Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/CI7dB0XJgYLYIlTDBeHGALK4vOo.roa
File: CI7dB0XJgYLYIlTDBeHGALK4vOo.roa (raw, json)
Hash identifier: QR46li1qeGXSzkDkP+/0exgUbdpyfqpdwhwGCBjI4Z0=
Subject key identifier: 08:8E:DD:07:45:C9:81:82:D8:22:54:C3:05:E1:C6:00:B2:B8:BC:EA
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 025D
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CI7dB0XJgYLYIlTDBeHGALK4vOo.roa
Signing time: Tue 30 May 2023 16:34:12 +0000
ROA not before: Tue 30 May 2023 16:34:12 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.74.192.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 605 (0x25d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:34:12 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=088EDD0745C98182D82254C305E1C600B2B8BCEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a4:16:ad:bf:07:1c:d5:88:41:7f:c5:7b:98:
d4:34:bb:bf:51:5f:a2:0a:9b:96:66:1c:a3:a1:89:
53:ba:ad:37:77:c0:1e:4c:ec:6e:9c:82:db:cc:d3:
bf:5a:bd:2c:e7:25:bc:07:9c:6c:4b:29:b2:61:0f:
27:a1:b3:d4:8e:4a:ef:9c:34:35:4c:74:56:30:23:
13:73:7b:c4:82:bf:4d:f5:06:e8:b8:bd:0c:31:48:
fb:ac:0b:92:11:ff:f2:9a:a0:e2:ed:c6:70:ea:9d:
7a:d8:24:e4:9d:cb:eb:b6:67:ed:5c:2a:56:21:be:
20:0d:2a:5f:30:d7:b3:c7:d3:4b:c1:57:6e:a1:67:
4a:f2:bc:9f:91:8a:15:eb:e3:a0:9f:1f:f9:d9:aa:
84:ab:fd:8f:8d:b8:d6:01:27:fb:74:f0:8f:98:d9:
0e:e9:97:8c:45:ac:51:5e:55:dd:e0:57:04:a7:5e:
70:a0:ed:94:e8:c6:0a:8a:53:83:46:17:67:5c:ad:
86:df:d5:17:88:4e:9f:05:89:6b:f5:31:a9:49:2d:
11:c1:73:74:a7:9b:a0:5a:5c:c5:bb:6c:0f:b5:60:
37:6e:4a:55:79:0d:4b:00:91:76:65:26:71:4f:00:
07:11:28:b7:f1:b4:0a:7c:92:56:be:b9:27:c1:e7:
06:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:8E:DD:07:45:C9:81:82:D8:22:54:C3:05:E1:C6:00:B2:B8:BC:EA
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CI7dB0XJgYLYIlTDBeHGALK4vOo.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.74.192.0/23
Signature Algorithm: sha256WithRSAEncryption
01:1b:c4:35:d3:ce:4f:7d:8a:99:0b:32:73:fd:64:18:92:40:
20:20:d0:22:a5:5e:4c:1b:a7:e4:39:6d:02:9c:e8:93:01:16:
12:1e:3a:4f:42:d2:5e:cb:2f:f8:0a:59:25:da:9e:df:34:16:
1c:87:11:c2:1c:5e:b1:a2:13:a3:67:1d:e5:5e:be:17:c3:e6:
9f:96:47:b9:eb:bf:38:0f:b4:cf:0b:ea:34:34:ae:5f:ec:fe:
47:cc:8c:8a:d3:91:89:ee:b3:50:94:50:a5:5e:3f:9a:4c:97:
9a:60:d0:3e:e7:93:74:79:ab:f2:cb:0a:66:d4:ac:62:80:5d:
7d:09:7b:5d:71:10:bd:99:3c:4d:b9:0c:15:66:00:4c:d1:bd:
4d:55:c0:c1:60:60:06:b4:c0:a0:e2:b4:49:66:d5:5c:fc:7d:
ea:4e:6d:03:3e:75:0c:64:0b:6c:bc:ce:62:1b:48:ac:55:3e:
86:12:8d:e1:5d:5b:21:7a:74:e1:42:23:f4:48:f4:88:00:4b:
65:d8:d4:af:00:7d:6f:6a:d2:e8:ad:64:8c:09:1c:97:21:8a:
35:0b:28:a4:69:b4:ad:aa:53:3a:28:9c:8d:05:75:91:25:92:
af:97:86:89:ed:41:a8:92:8b:f2:2b:84:13:55:76:fe:20:fc:
2b:aa:56:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:51 2024 by rpki-client on console-fra.rpki-client.org