Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/NbgEqUwKCxmBcr2EqUt1gSxZfx0.roa
File: NbgEqUwKCxmBcr2EqUt1gSxZfx0.roa (raw, json)
Hash identifier: 37XcKheoGyKK8Rva1ayuNiYyH4rIMEWrCxiZBvxMuwI=
Subject key identifier: 35:B8:04:A9:4C:0A:0B:19:81:72:BD:84:A9:4B:75:81:2C:59:7F:1D
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 58
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NbgEqUwKCxmBcr2EqUt1gSxZfx0.roa
Signing time: Mon 27 Mar 2023 16:04:29 +0000
ROA not before: Mon 27 Mar 2023 16:04:29 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.75.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88 (0x58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 27 16:04:29 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=35B804A94C0A0B198172BD84A94B75812C597F1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:70:4c:8f:49:99:74:41:b6:a6:df:aa:57:f9:
b9:c1:4a:55:2e:cd:17:1a:5a:99:d8:63:38:13:13:
d6:75:53:24:0a:ec:21:a6:42:da:86:4c:b5:d4:f8:
52:a4:db:d3:3a:49:68:0f:69:12:2f:91:c3:47:22:
ee:f4:4b:d0:1f:74:0c:23:fe:58:d3:95:10:16:6e:
69:26:80:d7:4f:22:f5:49:17:ce:46:44:37:6c:c2:
59:c8:64:45:e2:ac:38:2b:3d:65:c2:8b:13:7c:2d:
62:c5:de:88:90:15:3d:df:7b:8b:1a:96:37:ec:7e:
1f:68:36:e9:7d:86:7b:ed:59:77:cb:9c:be:de:f1:
7f:69:60:21:10:83:c2:2c:c3:eb:7c:ae:f6:3a:ca:
28:43:5c:c1:25:5b:d2:59:b4:18:1b:a7:9e:68:9f:
88:07:83:e9:78:4a:b0:ab:a3:25:2c:14:38:1f:48:
5f:e2:78:06:8e:4c:cf:78:58:8d:53:b2:cd:09:c1:
8c:50:be:c8:c3:8d:86:30:74:a7:50:0c:71:b0:70:
80:0d:e8:96:ad:d7:fc:76:6a:e3:3a:8e:23:ea:4e:
83:4a:de:28:39:ef:ab:9f:04:49:a7:6d:f2:b7:f6:
62:7c:3f:ec:c7:89:ff:85:d0:64:d4:79:ab:62:7f:
7c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:B8:04:A9:4C:0A:0B:19:81:72:BD:84:A9:4B:75:81:2C:59:7F:1D
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NbgEqUwKCxmBcr2EqUt1gSxZfx0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.75.3.0/24
Signature Algorithm: sha256WithRSAEncryption
43:32:c8:8f:1d:e1:d9:8c:9a:fa:71:20:de:73:ac:1d:3d:a2:
d1:a5:ee:d1:97:41:6d:15:71:09:f9:f7:ce:b8:a6:92:ee:59:
40:03:95:89:dc:c9:79:74:c7:f4:e7:6a:bf:a7:37:ed:ad:c0:
31:98:51:f0:c3:75:a9:e3:2b:5f:30:d4:bf:7b:82:35:d0:ec:
44:64:54:6b:96:fe:cf:0c:c1:da:85:9f:ee:61:ec:fd:9e:59:
45:30:b6:82:a6:be:65:04:f2:2d:19:32:5f:af:b2:9a:1d:ca:
c4:ca:f0:2a:a0:d0:87:f2:7b:26:3e:bf:19:40:a2:96:e3:b8:
c9:de:46:e3:d8:65:d4:4f:c2:82:ef:e8:d0:54:3c:c9:2d:0d:
5a:e6:ab:1f:88:6e:3d:b6:83:8f:d6:38:34:c9:8f:b0:8d:eb:
b9:49:dd:fa:d6:23:07:9a:91:ff:3b:d2:b8:a3:ad:26:ef:7d:
d0:51:6e:03:91:67:36:39:08:40:7f:b3:0c:f5:76:3d:d3:fd:
2b:34:5b:c1:f5:e7:5f:0c:14:c1:bf:06:81:84:cc:c6:26:71:
aa:4b:70:e6:ca:5f:70:f0:74:ef:8d:86:ce:7b:aa:83:0b:3f:
af:5a:e6:55:8f:d6:51:82:12:a6:66:2c:ce:02:b4:39:66:29:
ac:7e:b0:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:51 2024 by rpki-client on console-fra.rpki-client.org