Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/393/XKK5jZvqURxQytF8nhSzC3r5PqE.roa
File: XKK5jZvqURxQytF8nhSzC3r5PqE.roa (raw, json)
Hash identifier: PtW00/XoQ/Nht3lvT83TaHVe1KkfGZGa8ed+r1lKfF8=
Subject key identifier: 5C:A2:B9:8D:9B:EA:51:1C:50:CA:D1:7C:9E:14:B3:0B:7A:F9:3E:A1
Certificate issuer: /CN=5D055B2DAAC48878CC9B1127A29CF11666920A23
Certificate serial: 43
Authority key identifier: 5D:05:5B:2D:AA:C4:88:78:CC:9B:11:27:A2:9C:F1:16:66:92:0A:23
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XQVbLarEiHjMmxEnopzxFmaSCiM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/XKK5jZvqURxQytF8nhSzC3r5PqE.roa
Signing time: Sat 01 Apr 2023 01:29:51 +0000
ROA not before: Sat 01 Apr 2023 01:29:51 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9622
IP address blocks: 202.171.112.0/20 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67 (0x43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D055B2DAAC48878CC9B1127A29CF11666920A23
Validity
Not Before: Apr 1 01:29:51 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=5CA2B98D9BEA511C50CAD17C9E14B30B7AF93EA1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:75:0a:b1:90:20:3d:f1:bf:94:ef:a8:b5:a1:
10:e2:63:55:cd:c9:ab:32:11:9c:30:8c:32:1a:2f:
17:26:d8:97:0f:f9:49:17:d1:a2:29:ec:f6:ae:ed:
f6:8a:f7:4e:8e:1d:94:fa:6b:38:7a:e7:b6:93:a9:
01:dc:8c:51:6f:98:8e:92:9b:54:c3:5c:65:3f:07:
80:6f:ad:fc:5b:e1:ed:ca:a8:79:ab:9e:6d:8a:ee:
c9:85:40:82:8c:ff:4c:83:93:a5:1b:eb:9e:6e:97:
32:7e:4d:7d:94:97:2f:62:98:75:9a:e8:6a:77:84:
bf:99:7d:3d:55:3d:f0:29:01:2b:3b:1d:b3:b9:6d:
1f:0f:84:8a:31:cf:2c:bb:76:4e:60:b2:11:72:89:
0f:1d:18:4f:29:ea:c4:cd:8d:24:d7:83:70:d9:3a:
2f:89:0e:39:26:0a:2c:08:2f:34:c9:c1:77:42:b2:
d3:6d:b2:59:de:c2:92:04:20:41:4c:9f:ba:31:c8:
46:16:d2:94:c5:41:13:8e:3e:b1:b6:85:e5:d9:8a:
27:8f:bb:44:96:67:1c:4a:8a:53:6e:e3:f1:bc:f5:
45:cc:9b:17:23:f7:e1:b8:5f:67:4d:75:65:fb:a2:
83:96:ee:77:b7:93:a6:1d:13:ca:87:8b:8b:58:98:
cd:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:A2:B9:8D:9B:EA:51:1C:50:CA:D1:7C:9E:14:B3:0B:7A:F9:3E:A1
X509v3 Authority Key Identifier:
keyid:5D:05:5B:2D:AA:C4:88:78:CC:9B:11:27:A2:9C:F1:16:66:92:0A:23
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/XQVbLarEiHjMmxEnopzxFmaSCiM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XQVbLarEiHjMmxEnopzxFmaSCiM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/XKK5jZvqURxQytF8nhSzC3r5PqE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.171.112.0/20
Signature Algorithm: sha256WithRSAEncryption
1e:6e:5a:3f:f6:19:20:ae:a9:a4:f3:bf:4e:86:df:fc:27:bc:
33:95:21:f5:cc:3c:a0:be:2d:ee:a3:23:6e:66:00:91:aa:c6:
d0:54:ea:f6:01:29:f5:e2:1c:97:d8:4c:59:f9:da:57:f8:39:
d5:72:ca:97:3e:2f:da:eb:ea:ae:e7:50:c6:1a:65:94:a5:37:
62:7c:11:7f:ec:88:55:ed:cd:dc:9e:31:73:77:71:08:8d:5b:
10:fc:54:cb:e8:db:ac:1a:93:82:6a:41:89:13:9b:76:e2:6f:
fd:b2:52:52:13:65:8f:49:f6:6f:e8:33:1e:26:9a:e7:98:9e:
89:db:32:c0:af:9c:6f:ba:c6:70:b6:ae:2e:d2:c8:6e:cd:dd:
eb:ec:0b:19:e4:99:8b:9e:0d:0c:fa:3f:e2:58:49:2a:8f:75:
75:5a:2a:85:df:dc:76:6f:38:6e:58:e2:4f:d3:fd:fe:82:73:
11:b9:01:bc:87:a9:e1:90:5a:9c:65:7f:ab:56:c3:fa:25:e4:
ca:83:0c:cc:c6:d4:0f:c8:26:fb:72:3e:62:be:c4:75:e7:30:
fa:4a:37:1a:2c:bb:e5:6a:43:21:d7:c9:93:61:ca:d6:f2:71:
ea:94:e9:3e:21:a4:ed:ac:f1:45:20:f9:45:b0:6f:40:8e:cb:
b2:12:1f:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:52 2024 by rpki-client on console-fra.rpki-client.org