Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30315/hfCMQ1-0ikSbiY3OndsXpl6fMGM.roa
File: hfCMQ1-0ikSbiY3OndsXpl6fMGM.roa (raw, json)
Hash identifier: U5Tfzs8vD7mAb8dltkvT8zX2lIOVejEdgbMsjHH1qeU=
Subject key identifier: 85:F0:8C:43:5F:B4:8A:44:9B:89:8D:CE:9D:DB:17:A6:5E:9F:30:63
Certificate issuer: /CN=98035C1EB61ED8EEF153D8F32BDA13BDAD742EC5
Certificate serial: 02
Authority key identifier: 98:03:5C:1E:B6:1E:D8:EE:F1:53:D8:F3:2B:DA:13:BD:AD:74:2E:C5
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mANcHrYe2O7xU9jzK9oTva10LsU.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30315/hfCMQ1-0ikSbiY3OndsXpl6fMGM.roa
Signing time: Wed 21 Sep 2022 08:44:37 +0000
ROA not before: Wed 21 Sep 2022 08:44:37 +0000
ROA not after: Thu 21 Sep 2023 08:38:03 +0000
asID: 10011
IP address blocks: 2402:2840::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98035C1EB61ED8EEF153D8F32BDA13BDAD742EC5
Validity
Not Before: Sep 21 08:44:37 2022 GMT
Not After : Sep 21 08:38:03 2023 GMT
Subject: CN=85F08C435FB48A449B898DCE9DDB17A65E9F3063
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:42:70:28:4f:52:36:0b:b4:97:bc:ff:0d:a3:
91:25:2d:6e:f4:1f:55:5b:df:1e:2e:d3:f4:a3:d9:
c5:9a:c3:6e:b5:70:cb:d2:7b:a9:58:3b:a4:d7:55:
83:05:17:0e:16:37:6b:c3:d3:f0:58:88:5e:bb:3b:
bb:9c:2c:7f:8a:0f:ac:52:ef:a6:b5:4c:d4:0f:10:
29:89:82:aa:59:c7:fb:96:26:bd:5a:00:4a:04:0a:
d3:8a:3e:f8:d9:63:0d:a9:29:20:56:a2:5b:3a:fa:
2c:68:86:eb:55:25:53:fa:8c:65:3c:4e:0f:8f:35:
35:ad:f8:ef:5e:32:76:ec:8d:78:f1:8d:b8:9c:ec:
2e:79:c3:c3:6a:d7:07:3e:bc:2b:79:f1:ea:cc:d3:
b9:c4:1c:c3:65:e4:42:ce:4e:0c:0d:f4:e5:85:57:
70:a8:02:b3:25:bd:91:89:e0:21:f0:92:a5:39:a9:
b3:60:65:8b:16:4c:96:67:88:ed:68:d6:77:a2:fe:
55:04:d3:65:8f:b6:4c:55:0e:f9:6e:5d:1c:8c:7c:
3a:df:02:05:ae:49:db:a9:d9:74:ee:b2:be:d9:f6:
e0:42:90:b3:77:ba:09:da:7d:4f:8d:59:10:b9:98:
43:4d:35:39:da:f8:e9:22:87:68:de:a0:77:42:82:
8c:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:F0:8C:43:5F:B4:8A:44:9B:89:8D:CE:9D:DB:17:A6:5E:9F:30:63
X509v3 Authority Key Identifier:
keyid:98:03:5C:1E:B6:1E:D8:EE:F1:53:D8:F3:2B:DA:13:BD:AD:74:2E:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30315/mANcHrYe2O7xU9jzK9oTva10LsU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mANcHrYe2O7xU9jzK9oTva10LsU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30315/hfCMQ1-0ikSbiY3OndsXpl6fMGM.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:2840::/32
Signature Algorithm: sha256WithRSAEncryption
44:b7:95:0d:20:1a:27:45:ed:1b:b0:e0:86:eb:17:84:23:04:
60:81:4f:32:7f:bd:31:fa:0b:a1:ab:f3:26:fa:e3:b5:d6:17:
25:bf:2c:c6:ee:64:27:6f:16:bf:66:6f:fc:d2:5e:ca:c0:af:
c6:a9:fb:6a:a8:b5:11:f3:4d:20:cc:48:bd:75:2f:db:1e:7d:
98:af:0c:86:8f:57:c9:90:d6:e9:a3:ed:16:b3:31:65:ec:26:
ad:d9:63:63:3c:87:87:d7:c5:40:e5:0b:d3:f6:ce:19:b9:71:
10:33:8a:c6:2c:ec:cd:e3:57:b0:3b:fe:38:35:50:c8:4b:cd:
25:ab:36:09:f6:fa:26:c6:02:34:83:87:a5:e6:40:42:b7:97:
43:2f:bf:04:05:0f:30:50:20:98:48:58:df:59:54:b6:9e:74:
c2:ac:df:d7:24:59:0c:fb:4b:3f:34:a1:3a:75:6a:fb:01:64:
a2:82:73:83:71:de:02:70:ee:29:ef:55:a2:e2:16:a7:f6:80:
fb:a3:ac:31:f9:54:a8:54:eb:e3:f1:f4:40:ed:52:34:06:2e:
6c:56:14:c2:af:01:7d:26:31:2b:38:58:16:4c:21:65:85:7a:
32:c9:66:55:49:ee:7f:96:fc:57:79:46:f2:9e:3b:d4:b4:5d:
54:48:e8:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:00 2024 by rpki-client on console-ams.rpki-client.org