Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/s4_wmtJwAUhUdtbcK-xtMS4khts.roa
File: s4_wmtJwAUhUdtbcK-xtMS4khts.roa (raw, json)
Hash identifier: 6kpzZ82M7mEQsNQnTT+9tsfI1cimKIpTKozCCzjgLJo=
Subject key identifier: B3:8F:F0:9A:D2:70:01:48:54:76:D6:DC:2B:EC:6D:31:2E:24:86:DB
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 023B
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/s4_wmtJwAUhUdtbcK-xtMS4khts.roa
Signing time: Tue 30 May 2023 16:32:21 +0000
ROA not before: Tue 30 May 2023 16:32:21 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.76.72.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 571 (0x23b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:32:21 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=B38FF09AD27001485476D6DC2BEC6D312E2486DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:df:55:0a:89:81:1d:1b:ae:45:e4:42:2a:f8:
ae:16:09:c5:48:de:d9:25:fc:9b:53:44:df:3d:64:
80:50:fa:ae:80:0b:b2:9e:9a:e7:11:18:c9:ac:fe:
37:6b:d1:6d:0d:1b:d2:96:31:88:57:a2:9a:10:a4:
d3:72:cc:91:58:a5:f9:3b:ba:85:fa:7e:77:97:81:
c1:84:23:8b:01:2e:ce:75:40:b2:4a:1d:f3:2c:88:
6f:09:61:24:61:52:ab:56:aa:69:62:a2:1d:60:0e:
69:a2:40:b4:05:2c:b2:f1:b1:97:37:c5:a9:44:d4:
b1:57:27:37:2a:b2:07:75:49:61:85:e6:dc:88:c7:
00:b6:8d:9a:0f:8f:c1:6a:dc:11:a8:7f:a1:49:a6:
f0:88:fb:ad:03:64:df:72:17:0e:9e:9d:1f:9d:d0:
2c:6b:b8:04:de:19:fd:85:6e:fd:d6:1f:ef:ae:a2:
f5:9c:77:9e:b3:90:8a:a2:35:8b:21:d6:a6:f2:97:
1b:62:0f:cb:2f:77:21:8d:a5:ad:05:ea:3c:15:59:
e2:c8:42:8a:4f:aa:d9:f8:9d:dc:bb:e7:02:59:56:
1d:73:df:7c:12:a4:d4:9d:19:ca:11:93:df:d5:fd:
e8:2b:60:6a:a8:cb:54:ae:33:aa:84:a3:a6:93:99:
b0:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:8F:F0:9A:D2:70:01:48:54:76:D6:DC:2B:EC:6D:31:2E:24:86:DB
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/s4_wmtJwAUhUdtbcK-xtMS4khts.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.76.72.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:22:53:e7:61:71:6f:56:ed:21:68:d5:85:f7:9b:cd:ea:3f:
24:b9:f9:43:6e:fe:af:c4:e7:68:78:c6:eb:ba:0a:63:7d:e6:
be:00:b4:1f:a8:1d:40:92:f7:39:db:26:c2:8c:ba:b0:6d:c2:
c8:68:12:6b:9a:07:99:70:f5:17:aa:09:64:94:0e:22:96:b9:
fa:8d:77:64:5b:0c:9c:f7:e8:ba:70:ce:bd:fb:06:44:fb:0b:
cf:4c:44:66:2c:e2:19:6d:42:f9:04:db:80:ef:ee:a0:1d:61:
d6:38:53:a9:f7:2c:65:e8:1b:93:dd:d9:ce:33:f8:e9:91:1f:
8f:ae:be:ba:86:6d:09:1a:9e:51:ba:83:23:e3:ba:b6:cb:bc:
6f:17:7a:4d:f9:15:c4:74:22:76:0a:6b:23:7e:1a:26:db:f8:
48:e5:33:b3:9b:29:66:bc:b1:66:bd:d9:17:09:56:8a:bc:f8:
cc:1e:e8:cf:64:47:d7:59:d2:0b:31:42:ed:9b:29:44:4c:bf:
e1:19:82:39:e6:38:0a:92:6f:95:8b:f7:a9:24:6a:81:f3:5e:
99:2a:c0:e8:34:ab:30:64:5b:dd:58:f2:a9:2f:aa:30:19:5b:
2c:89:5d:4c:0f:45:b8:c2:4b:b0:f5:1d:9a:8d:e5:99:cb:13:
63:df:4d:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:52 2024 by rpki-client on console-fra.rpki-client.org