Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/w4En0dH_LgdJ1y8H44a4gZp0DJU.roa
File: w4En0dH_LgdJ1y8H44a4gZp0DJU.roa (raw, json)
Hash identifier: A3xBhqOUulYPS4ot7+/bRoVb2MAKrKswE/AfIQj0kTg=
Subject key identifier: C3:81:27:D1:D1:FF:2E:07:49:D7:2F:07:E3:86:B8:81:9A:74:0C:95
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 82
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/w4En0dH_LgdJ1y8H44a4gZp0DJU.roa
Signing time: Mon 27 Mar 2023 16:12:04 +0000
ROA not before: Mon 27 Mar 2023 16:12:04 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.66.104.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130 (0x82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 27 16:12:04 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=C38127D1D1FF2E0749D72F07E386B8819A740C95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c1:2a:25:e4:bd:bf:f4:57:2b:e8:7e:3f:77:
02:0a:b1:09:0b:b5:7a:b8:44:00:20:05:7f:58:bd:
35:ab:d0:1d:fb:31:c8:5d:25:97:06:a5:2c:87:ac:
5b:c4:a8:c1:09:a7:e3:82:d3:e1:c0:12:6a:8f:3b:
12:23:87:23:3b:56:6e:23:d6:b8:a6:77:bf:fc:03:
1f:b4:5c:a0:72:5f:53:16:b1:b3:6d:36:be:dc:2c:
a3:e4:13:af:15:33:fc:6d:ec:cf:bb:da:70:6b:a2:
f4:ed:1f:36:18:50:1e:1c:1c:2b:2b:e2:d9:c5:2b:
e9:5b:bc:33:9d:8e:83:88:31:f9:8d:2e:7a:63:e8:
ca:19:94:54:61:e4:77:32:6a:12:60:ae:96:74:fd:
ff:13:57:ea:5d:f8:6e:fb:fd:d0:49:d5:62:09:9b:
b9:13:6d:bb:87:f7:b4:d6:14:33:9b:62:af:06:33:
8e:b8:13:26:eb:6f:01:0a:a2:8d:3d:f9:87:47:f5:
9b:d3:c5:48:7a:52:c5:5c:c3:f1:2d:a5:02:46:c5:
ac:39:5c:1c:5a:81:53:88:e4:c9:1e:1c:e3:6a:b0:
fe:2b:bb:33:bf:dc:10:9d:53:9b:67:f5:54:67:19:
29:17:ad:c7:56:0e:7c:ba:82:db:94:bd:c7:0f:5f:
f0:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:81:27:D1:D1:FF:2E:07:49:D7:2F:07:E3:86:B8:81:9A:74:0C:95
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/w4En0dH_LgdJ1y8H44a4gZp0DJU.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.66.104.0/23
Signature Algorithm: sha256WithRSAEncryption
87:f5:d1:3e:df:de:89:1f:3d:8c:45:eb:d9:4a:45:da:4f:65:
b4:ad:00:62:81:33:aa:4c:61:b6:aa:c0:6d:b5:c0:6b:8b:8d:
e6:50:57:f7:97:fa:c1:ff:54:80:77:c0:23:ab:8c:1f:f2:96:
ea:29:80:b9:f3:e5:06:56:b3:1f:21:0f:3b:5b:3f:67:66:e5:
05:c3:1d:4f:a7:db:05:54:a2:62:6f:da:02:fe:c8:23:49:26:
57:ba:7a:f5:23:04:2e:28:29:13:54:1b:45:4a:ca:19:2f:87:
3e:b7:c9:38:04:f4:8d:13:f1:d7:11:52:79:d0:9b:79:9e:71:
da:04:2c:46:ff:ab:a0:49:41:a0:48:57:2d:28:84:dc:ec:d0:
1e:94:e9:12:63:11:38:33:9b:c2:8f:3b:db:24:15:34:c1:6d:
6b:56:54:42:11:1b:fe:97:81:13:c1:50:a5:09:8e:a0:2d:20:
50:5f:86:53:0e:e3:bd:c5:72:83:e5:75:50:4f:df:32:04:77:
5b:03:30:b2:51:b8:37:f2:01:99:84:2c:28:13:19:8b:02:a5:
d2:16:e1:5d:c9:1c:ba:39:4c:de:94:9c:f2:c4:c8:0e:9b:29:
b7:ab:b4:42:e6:8c:ae:11:b0:cf:3b:b2:d8:ee:ae:85:e8:20:
bb:90:8e:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:52 2024 by rpki-client on console-fra.rpki-client.org