Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/7kbdnDTrWEsF_xTi2lc_H1gtwjs.roa
File: 7kbdnDTrWEsF_xTi2lc_H1gtwjs.roa (raw, json)
Hash identifier: qeEtwZU4Lyhr+EjcFcF0BtfluDLg/S7o2DFYVZWG0IM=
Subject key identifier: EE:46:DD:9C:34:EB:58:4B:05:FF:14:E2:DA:57:3F:1F:58:2D:C2:3B
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0284
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/7kbdnDTrWEsF_xTi2lc_H1gtwjs.roa
Signing time: Tue 30 May 2023 16:36:23 +0000
ROA not before: Tue 30 May 2023 16:36:23 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.66.24.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 644 (0x284)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:36:23 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=EE46DD9C34EB584B05FF14E2DA573F1F582DC23B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:29:d0:49:78:92:8c:33:41:c9:30:bb:dd:c8:
37:e5:29:5b:b8:39:5c:bb:a4:d6:64:ab:b6:89:e1:
82:cc:f8:d7:b4:36:4d:aa:23:42:51:0b:b3:1a:de:
93:0d:84:fb:34:eb:5e:bb:c1:06:1c:7f:6b:40:44:
40:7e:a8:ab:3d:c8:a7:e2:d3:99:34:5a:79:d7:28:
f7:57:0f:cf:85:78:be:76:9d:bd:22:02:93:d5:05:
32:26:6e:68:6b:38:d1:92:ae:e8:f8:1c:1a:fb:67:
13:5f:59:c6:36:89:71:8b:80:79:bb:5c:0c:26:63:
d1:ac:1f:c1:dd:75:38:2a:11:e5:3e:09:48:40:82:
f4:bd:10:94:c1:d9:32:74:0a:c8:04:eb:d9:45:c3:
53:87:a5:64:0b:4f:a7:ac:01:c3:1f:e5:c3:a1:29:
8e:4b:a9:fa:0e:00:a8:a3:39:26:29:71:23:b8:05:
04:b1:1e:02:89:61:0c:2c:58:48:35:9d:e0:16:c6:
10:a7:cb:44:b0:80:40:09:b9:7e:95:26:0b:28:4b:
c5:8a:46:a0:7a:00:09:a1:67:46:a6:04:ba:cb:3b:
9c:fc:2a:a2:6b:10:46:e6:1d:19:17:83:7c:a6:9d:
43:0d:27:04:e5:b2:3d:b7:a3:01:a2:a9:f8:4f:e5:
59:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:46:DD:9C:34:EB:58:4B:05:FF:14:E2:DA:57:3F:1F:58:2D:C2:3B
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/7kbdnDTrWEsF_xTi2lc_H1gtwjs.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.66.24.0/21
Signature Algorithm: sha256WithRSAEncryption
92:2b:ea:6e:65:51:f8:3e:39:eb:af:06:23:43:63:28:62:59:
41:2b:24:04:e8:bc:5b:ea:3c:11:f9:c5:65:7e:fb:7a:47:8b:
09:ce:8a:47:3b:74:5d:23:db:b1:23:b2:4d:92:00:f5:3d:16:
ba:c5:a9:10:2a:95:7f:f3:41:bd:b2:e8:07:90:21:16:d4:1a:
74:66:e2:10:2c:42:eb:50:07:a7:46:0a:42:21:db:4f:40:12:
2f:11:0e:8b:b5:b7:34:d8:ca:d8:5f:64:1a:c0:66:ab:b1:cf:
96:1c:67:5c:c5:de:ff:ff:a9:5c:71:aa:17:df:60:c3:9a:cd:
25:bc:e9:4b:0b:db:27:8a:e1:65:14:db:80:98:6c:e4:c7:6c:
c7:28:f3:22:b3:bb:d9:99:38:02:17:0d:2e:f3:6c:be:71:21:
b6:0c:d6:3f:2b:5b:f2:60:0a:ec:e7:5f:ad:fd:40:77:fb:7e:
06:9e:f7:77:f4:48:0d:ee:43:f4:3a:8a:06:ca:35:96:63:6f:
2e:bb:f1:36:d2:bb:1d:1e:bc:80:d4:1d:d4:e4:a0:b2:de:de:
44:69:68:b3:a0:a2:34:86:ee:57:35:16:19:7d:e9:64:76:47:
e4:32:7f:aa:6d:ec:8f:e3:49:2f:c3:77:fe:8d:64:3f:bf:22:
c9:51:93:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:51 2024 by rpki-client on console-fra.rpki-client.org