Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/hUKdo1y28dCw4fzS6WjVwQ54sQw.roa
File: hUKdo1y28dCw4fzS6WjVwQ54sQw.roa (raw, json)
Hash identifier: KLgOkCp3AJRURzotVEclZDtwu1TBxVsrckrPLyIV05E=
Subject key identifier: 85:42:9D:A3:5C:B6:F1:D0:B0:E1:FC:D2:E9:68:D5:C1:0E:78:B1:0C
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 012E
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hUKdo1y28dCw4fzS6WjVwQ54sQw.roa
Signing time: Wed 24 May 2023 16:30:21 +0000
ROA not before: Wed 24 May 2023 16:30:21 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.75.204.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 302 (0x12e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:30:21 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=85429DA35CB6F1D0B0E1FCD2E968D5C10E78B10C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:b8:cb:ea:d1:37:be:6c:e1:11:92:9a:a5:06:
61:65:71:8a:8d:18:e4:12:f8:6d:b6:3f:17:be:1a:
88:f4:eb:b3:a5:99:52:8f:a6:95:3d:8c:b5:9e:7b:
c0:05:3f:05:06:03:7c:92:70:0a:94:e8:66:1f:9b:
19:ec:59:48:71:90:a7:a2:9b:1f:08:2b:bd:35:85:
f0:25:f3:6d:04:22:61:a5:e8:33:25:45:1a:08:b6:
38:f7:d1:be:e6:79:50:0b:34:23:31:fd:cd:ca:bd:
72:80:dc:fe:c7:5c:75:07:b6:f7:7c:9c:3e:5b:90:
be:0b:35:a3:68:4b:da:b9:94:32:9b:84:21:83:f4:
66:e3:ac:fe:7c:1e:d4:49:4d:c9:b8:3d:a8:f5:68:
d0:0a:07:ab:92:17:30:19:13:ed:ba:97:c4:2a:26:
55:c8:15:a2:16:c3:86:e6:e2:eb:74:c8:2a:8d:02:
70:5e:d0:21:eb:08:4f:f6:76:ba:a3:e1:b6:80:7b:
aa:2c:ee:c6:06:55:36:8a:41:7f:b0:98:56:38:22:
ba:56:4d:b5:1d:1d:7c:a7:29:be:99:88:8a:0e:2a:
cd:4a:00:4b:ab:36:45:2c:71:bc:36:9b:f2:b5:23:
24:78:05:e4:1e:ac:87:37:4c:dc:78:fd:14:a8:c3:
5e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:42:9D:A3:5C:B6:F1:D0:B0:E1:FC:D2:E9:68:D5:C1:0E:78:B1:0C
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hUKdo1y28dCw4fzS6WjVwQ54sQw.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.75.204.0/22
Signature Algorithm: sha256WithRSAEncryption
92:44:c2:93:da:8f:64:19:87:00:99:16:8f:95:e7:26:21:83:
e5:0d:c8:43:fb:60:55:ad:84:a9:37:d9:09:a1:79:4d:25:b3:
89:a1:1d:45:47:77:a2:c8:b5:8e:cf:74:fb:73:b2:ea:43:b8:
61:30:6b:ea:ac:fc:a9:cd:5f:6a:e5:23:10:38:2f:3a:96:11:
72:fc:ac:28:93:cd:c2:e3:7b:cf:68:78:a7:de:65:6f:a8:5a:
6d:f5:0f:fb:d8:f4:98:fb:ba:1c:fd:40:5a:9c:be:ca:6c:38:
2c:76:a4:ed:31:9e:fe:d4:cf:63:93:89:eb:7f:7a:22:42:49:
f2:08:23:3e:9e:de:ee:ab:fe:ec:19:37:30:32:b1:d8:02:67:
92:0e:38:31:cd:41:50:10:ed:97:14:35:19:a7:78:32:35:0c:
34:ba:fb:dd:4a:34:ca:b6:c9:1a:4a:4c:eb:88:62:48:b6:bc:
5e:6d:75:76:30:6e:43:79:39:90:42:f4:33:20:4d:54:6a:e9:
3c:76:bf:99:c3:36:4a:5e:a9:10:d5:ae:2d:9a:93:d2:03:16:
ce:20:d4:e1:fe:89:5d:db:f0:88:66:11:70:84:d5:69:92:6a:
df:a9:26:b0:dd:fc:20:e5:8e:d9:56:54:b1:d5:07:1e:dd:c2:
70:15:62:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:52 2024 by rpki-client on console-fra.rpki-client.org