Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/354/Y3RraFOZ0zAO0Kgw1v0QM3A87Fc.roa
File: Y3RraFOZ0zAO0Kgw1v0QM3A87Fc.roa (raw, json)
Hash identifier: zTo4J/L7R9SWvVJK2+XdRPa+lDcmpBiiZCvnlcNa3QA=
Subject key identifier: 63:74:6B:68:53:99:D3:30:0E:D0:A8:30:D6:FD:10:33:70:3C:EC:57
Certificate issuer: /CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC
Certificate serial: 8B
Authority key identifier: 0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/Y3RraFOZ0zAO0Kgw1v0QM3A87Fc.roa
Signing time: Sun 01 May 2022 01:30:21 +0000
ROA not before: Sun 01 May 2022 01:30:21 +0000
ROA not after: Thu 27 Apr 2023 09:52:34 +0000
asID: 9607
IP address blocks: 211.14.10.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139 (0x8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC
Validity
Not Before: May 1 01:30:21 2022 GMT
Not After : Apr 27 09:52:34 2023 GMT
Subject: CN=63746B685399D3300ED0A830D6FD1033703CEC57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fb:92:22:e8:c8:e5:9c:8e:0f:33:54:f5:38:
22:e7:bb:d8:19:f8:6c:5b:2c:9a:e4:27:d3:7a:1b:
f0:30:33:fc:cf:6c:13:ec:9b:37:11:38:c1:ac:41:
9a:ae:ab:ba:08:32:2f:89:4f:35:98:89:a4:43:f4:
5f:d2:7d:bf:11:12:a8:31:7a:38:3a:9e:b2:ae:30:
91:1d:dc:ff:ff:f2:4e:f4:98:58:c7:bd:32:62:e6:
9a:ce:a7:fd:2d:b3:4f:98:0f:78:32:3f:23:fa:f5:
85:c3:11:53:0b:95:ee:34:55:10:3a:bc:34:cc:d5:
15:3d:14:32:e2:5b:04:09:00:28:19:bf:a2:4c:bf:
76:f7:13:4f:db:c7:bd:17:65:56:a2:4b:f6:a2:13:
bc:2c:1a:72:69:41:c4:92:91:ad:19:30:6d:81:9c:
60:38:c1:11:56:19:a3:94:66:8f:e1:28:95:2f:9c:
19:01:5e:ad:c0:5d:d9:f9:68:0c:df:7c:e4:37:81:
e6:f8:12:24:d4:6c:c7:03:3f:66:88:1b:6e:fe:34:
9f:1e:9a:2f:74:a6:e3:bd:6f:81:a1:25:03:fa:54:
96:61:a9:3c:61:ea:e0:4e:ad:1b:f0:54:a7:57:59:
1e:b1:e4:06:1b:65:6c:c1:2e:62:2f:7a:38:7a:0a:
f2:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:74:6B:68:53:99:D3:30:0E:D0:A8:30:D6:FD:10:33:70:3C:EC:57
X509v3 Authority Key Identifier:
keyid:0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/Y3RraFOZ0zAO0Kgw1v0QM3A87Fc.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
211.14.10.0/23
Signature Algorithm: sha256WithRSAEncryption
b6:7a:20:a1:57:97:3c:ae:e2:44:f4:19:bb:4d:05:bd:22:f0:
3f:5d:02:e8:f3:89:11:a8:52:32:6c:93:4b:7c:73:c9:36:0c:
d1:ae:31:e3:9b:d4:43:73:10:94:72:ac:2c:ff:7d:78:12:ea:
6a:43:f9:b8:3b:7b:b5:f5:af:0b:f0:77:3d:2e:81:ca:2c:15:
7e:3b:64:96:32:69:a4:ca:bc:71:dc:f8:d6:e8:e2:4b:75:15:
53:ee:06:a1:7f:95:86:28:d0:31:6e:d0:e5:c6:5f:b2:9c:87:
32:6a:98:ef:5b:ed:a7:c8:cc:84:51:70:ee:27:30:69:3a:4c:
88:b3:e2:fb:e9:6e:6f:85:76:05:eb:85:94:4f:af:33:e8:3d:
ec:eb:8e:0f:50:24:cd:c7:8c:e8:5a:4c:63:a8:d6:fc:90:7c:
e4:41:b2:4d:19:c0:c2:c7:b8:06:a6:d5:e1:90:99:8b:6d:e6:
3e:e0:d3:a5:9a:57:f9:da:45:75:b5:1e:cc:60:78:68:cd:66:
02:25:f8:c3:7c:38:9a:28:fe:bd:ea:d5:f5:b0:2f:52:cb:e0:
da:8f:32:86:a9:6d:c8:64:42:40:8c:ab:fe:c0:a0:08:ba:ad:
09:a1:0a:25:3d:76:21:dc:c3:89:3a:cd:65:2c:ac:84:2b:d6:
ac:3c:b4:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:08 2023 by rpki-client on console-fra.rpki-client.org