Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/DAz0L1_IkyDY408vLn_efsrxjug.roa
File: DAz0L1_IkyDY408vLn_efsrxjug.roa (raw, json)
Hash identifier: 75V4W7n4hkPVfskfNMQUBuI5Dw6wEnRRuSYFuFjmnTE=
Subject key identifier: 0C:0C:F4:2F:5F:C8:93:20:D8:E3:4F:2F:2E:7F:DE:7E:CA:F1:8E:E8
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 01E6
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/DAz0L1_IkyDY408vLn_efsrxjug.roa
Signing time: Wed 24 May 2023 16:40:41 +0000
ROA not before: Wed 24 May 2023 16:40:41 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.79.24.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 486 (0x1e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:40:41 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=0C0CF42F5FC89320D8E34F2F2E7FDE7ECAF18EE8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:4b:2e:90:b3:9a:d5:44:40:5b:fc:c4:0b:8c:
7e:e1:1d:ec:0f:d5:e3:aa:5e:9a:24:9f:9a:ca:8e:
db:c8:66:f0:52:52:67:71:f7:6f:c3:06:52:b3:02:
f0:f8:93:26:94:97:35:50:77:27:9c:3e:ea:27:73:
20:f6:d3:1e:7c:27:a5:28:e4:3a:c9:d8:9d:6c:dc:
19:31:f2:2a:7f:cd:5a:60:8d:7c:6b:f3:2a:13:19:
f6:89:8f:ed:38:3d:03:c6:3c:a7:d2:f7:80:c3:1e:
bb:9c:fd:a7:37:88:77:c9:87:59:ac:52:2d:f5:fb:
13:ea:c7:57:fa:91:0e:84:c7:de:12:75:5f:6b:1a:
90:e4:c4:ef:14:84:f1:83:1c:dd:a4:1c:dc:77:8a:
a8:1d:ea:10:59:74:ef:e0:72:d6:ee:79:81:f6:f8:
9b:b9:20:17:1d:5e:92:9a:1d:b6:d1:aa:d3:14:00:
36:9c:26:3b:8c:d2:62:94:93:8e:5a:ad:e1:7b:f6:
34:3d:85:5c:cf:e1:10:5d:94:ff:49:14:cf:df:67:
6c:f6:e7:66:09:91:3b:6d:b2:69:e3:44:ce:d7:d7:
f0:13:9d:07:d6:7b:13:e0:93:27:76:47:94:0f:a7:
91:b5:7b:40:75:2a:08:50:c6:01:e8:60:60:c6:49:
ac:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:0C:F4:2F:5F:C8:93:20:D8:E3:4F:2F:2E:7F:DE:7E:CA:F1:8E:E8
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/DAz0L1_IkyDY408vLn_efsrxjug.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.79.24.0/22
Signature Algorithm: sha256WithRSAEncryption
87:76:39:73:4a:3e:b1:97:bb:1d:3a:9c:5f:06:da:8c:65:b9:
4b:ca:6a:d6:a8:1a:e3:87:17:ac:31:30:18:d7:47:91:7e:f5:
83:36:61:6f:ba:76:63:09:5b:66:1d:1f:14:9b:48:01:42:e0:
ba:99:69:9e:b9:d1:92:51:4b:e8:6a:e6:9e:66:4a:0d:df:98:
a0:6e:f7:f0:50:e7:02:46:7e:b7:0a:1b:5b:ee:14:ad:9a:10:
5f:5a:15:df:3b:b1:01:50:0b:21:12:1a:fd:9e:4d:59:69:36:
d2:ae:8a:1c:62:67:71:51:a3:06:7f:79:1d:e1:ff:6c:6f:64:
a0:2e:91:dd:f5:78:08:7a:b6:a0:9b:41:ce:f7:18:67:ba:f6:
10:99:e6:8f:12:46:2b:b8:1f:c2:b1:6f:66:7c:f4:4a:e8:d7:
35:32:bb:a0:9a:70:4e:0b:c1:21:db:05:01:f9:82:ec:3e:72:
39:ae:8d:7d:f8:4f:39:74:4b:92:50:ae:51:5d:a9:49:a4:34:
1e:9e:34:d4:b2:19:46:79:59:48:68:ee:18:9a:f4:fa:3c:ee:
8b:02:24:ca:d8:c4:f4:52:ba:90:73:cc:3b:fd:92:b4:fb:d7:
7d:a9:06:e3:86:bf:62:d5:11:6b:94:7e:88:54:10:7e:87:bd:
71:c6:01:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:01 2024 by rpki-client on console-ams.rpki-client.org