Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/9VLRUT4HNKM037Tgf8JzdL5XNIg.roa
File: 9VLRUT4HNKM037Tgf8JzdL5XNIg.roa (raw, json)
Hash identifier: /YFA4PWNrQpnbvLOU6m1M7arDkkwZMYsaYgcjYVLjPA=
Subject key identifier: F5:52:D1:51:3E:07:34:A3:34:DF:B4:E0:7F:C2:73:74:BE:57:34:88
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 02A2
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/9VLRUT4HNKM037Tgf8JzdL5XNIg.roa
Signing time: Tue 30 May 2023 16:36:35 +0000
ROA not before: Tue 30 May 2023 16:36:35 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 220.159.216.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 674 (0x2a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:36:35 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=F552D1513E0734A334DFB4E07FC27374BE573488
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:30:1f:c2:76:92:74:b3:08:5e:6c:5c:6f:a0:
ee:ba:2c:9c:45:d4:b7:e6:47:73:93:7b:53:7b:99:
42:db:3f:6b:3d:38:db:d4:57:a2:22:2c:89:d5:36:
0b:39:9b:cb:88:23:02:5d:ce:67:c2:eb:96:40:aa:
35:ea:f7:41:72:62:8e:40:b2:b4:d2:16:4c:82:70:
45:b3:dd:00:84:45:65:8c:1a:af:d4:59:e1:95:96:
52:02:f0:89:bc:b4:30:7e:59:f4:fa:4b:55:b8:fa:
e4:f6:60:05:90:88:5e:69:0c:b7:c2:13:1e:b7:de:
18:98:0b:8d:55:ec:c2:e3:59:eb:6b:6e:0c:bf:84:
7f:8c:d5:4b:21:d5:18:b9:c7:47:32:ae:40:a4:7d:
7e:98:1d:70:54:02:83:e6:27:69:8a:d9:5a:cb:23:
ee:99:c6:10:79:4c:11:66:98:81:0a:f8:1a:f0:b8:
58:2d:59:03:e5:2c:90:99:32:7c:c7:d1:d8:59:94:
07:4a:cf:17:3b:c9:e6:e1:72:20:96:5d:a1:53:78:
3b:a9:c1:72:e3:dd:db:14:8e:06:f8:65:0d:66:03:
e2:e2:b3:b5:d3:5b:d0:ff:a4:05:6f:84:76:4e:74:
2d:8b:f0:6b:b7:6d:24:93:b8:c2:90:f6:6c:0d:03:
b0:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:52:D1:51:3E:07:34:A3:34:DF:B4:E0:7F:C2:73:74:BE:57:34:88
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/9VLRUT4HNKM037Tgf8JzdL5XNIg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.159.216.0/21
Signature Algorithm: sha256WithRSAEncryption
cc:cb:da:0f:72:13:d3:5f:d0:94:db:18:e2:af:6e:79:38:e0:
6d:b2:bc:fc:db:fd:a5:2a:a6:4d:01:72:12:f0:1e:ae:44:d4:
c7:b8:f4:71:89:f5:f0:55:27:dc:0a:3a:79:13:d4:21:4d:7f:
7c:a7:cf:58:4a:34:40:a1:2d:e6:e3:8c:0f:69:e0:10:4f:0b:
b8:7e:49:0f:65:98:ca:0d:7a:db:de:78:c7:3d:e5:30:58:1b:
c3:00:0c:5a:53:d8:16:50:f6:2d:77:64:55:9f:5d:59:37:00:
bb:1f:1d:6d:1f:ce:a2:d5:d0:35:d4:71:35:fa:81:21:bf:d9:
c6:4e:98:3f:c6:e8:a6:5f:ab:60:82:18:4c:23:d6:6a:45:d1:
31:d4:7b:25:4e:9f:52:72:a0:9d:5b:10:69:33:d2:47:3f:2e:
87:f6:b7:16:98:ee:16:23:12:aa:a8:ca:6d:23:e2:0c:51:7b:
68:ca:40:70:4d:42:ad:24:4a:d5:fa:a4:32:ab:64:04:29:ac:
a2:7c:5f:43:c2:b3:a6:fa:8f:f7:2a:8f:33:a7:35:ab:a6:29:
76:1f:2c:6a:e3:dc:4c:30:2f:c8:7e:48:13:79:cb:10:9d:2e:
bd:32:91:d9:32:a2:55:02:54:25:6d:29:c5:5b:65:0a:b9:e9:
72:81:bd:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:01 2024 by rpki-client on console-ams.rpki-client.org