Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ioqb-68axzngLqfyd1ZjhxiFqCw.roa
File: Ioqb-68axzngLqfyd1ZjhxiFqCw.roa (raw, json)
Hash identifier: RVp8urDcjf7o7MHpDU0TFH3mgBOhsReklycASKOkQzU=
Subject key identifier: 22:8A:9B:FB:AF:1A:C7:39:E0:2E:A7:F2:77:56:63:87:18:85:A8:2C
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 027D
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ioqb-68axzngLqfyd1ZjhxiFqCw.roa
Signing time: Tue 30 May 2023 16:34:24 +0000
ROA not before: Tue 30 May 2023 16:34:24 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 211.14.94.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 637 (0x27d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:34:24 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=228A9BFBAF1AC739E02EA7F2775663871885A82C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:0f:08:5d:1d:64:88:f0:7c:39:27:67:19:5f:
de:9e:1f:1d:98:73:53:e2:56:d8:47:5c:40:18:34:
8d:79:de:b5:a3:18:59:78:55:57:30:4f:99:73:8e:
53:a7:ef:f5:00:31:98:76:0e:3b:64:dc:12:36:85:
27:74:30:db:93:e8:db:d9:4a:2d:5e:38:c0:ff:60:
11:d3:98:cc:77:44:c8:b7:9a:b4:ed:6e:53:61:f3:
a5:99:00:44:9c:4e:27:9d:64:08:6d:25:8a:72:9b:
61:df:6e:f4:41:e6:e0:c8:70:d2:ae:1a:af:f5:98:
22:4d:aa:e5:10:ad:25:dc:7f:71:3c:2d:d1:ee:36:
f0:b0:0f:7e:a4:19:77:21:50:a3:80:71:14:2e:4e:
ce:0b:ad:6c:1b:80:16:69:84:13:3a:94:e1:a9:22:
15:59:78:bc:4b:cc:70:97:30:54:5c:b7:6c:1e:d0:
f3:42:b2:fd:70:a2:ad:c0:75:f3:90:b4:f0:56:2c:
cd:2a:0f:0f:4c:a0:32:5d:6d:57:23:e2:27:9f:67:
73:7b:26:32:3a:56:2a:ac:bb:f0:9a:23:58:b6:c9:
1f:b4:42:66:88:b3:a0:2b:61:7b:04:66:63:57:38:
b0:48:74:52:ee:6c:7b:d4:24:06:ad:60:29:9d:43:
d3:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:8A:9B:FB:AF:1A:C7:39:E0:2E:A7:F2:77:56:63:87:18:85:A8:2C
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ioqb-68axzngLqfyd1ZjhxiFqCw.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
211.14.94.0/23
Signature Algorithm: sha256WithRSAEncryption
b7:da:95:38:ec:76:90:a2:74:e1:d1:19:6a:1c:4e:86:69:76:
46:b2:3f:8b:45:58:67:55:4f:64:a8:cd:b4:20:15:9d:a1:70:
d5:9a:d5:ec:03:72:7f:f6:11:b3:1e:be:6d:e4:e8:b1:30:25:
90:7c:44:bc:65:d1:1e:d8:26:62:f2:d1:2b:1a:37:bf:f6:59:
a9:9e:5e:96:ba:0a:73:e0:59:c8:fb:10:e2:ef:fa:ab:1c:88:
bd:d9:3b:47:ee:7f:c6:56:79:43:92:88:91:5f:04:da:4d:90:
e3:53:a9:4a:e0:a7:34:0f:0e:43:67:c3:04:a4:e0:6a:9f:ca:
3f:4a:72:9e:c9:80:18:db:77:da:bd:b6:8f:7a:3d:13:84:e5:
ee:14:62:a2:7f:b4:29:25:57:0a:18:f4:21:e3:6a:e2:f9:de:
3e:66:d6:fc:2d:ba:b0:14:89:53:89:0e:c6:0b:48:ae:7a:a4:
8d:d9:22:81:ab:67:24:3e:6b:ea:37:03:4c:7c:3b:ae:5d:54:
99:78:4e:94:f3:cb:bf:50:d9:0b:43:fd:d5:56:20:11:7e:f9:
93:39:c5:11:d5:53:6d:3d:28:ea:0f:0c:2b:75:67:9a:40:9f:
48:9d:40:9f:af:82:37:b6:38:bc:5c:d3:19:07:b4:d7:1a:24:
26:e9:5d:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:01 2024 by rpki-client on console-ams.rpki-client.org