Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/bDTZVHcVs7pKrBrOvsQQ79da2n0.roa
File: bDTZVHcVs7pKrBrOvsQQ79da2n0.roa (raw, json)
Hash identifier: vehfmlL2oKveqm3FSu8ofLJeAyQEFTzIDAUy4XlqPuk=
Subject key identifier: 6C:34:D9:54:77:15:B3:BA:4A:AC:1A:CE:BE:C4:10:EF:D7:5A:DA:7D
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 01D9
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/bDTZVHcVs7pKrBrOvsQQ79da2n0.roa
Signing time: Wed 24 May 2023 16:40:36 +0000
ROA not before: Wed 24 May 2023 16:40:36 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.75.232.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 473 (0x1d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:40:36 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=6C34D9547715B3BA4AAC1ACEBEC410EFD75ADA7D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:05:5f:db:45:68:62:09:cf:cf:4d:9a:c8:40:
73:aa:8a:07:4e:e9:4f:39:bf:88:24:1f:5f:df:61:
12:31:44:2b:49:3e:dc:c5:29:e9:67:e8:31:a1:47:
fc:67:fe:b2:32:b0:2d:36:f6:36:29:1e:9a:0d:39:
1c:43:cf:d1:20:41:4e:4e:26:85:19:6d:f0:d5:5f:
e5:27:87:b8:19:8c:b4:f0:b9:5a:af:d1:0d:31:7d:
2f:ae:34:30:42:13:d8:cf:e4:2a:fc:77:f4:d2:0c:
b9:7e:6f:21:3e:30:97:6d:29:c3:b2:9c:29:e0:87:
fb:36:f7:ab:6e:3a:c4:8c:f7:87:04:77:d3:8f:7e:
12:41:2a:25:70:0b:4c:86:81:28:fa:30:88:90:d7:
bf:22:31:9b:5d:01:50:67:d8:45:a6:22:d2:38:1f:
7d:87:18:f3:1b:8a:d1:c0:63:1c:aa:8e:57:08:27:
96:90:15:55:1c:ec:22:15:69:4d:78:79:bf:dc:ca:
12:d5:39:71:77:2d:c2:ff:82:4f:4e:ce:ed:fe:48:
4e:ef:b7:ab:71:c1:76:c1:c0:51:0a:78:d3:da:94:
60:50:ce:d4:c6:7f:0e:e0:40:e1:d1:b2:83:f5:6b:
d8:3d:2a:12:84:d9:51:d2:2f:49:d5:84:c0:77:89:
16:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:34:D9:54:77:15:B3:BA:4A:AC:1A:CE:BE:C4:10:EF:D7:5A:DA:7D
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/bDTZVHcVs7pKrBrOvsQQ79da2n0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.75.232.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:25:d4:dd:57:08:f2:78:35:4b:56:99:54:1d:b1:2a:bb:37:
6a:4b:27:bb:ed:bf:f6:f6:dc:dd:e7:25:ae:c7:6e:63:ce:b0:
fd:1e:15:69:82:a2:96:10:86:75:0b:b9:16:ae:05:e7:e5:d3:
69:d9:63:e8:86:62:bb:bd:7f:7b:54:de:7f:27:4a:dd:6a:09:
aa:4d:8d:bc:e0:c7:27:01:16:73:00:d1:f0:aa:84:f1:3f:2e:
47:f6:37:e4:e0:5f:0c:44:90:ed:11:2e:95:d7:d4:92:f3:5b:
92:20:07:6a:47:03:2e:45:28:8e:e8:1e:fd:b8:d0:64:84:33:
e4:21:70:a5:17:86:f1:08:3b:36:e7:15:64:aa:68:d2:60:f5:
8c:e0:30:d7:06:d7:e6:b2:42:ee:a4:63:4d:a9:1f:3b:56:f6:
35:79:a2:43:f2:11:90:74:3a:49:64:76:44:ff:0c:1c:17:37:
8f:75:6e:74:3e:ff:d3:51:1e:f0:74:9f:d5:bc:e1:a3:43:46:
47:8b:f1:d3:07:6d:aa:e3:49:cf:6e:28:6f:74:c5:ad:05:bb:
da:40:b4:e5:5c:34:6c:60:df:cd:dd:12:bd:2b:ad:1a:93:57:
14:5c:c0:3b:e2:0b:81:54:ba:91:18:bc:d0:4c:4a:37:7e:0b:
88:17:10:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:02 2024 by rpki-client on console-ams.rpki-client.org