Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ANHeZPjqU0NrcSaUfAIdAR5-bbQ.roa
File: ANHeZPjqU0NrcSaUfAIdAR5-bbQ.roa (raw, json)
Hash identifier: y83MptF9PSxZUFb/s+I1a8QxZCcuJZym8/WeGQTWd3E=
Subject key identifier: 00:D1:DE:64:F8:EA:53:43:6B:71:26:94:7C:02:1D:01:1E:7E:6D:B4
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0253
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ANHeZPjqU0NrcSaUfAIdAR5-bbQ.roa
Signing time: Tue 30 May 2023 16:32:30 +0000
ROA not before: Tue 30 May 2023 16:32:30 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 220.159.22.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 595 (0x253)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:32:30 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=00D1DE64F8EA53436B7126947C021D011E7E6DB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4c:70:a6:ae:4e:15:00:02:a9:b5:dd:7b:cb:
68:cd:28:a9:7d:e3:77:8a:44:ff:75:2b:62:93:de:
86:09:b0:2f:a9:2a:38:bb:bb:95:e8:3b:5f:50:6f:
ed:ed:f0:d8:1c:2c:b8:be:a5:53:c9:bd:da:00:8b:
a1:cf:20:aa:5f:27:53:46:84:b1:73:3d:f0:07:44:
be:75:1e:15:a9:24:bc:df:12:bc:6e:fa:50:c0:bb:
86:f3:db:2b:41:4b:72:1a:85:0d:96:65:1f:d2:88:
65:8b:3c:90:fa:b9:f8:70:5f:84:b1:7d:69:34:38:
42:94:82:e5:cb:c4:f5:1e:65:b0:94:f0:a5:ca:1a:
76:82:d2:d3:84:9a:0f:2c:ea:f4:34:d5:e9:af:ca:
61:95:68:4b:a8:8a:c6:f4:0d:f5:c7:3f:4b:94:46:
da:8b:0e:09:92:55:34:87:45:d8:8e:ac:8a:d0:9e:
0e:ea:86:0e:d2:2f:53:80:01:e9:4a:a9:66:d5:84:
5b:7f:26:a6:ff:8f:21:18:a4:10:a6:9c:aa:d7:4b:
7f:0b:02:40:84:c9:42:00:aa:a9:34:77:0e:d8:19:
51:17:10:da:aa:5c:97:00:73:0d:da:6d:9a:20:0b:
eb:d4:c8:6e:fe:9f:2b:ad:b6:da:44:16:97:62:bf:
98:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:D1:DE:64:F8:EA:53:43:6B:71:26:94:7C:02:1D:01:1E:7E:6D:B4
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ANHeZPjqU0NrcSaUfAIdAR5-bbQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.159.22.0/23
Signature Algorithm: sha256WithRSAEncryption
59:a6:f6:05:74:e5:bc:98:f9:e4:ae:33:28:13:bd:4c:a6:9e:
51:56:f6:ac:75:b5:1f:55:d1:26:03:db:60:7d:27:3c:85:e5:
04:a7:0c:17:d0:a1:a2:24:fc:48:1b:9d:4d:8c:58:3f:ba:53:
c6:8b:4d:12:c4:2a:b0:0c:e2:f7:7a:25:a0:90:4d:fb:a6:57:
53:ef:bd:fe:68:de:e8:8f:6c:30:07:bb:6b:7f:64:0f:5e:33:
d3:0f:bf:7f:a9:ce:85:67:0e:d5:be:86:8f:bc:7d:8a:4d:4c:
d0:a4:f8:52:6d:b3:12:c8:27:6d:16:64:74:e0:3a:f5:51:76:
fe:be:eb:29:04:c0:d2:5c:0c:ea:02:d9:e2:9e:03:1b:8b:16:
6a:3a:7c:a7:da:f7:86:97:2b:5e:f0:cd:d3:85:96:dd:b7:bc:
25:3b:68:21:54:49:71:52:26:51:04:2f:5a:f1:9a:d4:fc:34:
29:56:d2:71:51:17:18:fb:f2:d4:30:c8:21:6d:11:7a:5b:db:
a7:71:d9:23:b0:a9:0b:d5:ba:8f:7a:fa:1c:21:81:65:d5:05:
b7:a6:74:6e:2f:1c:d8:9b:37:93:56:5a:7c:ce:78:f2:e9:c7:
bb:76:b8:e6:48:e8:d7:b5:5b:4b:81:61:8c:46:55:e1:36:d4:
38:bc:00:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:01 2024 by rpki-client on console-ams.rpki-client.org