Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/cGm-5qlYJVPmVbYIVZRcofrcXko.roa
File: cGm-5qlYJVPmVbYIVZRcofrcXko.roa (raw, json)
Hash identifier: 29dF5GISnO0D1lwpuC74zufMw0OGp64r1fFle5eOjhc=
Subject key identifier: 70:69:BE:E6:A9:58:25:53:E6:55:B6:08:55:94:5C:A1:FA:DC:5E:4A
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 02C5
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cGm-5qlYJVPmVbYIVZRcofrcXko.roa
Signing time: Tue 30 May 2023 17:17:38 +0000
ROA not before: Tue 30 May 2023 17:17:38 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 211.14.78.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 709 (0x2c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 17:17:38 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=7069BEE6A9582553E655B60855945CA1FADC5E4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a2:1f:be:4b:81:dc:9a:b0:1f:aa:5b:0d:b2:
88:b5:44:97:0d:17:2c:9e:41:7d:15:ba:af:3d:05:
de:55:88:9b:19:7c:85:08:c1:91:d7:f1:72:7f:d4:
14:8d:a5:39:e2:fb:13:e9:17:13:ed:4a:6f:6f:92:
c9:0a:82:60:8e:03:3e:10:a8:21:b4:97:1a:aa:1a:
fc:ee:f3:9c:3c:3d:55:be:d8:ba:7f:80:61:8f:f8:
5c:aa:ef:87:c3:f0:21:e8:4e:57:c9:98:11:8c:87:
a7:b0:e3:41:52:87:c1:b3:7f:63:3b:48:1b:ef:73:
66:87:68:03:8b:ef:de:62:5d:89:38:be:7f:67:f9:
5c:4f:81:f6:d0:25:ac:9e:56:8c:63:9f:38:97:5a:
cf:0c:60:69:c2:0e:94:9a:99:92:77:43:27:04:34:
11:3d:63:d4:28:dd:6f:b1:5e:45:9e:cd:e9:21:ad:
ad:8a:cb:c1:81:b3:f0:d2:53:66:ab:dc:a5:ce:a2:
46:c0:42:1f:26:18:7d:f0:66:31:22:e0:a2:6d:d5:
a4:f1:ce:2a:f1:77:60:36:38:5a:36:66:79:e1:fd:
46:c1:aa:c2:31:21:8e:62:df:17:36:5b:e0:d7:ce:
e9:29:a7:e9:09:27:ac:78:1f:e1:1d:ed:0f:71:ba:
76:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:69:BE:E6:A9:58:25:53:E6:55:B6:08:55:94:5C:A1:FA:DC:5E:4A
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cGm-5qlYJVPmVbYIVZRcofrcXko.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
211.14.78.0/23
Signature Algorithm: sha256WithRSAEncryption
b2:04:bc:c9:71:d9:4d:48:86:28:f8:a7:84:eb:5b:ee:21:95:
5c:a5:b9:9c:d3:1c:9f:b6:61:e1:ef:93:cc:1e:f3:fb:ab:af:
6f:ad:5f:db:e4:08:b3:16:da:58:0a:c1:97:ba:dd:02:39:28:
c3:7b:d1:6c:0c:bc:3d:32:e5:b2:59:72:20:7e:98:3c:f5:ea:
48:2e:d4:24:7d:63:9b:c4:72:71:9f:a5:bd:6b:cc:54:cf:b5:
3f:6a:ec:d5:72:36:1f:8b:bb:0a:99:49:56:e8:f1:aa:f9:f9:
10:e0:d7:cb:90:ac:9f:fa:5c:13:35:86:da:6e:5b:84:f1:89:
d0:4f:7e:ab:1f:fb:cc:60:6b:4e:f3:d0:66:38:93:55:37:90:
3e:84:9f:eb:41:07:ca:db:8d:97:e3:66:71:5c:2a:0e:c9:f1:
45:7f:6b:d8:6d:e7:cc:03:57:1f:4f:e1:4e:e9:52:11:65:98:
28:46:44:f3:46:d2:cf:a7:9e:33:ac:a7:ec:1a:07:1e:68:6f:
bd:df:32:bd:08:fa:be:18:ab:c2:49:cf:25:50:d5:e9:f0:7f:
9a:c1:76:45:57:26:82:a6:ab:f8:d0:5e:ad:87:55:05:5d:a1:
df:cc:59:37:bf:ce:2a:6b:7d:6c:52:e0:11:35:a9:33:0d:f4:
3a:a2:e6:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:52 2024 by rpki-client on console-fra.rpki-client.org