Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/LZYrd_UdNV61-qfPPsEZircaXJg.roa
File: LZYrd_UdNV61-qfPPsEZircaXJg.roa (raw, json)
Hash identifier: NGkmHnAkdrpau3a839FvxGZJaKjj3R7CvDLHOH7V8tY=
Subject key identifier: 2D:96:2B:77:F5:1D:35:5E:B5:FA:A7:CF:3E:C1:19:8A:B7:1A:5C:98
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 01C4
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LZYrd_UdNV61-qfPPsEZircaXJg.roa
Signing time: Wed 24 May 2023 16:40:30 +0000
ROA not before: Wed 24 May 2023 16:40:30 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.75.230.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 452 (0x1c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:40:30 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=2D962B77F51D355EB5FAA7CF3EC1198AB71A5C98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7b:eb:b7:0c:f2:8f:60:ed:ec:90:4d:fc:88:
7a:b9:f5:1e:24:21:7c:a0:60:0f:94:0d:a6:a5:d3:
b7:4d:c0:18:f7:bc:2b:cb:0a:e5:3c:c0:ab:20:de:
b8:00:db:0b:74:03:3c:fb:84:9d:3f:75:bd:bc:c9:
fd:d7:d9:93:43:46:ba:5e:33:ac:ed:f4:af:b1:fd:
18:7a:e0:35:01:ca:17:b1:a6:12:a2:24:93:da:3a:
2c:63:15:c9:01:1c:c0:d4:77:4c:f9:9f:d6:89:21:
28:98:cb:39:f0:3c:39:99:75:d3:ce:f9:38:93:e3:
48:26:fb:01:76:ec:9e:a5:01:df:68:2b:9f:88:8c:
ee:41:cb:a3:3e:6b:d5:66:78:e9:b5:51:b9:81:41:
1b:d7:41:e8:0c:9d:be:06:1e:bb:3d:cc:c8:7c:ce:
aa:2e:97:8d:d1:8d:63:78:5c:06:c5:43:b4:b2:47:
36:42:ed:55:5d:d5:98:2a:79:08:49:04:e1:91:ef:
35:65:e8:ce:18:e3:72:24:d3:b7:4e:91:58:a8:b1:
54:0c:1b:1f:b8:cc:af:42:62:f5:e5:5f:1b:78:93:
fe:d2:16:1c:cc:b6:6e:a4:41:26:da:42:ec:11:9d:
1f:2f:f8:82:4f:40:16:60:4b:d8:09:fc:7c:7a:9d:
2a:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:96:2B:77:F5:1D:35:5E:B5:FA:A7:CF:3E:C1:19:8A:B7:1A:5C:98
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LZYrd_UdNV61-qfPPsEZircaXJg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.75.230.0/23
Signature Algorithm: sha256WithRSAEncryption
e6:53:2b:0e:01:67:6a:df:1b:6d:5f:46:b8:41:48:18:6a:cf:
3e:d1:d5:85:8c:ef:a4:42:43:6c:b2:a1:44:99:70:60:36:1e:
b0:b4:3c:89:eb:cf:a8:13:d5:41:75:2a:e3:f3:e6:12:c9:9e:
63:b4:c3:0c:51:f3:08:bb:b0:fa:12:15:af:d5:e4:52:5e:d5:
2c:8b:c9:c2:77:a2:bb:ee:a1:cc:2f:94:10:f0:04:95:8c:ee:
30:19:28:31:c5:75:49:ee:47:b1:1f:bf:f2:1a:79:4a:53:7f:
82:05:2c:f8:f9:c6:0e:e4:5b:a0:51:90:19:fb:71:ad:a0:99:
94:f6:3e:f7:2a:6a:72:f2:df:75:23:15:17:6a:2a:7d:f8:ab:
8f:7f:ad:cd:a4:6b:28:ae:61:be:00:3c:8c:9f:9e:d0:5a:d4:
9a:fc:d0:75:ab:75:a2:31:18:1e:9a:bc:61:02:5e:b7:ec:f0:
26:66:7d:3a:16:83:0f:a3:6f:b8:49:9b:42:f9:b9:47:df:a5:
14:02:d8:5d:ba:b3:a1:1f:d9:81:b7:ae:1c:c4:2b:00:a9:1e:
d4:69:41:9e:96:71:22:e3:69:a5:48:65:7d:7d:65:43:5d:52:
b6:fa:06:8d:03:16:55:87:a6:04:11:46:aa:b0:62:61:48:a7:
90:7d:5f:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:51 2024 by rpki-client on console-fra.rpki-client.org