Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/wk4qcCJcxdr5XAHsIiHAJ66N1G8.roa
File: wk4qcCJcxdr5XAHsIiHAJ66N1G8.roa (raw, json)
Hash identifier: EhhKgWIFwOv/VYoVeNhEmTre+yF/0cWMd8Q50EtmJJM=
Subject key identifier: C2:4E:2A:70:22:5C:C5:DA:F9:5C:01:EC:22:21:C0:27:AE:8D:D4:6F
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 7B
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/wk4qcCJcxdr5XAHsIiHAJ66N1G8.roa
Signing time: Mon 27 Mar 2023 16:12:01 +0000
ROA not before: Mon 27 Mar 2023 16:12:01 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.66.96.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123 (0x7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 27 16:12:01 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=C24E2A70225CC5DAF95C01EC2221C027AE8DD46F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:67:76:70:0a:24:1c:5b:bc:e7:76:f2:1b:3d:
1b:f1:86:83:4d:14:12:5c:f6:45:55:58:f2:1b:fe:
14:af:53:c9:91:cf:1d:bf:06:61:24:00:54:ec:31:
8e:29:31:65:fb:aa:c7:47:ab:64:2c:18:7c:c5:8f:
28:56:85:4c:a1:ec:06:52:74:a2:e3:3d:6f:fa:97:
c1:f4:a3:5f:e3:8f:ec:a3:b1:98:87:70:6e:84:e2:
e0:2c:1a:57:f0:21:ff:92:eb:cc:17:7b:b9:a7:cb:
fe:38:8f:90:58:4b:bc:e2:f4:01:63:9e:e1:4c:0c:
e5:4b:3e:9a:d2:b1:d7:98:1c:36:e0:38:7a:9e:31:
fd:cf:c3:74:a3:80:bf:6a:f7:b9:e0:13:7f:e0:fe:
1e:13:bf:ca:de:6d:e5:e6:02:d7:82:e4:53:80:28:
5b:32:00:f9:68:92:60:c7:ac:8a:2a:a3:35:2c:c0:
aa:68:bd:63:e4:07:bf:01:e8:cf:d8:1f:d2:72:25:
cb:d5:b3:a5:90:0a:b7:00:46:10:33:3f:ea:39:62:
2d:01:2a:7a:20:4a:6d:7c:12:39:a1:f0:39:de:92:
d3:50:b7:6e:94:d5:0e:60:1f:08:44:05:e8:8a:17:
c4:fb:16:a9:b8:6d:51:be:ca:e5:56:2d:ca:22:a5:
d7:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:4E:2A:70:22:5C:C5:DA:F9:5C:01:EC:22:21:C0:27:AE:8D:D4:6F
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/wk4qcCJcxdr5XAHsIiHAJ66N1G8.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.66.96.0/21
Signature Algorithm: sha256WithRSAEncryption
2a:03:4c:2b:4b:e4:3f:2b:72:fb:cb:12:6f:bb:f3:00:81:a2:
20:cf:0f:97:4c:b3:ca:eb:6a:ff:83:a2:9b:bd:e2:96:e5:61:
53:fd:33:94:b3:c3:d7:85:0c:24:8e:8d:30:d8:f3:73:aa:35:
e7:66:1b:45:b2:fc:6f:fa:7c:f3:0e:38:08:fe:01:94:1a:c5:
d2:77:6f:62:26:ab:a3:2a:ff:74:44:0e:69:d0:8a:f5:04:7d:
b9:0d:e0:45:d3:e0:aa:f8:30:13:7a:85:f2:f5:9d:d8:bc:32:
a1:c5:23:56:c4:3d:b7:76:33:43:3d:ad:43:7d:fa:4a:b2:7b:
b9:66:e4:2b:db:6f:b9:8e:7d:3d:de:71:3c:d2:6a:7f:8c:32:
22:94:c8:cb:9d:83:f7:76:77:78:a0:af:07:ee:27:88:0d:7a:
97:8d:9f:dd:9a:e7:ce:ac:3b:b8:b5:a0:05:65:e9:c0:b1:18:
71:2a:ed:0e:ea:9b:2e:8c:f7:c0:b1:38:a0:49:1b:0e:86:bd:
f3:e4:d9:45:cf:fc:f1:5a:f2:d2:eb:76:1d:65:60:b2:89:6e:
db:a8:3c:f7:ae:10:0a:0d:b3:7f:0d:f9:fb:49:7c:10:2a:6f:
5d:eb:bb:2c:aa:fc:d1:f7:4f:62:b7:b2:ad:e9:61:b5:63:52:
da:05:77:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:03 2024 by rpki-client on console-ams.rpki-client.org