Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/D0ASkIEyNxxuNMPPCvFGb8s6tN8.roa
File: D0ASkIEyNxxuNMPPCvFGb8s6tN8.roa (raw, json)
Hash identifier: BGSxSKJDlttm0LcGnxWX6YrWDKh7UIAkc+s4rjZdYPg=
Subject key identifier: 0F:40:12:90:81:32:37:1C:6E:34:C3:CF:0A:F1:46:6F:CB:3A:B4:DF
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0219
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/D0ASkIEyNxxuNMPPCvFGb8s6tN8.roa
Signing time: Tue 30 May 2023 16:30:27 +0000
ROA not before: Tue 30 May 2023 16:30:27 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 211.14.88.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 537 (0x219)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:30:27 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=0F4012908132371C6E34C3CF0AF1466FCB3AB4DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c5:51:b2:bb:27:d5:3b:ce:0a:91:46:0b:e0:
d8:5b:98:df:44:fa:c1:14:fd:72:ad:1c:30:df:37:
97:4d:19:cd:bf:0c:4d:ad:4c:42:b0:49:6e:85:b9:
64:85:3a:0f:95:41:98:fb:c8:c0:60:2f:81:03:33:
79:da:97:db:27:f6:bd:d2:5a:06:46:fd:cc:87:49:
b0:7e:9e:d5:0c:4c:ac:cf:98:a8:d3:71:90:c2:e9:
f1:89:8d:9d:41:72:c2:70:55:89:51:7a:55:f7:a7:
67:df:76:99:ee:bf:e5:fe:fd:eb:94:26:e2:0d:fc:
f8:8f:69:a7:f0:65:32:5e:f3:76:a0:55:18:ed:1d:
5b:20:b0:25:a8:17:b3:ab:b3:f6:50:5c:c2:3d:22:
57:93:ed:3a:ad:83:6e:40:1d:6b:78:63:f8:c0:7b:
79:f8:df:a3:7c:2c:5c:76:a0:e9:8a:51:f7:90:4b:
87:51:fe:4f:a8:f1:33:f2:96:ca:67:ca:db:e2:51:
95:7e:31:c3:c9:90:a6:f8:76:79:97:30:97:64:41:
31:f5:49:16:e8:e5:2d:26:71:91:2f:ee:80:09:14:
5a:5e:2c:e2:44:7b:24:98:86:9b:ec:02:42:f1:79:
e7:9a:d6:c8:78:ed:97:b1:93:da:0e:a0:ba:11:89:
13:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:40:12:90:81:32:37:1C:6E:34:C3:CF:0A:F1:46:6F:CB:3A:B4:DF
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/D0ASkIEyNxxuNMPPCvFGb8s6tN8.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
211.14.88.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:08:b1:06:2e:91:13:36:d3:02:f1:ad:df:45:14:29:e6:10:
88:db:7b:ec:c8:b3:79:2b:08:9a:46:5e:bc:a9:e6:87:a1:f6:
8d:2b:23:80:24:34:6c:2c:9e:d1:d7:22:31:82:26:16:8b:cc:
a4:9a:ac:1e:19:91:de:b6:56:a2:db:a5:24:6c:4b:d6:9f:af:
5e:35:5b:c5:00:24:ae:b7:77:34:ba:04:03:dc:3b:88:95:af:
26:ed:51:9d:0d:d4:ab:b3:f6:94:db:b0:dd:5e:a2:72:1f:91:
27:ad:ab:0b:bc:bd:69:3e:cd:13:3b:1d:13:3f:aa:0f:b9:44:
0c:c5:43:cd:4f:c4:3d:e8:e7:b6:b9:56:ee:bb:c3:94:10:3c:
ae:69:15:2d:61:48:af:0e:24:f8:25:73:d7:d9:60:f8:48:f0:
7e:42:e7:4c:67:83:8b:72:f5:bc:48:f9:2b:eb:be:5d:eb:a6:
53:19:51:4b:4a:a1:50:6d:3d:d5:90:71:22:60:a0:8f:4f:fa:
70:75:5c:fc:75:38:cc:a8:8b:dc:1f:f6:d2:4e:11:d7:7d:46:
45:5d:01:12:ec:92:2b:23:67:8d:7b:84:e8:3c:c1:a4:38:44:
9d:cc:a7:c5:1f:c6:97:90:a9:fe:65:ad:ec:45:9f:2a:83:d6:
d7:a4:0a:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:51 2024 by rpki-client on console-fra.rpki-client.org