Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30211/xSS_4cahymT1im3nfREW_n13aMM.roa
File: xSS_4cahymT1im3nfREW_n13aMM.roa (raw, json)
Hash identifier: mLk15+0cD0PlYACqhZc3V0uwp0S6u4SVkC+iqOf6nyI=
Subject key identifier: C5:24:BF:E1:C6:A1:CA:64:F5:8A:6D:E7:7D:11:16:FE:7D:77:68:C3
Certificate issuer: /CN=1467AF2FF272208CF75453CDC0122C4713D2CAB5
Certificate serial: 15
Authority key identifier: 14:67:AF:2F:F2:72:20:8C:F7:54:53:CD:C0:12:2C:47:13:D2:CA:B5
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/FGevL_JyIIz3VFPNwBIsRxPSyrU.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30211/xSS_4cahymT1im3nfREW_n13aMM.roa
Signing time: Wed 01 Feb 2023 01:30:21 +0000
ROA not before: Wed 01 Feb 2023 01:30:21 +0000
ROA not after: Mon 15 Jan 2024 01:30:02 +0000
asID: 38648
IP address blocks: 2402:3b00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21 (0x15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1467AF2FF272208CF75453CDC0122C4713D2CAB5
Validity
Not Before: Feb 1 01:30:21 2023 GMT
Not After : Jan 15 01:30:02 2024 GMT
Subject: CN=C524BFE1C6A1CA64F58A6DE77D1116FE7D7768C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:10:f6:3b:f2:fb:b7:29:bc:83:63:af:90:40:
5a:96:df:d3:e0:1b:3e:52:db:8c:9e:88:fe:71:b7:
42:8a:2b:e3:2d:f8:ee:77:4f:bc:06:0c:24:dd:04:
fe:a5:e2:d8:f0:fc:fb:5e:85:21:b1:54:8f:f1:76:
e5:e2:6c:d2:c1:78:c9:45:63:6a:24:64:1b:a1:c0:
5a:51:79:7b:d8:82:a0:29:fc:5f:f0:55:3c:a2:f6:
54:df:9f:d5:ee:1e:64:20:5e:a4:8a:be:47:11:90:
2f:b7:b7:1d:42:a8:73:ef:cb:00:9a:e2:90:6e:b8:
43:6e:d7:52:a3:ff:63:f5:c5:ca:13:0e:d7:f5:d1:
fb:9f:fe:0b:9a:6d:7a:ec:4e:43:33:e4:ce:9e:5a:
fe:8f:eb:30:86:b5:a8:ea:42:db:36:e1:9b:07:37:
ec:7b:bf:3d:d9:25:b7:96:11:da:b5:2c:bf:c9:7b:
43:12:de:fc:71:f1:46:99:2c:a7:4a:3a:15:9f:49:
db:30:f2:49:cb:d8:c7:f2:69:4e:08:d2:c1:15:31:
d8:d0:ae:ae:bf:68:41:c0:d4:3e:fc:8d:c9:92:b5:
fb:f0:5e:8e:cd:a9:d1:a2:e2:95:c3:d1:eb:ca:c8:
a2:e9:c7:75:69:f8:cc:1b:ec:61:7c:ac:45:35:dd:
f7:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:24:BF:E1:C6:A1:CA:64:F5:8A:6D:E7:7D:11:16:FE:7D:77:68:C3
X509v3 Authority Key Identifier:
keyid:14:67:AF:2F:F2:72:20:8C:F7:54:53:CD:C0:12:2C:47:13:D2:CA:B5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30211/FGevL_JyIIz3VFPNwBIsRxPSyrU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/FGevL_JyIIz3VFPNwBIsRxPSyrU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30211/xSS_4cahymT1im3nfREW_n13aMM.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:3b00::/32
Signature Algorithm: sha256WithRSAEncryption
04:e5:ca:a4:94:63:e3:e7:77:84:dd:fa:82:4a:d8:13:d9:39:
35:22:3b:b0:14:49:32:10:d3:de:5f:21:f0:49:48:29:82:c8:
bd:d9:b4:a0:50:01:3b:e0:a3:f2:2f:c8:cc:b0:3f:8a:00:30:
d9:c0:05:17:01:3d:d6:62:4f:c5:0c:53:f2:ae:ae:e5:56:93:
6a:d5:0e:22:61:56:45:36:02:49:21:3d:6d:c6:06:99:78:18:
22:8d:89:e8:fd:31:87:da:ef:01:1b:3b:4b:7d:08:da:94:fe:
9b:c9:28:c1:24:b0:df:c1:49:50:72:9c:97:1a:1b:c3:e2:8f:
be:b1:1a:e1:a5:db:db:b2:2e:19:22:9f:9d:a1:fb:f8:29:16:
65:b4:0e:cf:78:e7:c3:68:c1:6e:47:dc:cd:a9:96:dd:46:4d:
d2:68:6f:3e:74:4e:10:09:0b:22:c6:1e:c8:21:08:fa:6d:56:
d1:22:0f:6c:63:9b:e8:90:03:55:ea:2e:dd:5f:04:f5:1e:00:
8d:a8:ba:c5:20:b2:74:42:33:0c:0d:64:4c:27:bd:42:b5:91:
3b:c1:70:02:79:34:ea:37:8d:4e:b8:8b:41:04:47:74:87:a0:
22:74:e6:8d:9e:35:14:70:04:05:36:7b:59:5f:03:83:9d:18:
f7:d0:64:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:50 2024 by rpki-client on console-fra.rpki-client.org