Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/354/DXGs02n8eOdLbO7FRTSGx1wMtes.roa
File: DXGs02n8eOdLbO7FRTSGx1wMtes.roa (raw, json)
Hash identifier: n2ODWCdVld4B96g9xsMboaYGMaUcr2/4zbl56v1omeQ=
Subject key identifier: 0D:71:AC:D3:69:FC:78:E7:4B:6C:EE:C5:45:34:86:C7:5C:0C:B5:EB
Certificate issuer: /CN=86A0BE02D491F35A561CC4904BEB7EB1AD4EC2FF
Certificate serial: 32
Authority key identifier: 86:A0:BE:02:D4:91:F3:5A:56:1C:C4:90:4B:EB:7E:B1:AD:4E:C2:FF
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hqC-AtSR81pWHMSQS-t-sa1Owv8.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/DXGs02n8eOdLbO7FRTSGx1wMtes.roa
Signing time: Thu 13 Apr 2023 09:53:00 +0000
ROA not before: Thu 13 Apr 2023 09:53:00 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9607
IP address blocks: 208.111.48.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50 (0x32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86A0BE02D491F35A561CC4904BEB7EB1AD4EC2FF
Validity
Not Before: Apr 13 09:53:00 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=0D71ACD369FC78E74B6CEEC5453486C75C0CB5EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:46:96:bd:6c:59:60:95:3e:9c:d7:48:99:9e:
56:30:37:50:76:18:58:06:e2:73:7d:a6:6a:8f:f7:
d8:ca:7a:45:db:11:96:85:b9:2b:bd:c5:eb:a5:e7:
08:f8:43:f7:1b:c3:fd:5e:25:70:fb:b8:a4:12:87:
9d:24:9d:d6:39:b6:d2:9c:07:f7:d3:0c:69:7c:8d:
cd:9a:33:d0:8b:14:5a:3d:31:6f:b8:98:6e:99:dc:
be:e9:b9:67:1d:46:1f:b8:7f:1a:16:c2:89:de:28:
67:95:4b:38:79:7d:6d:18:61:8d:48:75:9d:ad:61:
6a:b9:13:e3:8d:5c:db:82:3e:cc:1a:d7:06:4e:ef:
6c:2f:0c:c0:f6:06:65:00:ad:f2:9b:19:5f:83:12:
c5:5f:1b:51:31:35:b5:16:f3:f7:cb:70:aa:65:28:
e9:a4:18:a3:8f:e7:26:d5:8f:97:af:f2:d6:b8:03:
2a:8e:2b:cd:a5:dd:68:dd:0c:46:60:e0:66:3a:3c:
d7:e5:32:b9:7f:b9:8e:63:20:4b:4c:0a:cf:c2:34:
2d:8e:8d:b1:5c:5b:7f:0a:85:9f:6b:83:d5:a7:ca:
e2:d2:0e:e3:28:60:93:7f:5f:69:1d:18:b4:dc:4b:
8d:a8:33:30:56:1a:b1:b1:05:fc:5e:36:e2:b5:b7:
59:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:71:AC:D3:69:FC:78:E7:4B:6C:EE:C5:45:34:86:C7:5C:0C:B5:EB
X509v3 Authority Key Identifier:
keyid:86:A0:BE:02:D4:91:F3:5A:56:1C:C4:90:4B:EB:7E:B1:AD:4E:C2:FF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/hqC-AtSR81pWHMSQS-t-sa1Owv8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hqC-AtSR81pWHMSQS-t-sa1Owv8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/DXGs02n8eOdLbO7FRTSGx1wMtes.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
208.111.48.0/21
Signature Algorithm: sha256WithRSAEncryption
6f:8d:88:0e:69:dd:85:93:26:32:ab:a3:bf:05:df:32:96:3d:
69:c0:18:6d:42:07:f2:0f:64:a1:7c:87:e1:de:dc:54:a4:94:
5a:a2:4c:18:79:24:93:86:c1:e3:e5:fc:b9:1c:34:6c:a8:62:
f8:50:02:fe:71:b1:e4:74:90:09:2d:8f:24:3c:06:ae:82:81:
7e:04:85:f5:4d:9d:a9:7f:8a:e4:7c:ea:7c:88:97:bb:7c:df:
94:7f:d6:3c:b4:e4:2d:08:58:63:27:b0:54:a4:c1:35:42:7f:
a0:9b:4f:e6:65:c7:bf:05:2f:4c:0d:d5:29:52:ea:4a:80:e5:
ab:a7:51:ab:5e:77:67:b3:f0:3c:f2:9b:4b:65:2f:3b:03:89:
2b:0d:52:87:38:fb:55:81:80:ba:20:4f:cd:e0:b4:26:d1:cd:
08:7c:39:67:7c:ab:9a:32:0f:7c:87:5a:ac:32:84:46:26:41:
c9:78:77:bf:3c:9b:09:a6:96:b1:96:1b:57:98:8c:10:a3:61:
01:c8:c7:27:14:aa:d0:6e:30:12:3b:f6:44:61:28:67:2a:8f:
79:0c:41:fa:9c:2b:a0:36:93:cb:d0:8f:3b:86:87:e3:a4:51:
8b:1c:bb:78:e7:e4:ab:ff:58:93:7d:27:44:08:dd:c0:22:6a:
39:c4:90:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:03 2024 by rpki-client on console-ams.rpki-client.org