b:1e:bd:da:53:aa:e9:
d7:87:b9:de:97:47:63:de:d8:71:ad:2c:6f:31:b0:57:7d:81:
8d:87:c0:f5:9e:bf:cf:54:af:0b:f8:92:54:5e:cc:2a:ec:0b:
61:56:de:b5:72:8e:23:69:46:99:5b:a0:2b:dc:84:26:52:9c:
89:1a:3c:f3:e9:dd:cc:ea:e6:ac:f3:a6:ed:21:f8:fb:7a:ad:
4a:63:9f:7d:d7:90:ba:2f:7c:c2:b4:67:48:75:d0:84:f2:d9:
c3:15:db:23:da:eb:da:63:b6:ca:6e:76:ba:00:5d:70:ac:35:
be:70:5d:df:fb:94:ee:9b:73:40:b3:00:8e:f3:2c:e7:aa:10:
b1:58:ce:a6:61:4c:39:30:51:43:ac:25:90:88:5a:45:50:df:
fb:5b:59:58:c7:e3:49:2d:9e:23:49:01:30:9d:29:af:0a:0b:
23:57:60:b1:01:5b:ea:67:37:fe:fe:4b:a7:71:6f:1a:af:17:
f2:c9:a3:3f:98:f1:ce:f6:b4:0d:1d:51:30:27:0c:91:19:b9:
d0:77:00:eb:6c:1d:7d:a7:33:9b:f0:95:bc:a7:ef:7c:3a:0d:
e7:28:e1:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:00 2024 by rpki-client on console-ams.rpki-client.org