Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ohT8e86UkQWxf-1HTfzQQw7wWbk.roa
File: ohT8e86UkQWxf-1HTfzQQw7wWbk.roa (raw, json)
Hash identifier: ve2+M5vbHmDTH36Mao8pdZ7AXHqIP4ekNg4VZd7+AfI=
Subject key identifier: A2:14:FC:7B:CE:94:91:05:B1:7F:ED:47:4D:FC:D0:43:0E:F0:59:B9
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 021C
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ohT8e86UkQWxf-1HTfzQQw7wWbk.roa
Signing time: Tue 30 May 2023 16:30:28 +0000
ROA not before: Tue 30 May 2023 16:30:28 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.66.20.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 540 (0x21c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:30:28 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=A214FC7BCE949105B17FED474DFCD0430EF059B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:76:51:26:8e:f2:dd:b3:b8:33:90:aa:0a:db:
ed:52:4c:a0:a4:ba:af:51:c4:49:77:02:48:f4:43:
d6:29:e0:e7:68:40:e9:cc:a3:d8:18:a2:18:01:8d:
d3:8c:a0:6f:34:b3:04:f8:74:10:34:61:ac:eb:ff:
cf:c0:01:a4:9f:6e:6b:8f:17:dc:46:c8:3f:7c:9b:
74:b3:25:b8:c5:ea:89:fd:e2:59:c0:16:7b:71:3a:
bd:2a:db:0f:55:53:1f:cc:0c:35:03:c4:43:0a:d6:
77:43:f2:06:2c:d0:41:cb:07:f2:8b:b4:f1:83:e1:
55:b6:8c:db:d2:24:30:27:ef:83:2e:78:5b:02:c4:
f0:36:97:7b:3d:94:a3:19:18:fb:08:d7:2e:34:0b:
80:93:93:bb:18:94:10:f3:a7:3e:c3:1a:87:4f:09:
c2:e5:c1:30:58:34:31:02:57:b8:c6:98:96:c8:f2:
e9:db:17:72:b0:39:30:ae:67:03:79:e0:a2:0a:f3:
60:0a:24:3e:64:44:16:5f:e2:9d:32:cd:2a:64:d3:
4b:21:ec:ca:19:3c:16:44:e9:10:ac:cd:73:b2:05:
45:a9:89:ff:7a:7f:bb:85:86:72:60:27:b8:ab:f0:
1a:b1:ad:8b:35:54:dd:39:6a:75:5a:1f:44:c6:6a:
d9:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:14:FC:7B:CE:94:91:05:B1:7F:ED:47:4D:FC:D0:43:0E:F0:59:B9
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ohT8e86UkQWxf-1HTfzQQw7wWbk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.66.20.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:29:20:d9:08:37:88:6c:4f:5e:35:59:d0:13:3c:f4:b5:81:
fd:b5:cd:39:28:23:e9:cf:9c:e2:3c:bf:eb:7f:42:11:f6:45:
cf:13:0f:f2:cd:0b:6c:6d:1e:1e:79:c8:5f:42:69:45:27:7c:
5c:e1:fb:00:76:38:f0:6c:78:89:50:31:86:4b:b7:f0:e6:18:
97:4e:8b:c4:0b:2f:67:4c:41:a4:60:6c:46:90:ea:d0:73:61:
5d:4d:1a:cc:ee:52:a4:d5:5b:ca:b7:fa:78:3a:44:a5:09:36:
35:67:1c:ef:58:a8:d8:8f:c1:50:a0:a6:22:84:0a:d8:4c:7f:
40:50:96:09:66:71:39:e1:e2:bd:86:70:a3:f9:45:5a:4b:62:
a9:7d:a5:87:06:db:68:20:ce:1c:cd:52:48:fd:01:b6:da:de:
cb:60:42:5a:1c:d9:a9:2a:44:64:a6:2e:37:51:f3:50:1d:aa:
2f:ca:87:94:d3:4c:f2:58:2a:d1:e6:8d:f0:a2:84:d9:ec:10:
15:9c:ad:03:a5:07:39:45:5a:f5:5b:c5:55:ee:df:08:d4:73:
84:ce:aa:04:72:ae:2c:a1:89:cd:2d:06:60:64:37:a4:6a:50:
3f:54:fd:c9:13:0b:cb:f3:40:1d:ce:fc:27:96:d5:17:16:be:
9d:57:4e:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:52 2024 by rpki-client on console-fra.rpki-client.org