Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Cn6zECsCeLJL1L9MSrEGLDTM-D0.roa
File: Cn6zECsCeLJL1L9MSrEGLDTM-D0.roa (raw, json)
Hash identifier: 7RCaumYHakALuWMwugKIyCM/84rB4VmYlfhsFNDjwJE=
Subject key identifier: 0A:7E:B3:10:2B:02:78:B2:4B:D4:BF:4C:4A:B1:06:2C:34:CC:F8:3D
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 02D5
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Cn6zECsCeLJL1L9MSrEGLDTM-D0.roa
Signing time: Tue 30 May 2023 17:18:24 +0000
ROA not before: Tue 30 May 2023 17:18:24 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.66.68.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 725 (0x2d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 17:18:24 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=0A7EB3102B0278B24BD4BF4C4AB1062C34CCF83D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:7c:45:8d:6e:41:43:05:4b:79:dd:1d:21:17:
10:1a:ec:2a:49:fb:6b:74:c3:54:63:51:fd:7a:f1:
bc:02:57:22:bb:6d:78:1e:1c:d3:fb:38:e8:a4:22:
5e:d8:e5:75:d9:3d:72:28:da:9e:e4:02:28:37:cd:
f8:ba:fb:92:b9:5b:b9:35:54:87:13:1c:c9:fb:ad:
e8:91:e6:c5:75:f8:e7:7d:27:48:60:bd:23:1d:22:
2f:24:50:be:23:20:bc:67:f9:16:00:a2:1d:60:ca:
73:c1:52:d8:04:44:fe:52:03:c5:1e:30:19:63:8c:
0e:cd:e3:ab:d8:a7:80:b4:a8:ac:5c:21:31:0f:cf:
82:9c:f4:c6:ee:8e:82:ac:dc:c3:9a:01:d5:ec:ef:
c0:f5:2e:dd:4b:59:ec:b3:80:5d:7d:f1:c6:e6:17:
aa:24:7a:3d:e3:a9:eb:6d:b8:84:c8:60:63:6a:22:
a6:22:54:7f:d5:92:c8:29:13:52:01:ca:62:67:6a:
7e:c3:33:78:95:8b:96:b0:bd:60:e3:6e:e0:1b:27:
54:bb:33:d6:f8:b3:1a:6a:8d:6d:4e:ba:1b:37:34:
c7:6d:82:07:11:35:2a:3c:67:b7:de:c9:f2:5f:f2:
5c:07:17:a3:2b:a4:a2:43:b0:75:cf:33:4f:df:4c:
99:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:7E:B3:10:2B:02:78:B2:4B:D4:BF:4C:4A:B1:06:2C:34:CC:F8:3D
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Cn6zECsCeLJL1L9MSrEGLDTM-D0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.66.68.0/22
Signature Algorithm: sha256WithRSAEncryption
56:b1:ac:98:c8:69:87:aa:12:af:97:17:86:38:6a:c0:5a:a5:
a2:1c:eb:57:f2:0a:a3:ed:ca:8b:09:1e:ce:9c:5e:45:9d:cc:
88:49:74:14:60:52:ee:21:7f:64:6d:df:b3:6c:35:d5:d3:65:
ab:5e:1a:e0:fe:6a:8c:01:94:b1:22:52:48:a2:54:42:c3:32:
73:a2:8b:0a:e1:e7:f9:e4:f0:fd:c1:10:4f:cc:93:dc:d0:82:
cc:ea:4d:b7:62:2c:df:4c:86:c7:81:a9:c1:e3:19:7e:31:40:
d1:19:2f:04:3a:10:4f:95:9f:02:db:5e:1a:91:55:81:6e:5e:
71:86:05:0e:80:6a:80:35:42:66:79:7c:98:0e:ea:65:66:ce:
c4:45:b9:42:50:82:cb:fc:a2:7d:1f:b9:4d:4c:4d:18:83:22:
be:48:a3:db:1b:a2:9f:e0:9a:d4:40:61:a6:a1:06:63:ca:93:
bd:6e:07:51:4d:0b:48:6d:99:79:8a:ae:44:29:3c:ac:d5:84:
37:61:44:9d:dc:c2:02:62:e6:7e:40:e2:6f:44:2d:e1:b3:5b:
09:d7:7b:9a:57:9a:ad:f9:85:73:51:37:43:49:d4:31:86:e1:
64:ac:fc:7e:8f:1a:8e:0c:0d:4c:a3:60:5c:01:b3:9c:65:fc:
4a:fa:f3:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:01 2024 by rpki-client on console-ams.rpki-client.org