Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/hE4MSVFv0PQMpeuVh9Gre3-LbnQ.roa
File: hE4MSVFv0PQMpeuVh9Gre3-LbnQ.roa (raw, json)
Hash identifier: NU8IDQ3hTcdrTY5ylbWI1AtTnmUN138LQUJNuyL96IY=
Subject key identifier: 84:4E:0C:49:51:6F:D0:F4:0C:A5:EB:95:87:D1:AB:7B:7F:8B:6E:74
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 02A5
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hE4MSVFv0PQMpeuVh9Gre3-LbnQ.roa
Signing time: Tue 30 May 2023 17:17:25 +0000
ROA not before: Tue 30 May 2023 17:17:25 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 219.122.72.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 677 (0x2a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 17:17:25 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=844E0C49516FD0F40CA5EB9587D1AB7B7F8B6E74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:78:6c:58:bb:a2:ae:69:35:e7:be:30:d0:c0:
0a:2b:f2:12:c3:92:5c:63:df:e8:75:d1:fe:b4:db:
8f:36:02:4e:8c:54:aa:a5:89:45:b3:fc:09:fe:4e:
a0:6c:82:01:f2:ec:c1:e1:99:8f:83:82:ff:d5:5d:
ee:0e:7d:d2:78:e7:c0:fd:41:79:11:a5:59:45:6a:
25:ad:46:c2:13:25:03:61:4a:ec:62:ca:b4:4f:a7:
e2:4e:01:b0:f2:1b:b0:a7:19:2c:4f:63:12:1f:64:
38:d6:43:3c:75:b4:a2:d3:63:5e:60:08:09:e4:78:
41:c5:1c:a6:1e:47:5c:cd:60:ec:77:fe:fa:20:7b:
9c:fd:eb:77:87:60:d4:39:2e:84:b4:97:1e:ca:a2:
06:45:31:2a:e2:70:a0:b8:86:66:7d:b3:b6:12:89:
74:5c:dc:7b:b5:ae:3f:d3:06:57:88:97:d1:57:25:
1d:f8:15:2e:6d:03:b6:e3:32:a1:32:87:0c:84:3a:
74:4f:21:28:d9:22:0f:1d:b0:1d:bd:60:a6:17:8f:
c2:77:fb:fb:6a:f4:90:94:cf:a0:88:cb:2b:31:b7:
4f:58:3a:95:cf:6d:3d:2d:68:7b:2c:56:2c:38:e4:
44:74:f0:45:31:83:c5:d0:f2:3a:1d:ad:1b:bc:ea:
b2:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:4E:0C:49:51:6F:D0:F4:0C:A5:EB:95:87:D1:AB:7B:7F:8B:6E:74
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hE4MSVFv0PQMpeuVh9Gre3-LbnQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
219.122.72.0/21
Signature Algorithm: sha256WithRSAEncryption
9d:9f:b6:0a:fb:b9:5e:7a:71:94:82:e1:ef:a6:02:af:c3:e0:
ee:75:38:01:72:4a:86:c3:a2:fc:70:8e:cd:5a:25:2f:ac:4a:
75:fb:19:ae:98:cb:03:85:e1:09:21:ae:a8:ef:46:57:b3:b0:
dd:d7:56:cb:33:b3:b1:83:40:5f:fa:71:ec:1a:19:5c:fe:c9:
71:53:97:2f:36:cc:da:ca:20:d0:36:21:a9:0c:b0:85:3d:f9:
54:39:ef:07:d8:86:04:14:67:ac:71:d2:99:df:fd:4b:5c:8c:
49:c0:e2:3b:06:a8:af:15:06:86:cf:31:45:1f:7b:51:66:07:
3c:8c:30:14:46:7a:51:5a:8a:31:ab:00:ca:b1:1c:07:4d:2b:
15:79:54:a2:13:76:2e:00:ef:58:95:b7:fe:18:23:e5:c5:b6:
f7:db:a6:72:2f:d3:5a:ef:d0:5c:81:a1:da:2b:75:da:cf:c8:
6d:89:0c:94:fc:8a:f5:bf:0a:3d:be:30:9b:26:03:e5:d2:76:
ea:4b:d7:3e:7e:9a:74:fc:3e:0f:07:20:b0:8f:5a:de:90:c3:
31:28:2e:93:85:50:35:d2:da:f8:c9:c2:f2:ae:12:db:20:11:
a5:91:f3:90:df:0f:0c:28:3b:45:17:c9:75:58:22:ab:d4:c2:
87:37:33:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:02 2024 by rpki-client on console-ams.rpki-client.org