Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/1mbZRpM3p3j56B9MJoe5Y05R0CA.roa
File: 1mbZRpM3p3j56B9MJoe5Y05R0CA.roa (raw, json)
Hash identifier: jiK5lXqMGH+WDnPuZ1u44mAgOQ/W2rTKmy/Upknuz+Q=
Subject key identifier: D6:66:D9:46:93:37:A7:78:F9:E8:1F:4C:26:87:B9:63:4E:51:D0:20
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 011C
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/1mbZRpM3p3j56B9MJoe5Y05R0CA.roa
Signing time: Wed 24 May 2023 16:30:16 +0000
ROA not before: Wed 24 May 2023 16:30:16 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.79.68.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 284 (0x11c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:30:16 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=D666D9469337A778F9E81F4C2687B9634E51D020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:8e:e2:09:f5:02:24:c7:95:e7:cf:fa:14:5a:
d1:de:35:7e:73:33:57:25:29:0e:fd:39:8d:db:d8:
1f:eb:da:29:25:39:0b:7d:5e:01:34:d1:2c:64:25:
f2:26:63:fd:ff:4d:39:13:c6:07:48:e3:d0:e1:c5:
8e:7d:42:65:f4:8a:9a:fd:15:06:a8:5b:b3:2f:fa:
7f:be:9f:65:2e:25:ae:16:df:e0:0e:04:6b:44:e9:
70:66:2a:5d:ce:1d:5c:18:99:19:a8:d0:7b:e0:99:
eb:88:27:d6:25:fa:9f:fb:9f:b5:3d:39:81:08:09:
9d:46:fa:2f:35:7a:da:45:e2:32:08:d2:e7:6e:8a:
c8:3c:c5:9d:8a:d9:e4:7e:19:e9:c5:0c:82:35:92:
9c:80:08:29:29:7e:c6:cf:30:52:18:10:e8:37:3c:
d1:14:97:be:c6:31:21:8a:e5:3d:c8:b1:f2:76:92:
6d:02:10:e1:b4:bb:ec:e8:f2:52:15:1e:e3:9d:18:
47:62:60:64:d6:cb:f4:d7:cb:92:83:ae:f5:a7:c1:
33:c3:c5:08:09:d3:3c:78:e9:61:7c:fd:c1:30:81:
dd:9c:c3:69:1e:65:33:80:47:38:c5:57:58:c0:0f:
7b:66:d4:43:76:64:97:b9:c2:76:36:3b:a6:9a:06:
fe:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:66:D9:46:93:37:A7:78:F9:E8:1F:4C:26:87:B9:63:4E:51:D0:20
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/1mbZRpM3p3j56B9MJoe5Y05R0CA.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.79.68.0/23
Signature Algorithm: sha256WithRSAEncryption
df:67:90:b8:62:5d:0b:07:a8:d7:c5:9e:6f:e8:a0:e2:a3:27:
1b:d1:9e:3f:23:90:d9:74:13:61:b8:a5:5b:05:20:7d:b3:74:
cd:09:03:72:55:f5:c1:0a:d8:fe:40:de:0b:6e:8e:46:8c:1b:
1d:fe:e8:97:d2:44:08:e4:4c:5b:1b:49:cc:6c:77:a9:bd:a6:
6d:15:92:a4:69:4b:10:1b:d9:86:cf:33:1e:aa:8e:e3:1a:6a:
95:4b:57:54:c5:9d:93:e2:ea:43:d5:16:e8:76:92:ae:fa:25:
cb:a2:7f:7d:8e:65:85:0a:42:5b:76:27:7b:43:17:bc:b7:5a:
a0:51:19:2e:d7:c2:ec:99:17:97:bd:7c:bd:01:e7:07:0a:f3:
f9:ed:ae:c3:c0:76:6e:aa:84:3d:15:12:15:50:b2:4e:8b:dc:
be:88:34:c7:78:df:a6:78:16:79:4f:51:68:8d:b3:df:95:78:
fb:73:cb:90:e5:d8:fd:46:15:ac:35:d7:4d:3e:ae:33:0b:85:
38:d7:fd:a5:13:7e:68:34:92:4a:2e:88:ba:a4:b8:82:2b:af:
92:e9:6b:d7:dc:79:fe:ec:c1:1f:97:82:1b:76:4a:67:5b:8a:
59:cb:28:2b:5f:ce:c4:13:1c:b9:b3:96:56:11:c8:10:f7:d3:
5d:74:86:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:00 2024 by rpki-client on console-ams.rpki-client.org