Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/OkAc2Jx8N8DcojVUEFJYWmwy1Uc.roa
File: OkAc2Jx8N8DcojVUEFJYWmwy1Uc.roa (raw, json)
Hash identifier: rl2monWqy3PCaobNlLqC99/sPJoVpX4TUQ9/6xqOHvI=
Subject key identifier: 3A:40:1C:D8:9C:7C:37:C0:DC:A2:35:54:10:52:58:5A:6C:32:D5:47
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 025C
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/OkAc2Jx8N8DcojVUEFJYWmwy1Uc.roa
Signing time: Tue 30 May 2023 16:32:34 +0000
ROA not before: Tue 30 May 2023 16:32:34 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.76.148.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 604 (0x25c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:32:34 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=3A401CD89C7C37C0DCA235541052585A6C32D547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:30:55:fc:4f:41:b8:28:e6:73:92:7e:74:bd:
42:66:7e:26:c9:4b:ef:32:ef:44:b9:cc:56:d1:10:
48:a8:6e:50:02:e9:24:c4:ae:2f:66:3e:fc:22:46:
8a:61:6c:c1:68:8b:56:f4:e2:2e:46:88:ca:08:cc:
59:4c:92:5a:72:f1:34:9b:5f:18:13:10:1a:b6:90:
15:70:c6:c1:40:30:12:d7:c0:ec:38:87:2d:05:86:
e5:0f:34:fd:d7:59:32:ca:94:ab:ca:d9:52:45:97:
89:ee:a6:41:ba:10:26:fd:6a:ed:34:0b:fa:b5:94:
2d:d0:8d:83:95:8c:79:8b:f6:ce:18:78:5a:51:67:
c9:47:9a:42:6f:8b:77:7d:7a:fe:82:79:7c:b6:36:
f6:b6:a7:e3:4e:4e:3e:ba:87:cc:8d:35:79:76:ee:
2b:e4:3e:5b:6c:10:0c:2f:7d:11:a5:32:6e:fe:8e:
f9:78:94:c0:8c:6c:ef:fd:7f:cd:0a:57:f1:49:63:
03:b0:20:70:8d:86:14:b1:43:12:96:4a:45:d3:88:
39:49:7a:f0:2c:b8:a1:16:5c:6e:7f:17:b8:00:0f:
2d:61:1d:fe:70:8a:3b:a3:f3:a6:60:91:84:4e:60:
9b:93:e8:50:d0:37:a8:e6:be:79:8e:54:9d:cc:b8:
02:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:40:1C:D8:9C:7C:37:C0:DC:A2:35:54:10:52:58:5A:6C:32:D5:47
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/OkAc2Jx8N8DcojVUEFJYWmwy1Uc.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.76.148.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:ff:34:35:9f:75:2b:27:19:b9:73:f0:22:9e:d2:90:ea:d9:
f3:e5:2b:1d:3d:d3:1a:b8:df:87:ee:c5:8c:13:fb:cc:e4:40:
8d:2f:0f:82:10:25:66:4e:af:40:d3:41:54:5c:96:55:fa:dc:
7c:36:86:96:68:6f:1d:61:bd:14:ea:af:6b:08:10:b9:e0:0d:
47:56:47:3c:ca:eb:73:19:e5:ad:1b:d9:17:ad:78:81:93:9e:
91:29:64:64:5d:ee:0b:f5:27:df:72:0d:88:b8:2c:18:70:f6:
f5:2a:9a:5e:3f:ab:40:69:9b:3e:96:2e:87:7f:cb:ee:ec:a0:
07:71:8a:47:fa:d4:16:f7:ad:59:ca:33:b4:4d:0d:3f:bc:be:
0f:db:a2:6e:71:09:f1:18:21:63:00:ae:0c:a2:ba:f7:01:b0:
ce:92:e5:2a:9c:30:81:4b:55:e7:c9:f4:25:39:8f:c2:e0:d8:
7c:eb:15:a5:a4:0b:86:2c:ae:d2:5c:43:e7:96:80:54:16:43:
ed:9e:19:f7:73:af:80:23:9c:31:bf:4b:2b:a7:20:0b:4d:2f:
b7:dd:ce:69:73:5f:a3:eb:3d:3f:cd:55:50:cf:80:83:4f:d4:
93:c2:7b:18:e3:f2:30:c9:13:1c:f6:be:8b:50:92:8f:07:a2:
7e:41:a4:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:51 2024 by rpki-client on console-fra.rpki-client.org