Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/4hBNKgEABcuZQoKkPCsQuIcj86o.roa
File: 4hBNKgEABcuZQoKkPCsQuIcj86o.roa (raw, json)
Hash identifier: 6n1mKA9Bq7LGft1Ug04nxb1jfuCTzG/sRuf4Y4Altjw=
Subject key identifier: E2:10:4D:2A:01:00:05:CB:99:42:82:A4:3C:2B:10:B8:87:23:F3:AA
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 60
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4hBNKgEABcuZQoKkPCsQuIcj86o.roa
Signing time: Mon 27 Mar 2023 16:04:32 +0000
ROA not before: Mon 27 Mar 2023 16:04:32 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.75.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96 (0x60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 27 16:04:32 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=E2104D2A010005CB994282A43C2B10B88723F3AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:89:a0:8c:b4:f8:74:9c:3d:27:4a:8e:bf:66:
9d:88:32:9e:ef:40:12:07:44:80:2c:b5:2d:b4:f6:
33:86:d5:72:07:6c:9a:4b:b3:e3:07:00:4e:d1:34:
95:2e:74:15:30:9c:1a:ae:8b:40:6d:1e:28:c8:dc:
2a:2f:1b:81:24:88:ed:55:b8:10:63:56:67:1f:2a:
1e:70:1a:ea:28:6b:d5:78:a2:13:e3:e1:e3:76:57:
e1:f8:77:63:ff:e0:85:93:c1:e8:62:79:3b:9c:b7:
60:93:47:91:82:32:12:84:e9:51:2b:19:22:d3:3b:
49:99:4a:ae:81:35:56:64:15:41:ec:cd:ea:64:55:
23:19:57:b6:73:8e:84:bd:67:46:7c:aa:05:53:90:
b7:1d:24:67:db:91:89:ef:23:bc:ba:a0:2c:94:9b:
07:a5:12:a6:31:cf:f6:ec:64:cd:9c:da:55:ea:4e:
96:8e:44:ea:e8:e3:f4:64:da:5c:88:ae:72:f9:8d:
04:9c:a0:a1:b8:6b:3c:df:98:6a:54:87:ed:ad:cb:
c1:95:4e:33:72:5f:8f:7c:bc:60:fe:0a:fc:fc:d3:
ab:5b:56:a0:7f:a1:56:43:f5:fb:0c:3a:fe:8e:2d:
a1:88:b2:71:f3:bc:a6:e2:51:0a:7f:86:09:f5:22:
c6:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:10:4D:2A:01:00:05:CB:99:42:82:A4:3C:2B:10:B8:87:23:F3:AA
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4hBNKgEABcuZQoKkPCsQuIcj86o.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.75.1.0/24
Signature Algorithm: sha256WithRSAEncryption
20:d5:50:16:c2:1b:d1:e3:8a:38:ed:d0:7c:e4:64:ed:38:6b:
e2:d7:24:3f:8e:ee:08:9e:9f:7e:c2:e4:57:b4:06:0c:3d:01:
2f:9f:24:b6:e3:8a:e0:f9:40:85:5a:30:f9:1d:bf:ee:27:09:
2c:67:cd:77:ba:38:3a:14:8e:13:a7:6e:71:0a:6f:e8:9e:c6:
52:00:19:52:a9:7d:01:63:b1:de:fa:a1:03:b3:09:0f:52:49:
89:ce:58:02:dd:e4:89:15:97:49:23:b9:6b:4d:9d:15:b8:81:
c6:e8:54:6f:f6:43:3d:de:6f:7f:5b:a3:af:de:68:3a:df:15:
82:95:05:09:05:6f:42:5a:f3:58:63:61:8b:af:19:6a:25:ab:
b4:6a:20:f7:91:19:25:41:d2:40:89:cd:00:b0:5e:39:71:87:
33:82:68:a7:a0:97:1f:0d:b7:f4:ab:c6:5a:10:72:ea:ec:a0:
00:ac:2a:04:92:cd:00:51:1b:a4:e0:40:85:4c:4f:9c:99:14:
20:86:51:c8:3a:e0:13:24:ee:2e:ca:58:29:c2:a6:f4:75:06:
0c:ca:01:33:c3:b7:45:dc:8a:3f:a7:f3:03:5d:c2:d6:8f:26:
79:8a:d7:cb:c1:65:3b:0c:0a:66:7a:d9:7c:f5:3f:4d:36:e5:
f8:6e:eb:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:00 2024 by rpki-client on console-ams.rpki-client.org