Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/395/O7yf09q1gqMTOoELbJ35EzM5eUY.roa
File: O7yf09q1gqMTOoELbJ35EzM5eUY.roa (raw, json)
Hash identifier: Beq/MyL+a4qEa2sQLDR5Hji4Ikey/t8Oruq3PAKRyxs=
Subject key identifier: 3B:BC:9F:D3:DA:B5:82:A3:13:3A:81:0B:6C:9D:F9:13:33:39:79:46
Certificate issuer: /CN=B333AEDA5B81A6B2F54FF714668F8D63E87B85A1
Certificate serial: 0E
Authority key identifier: B3:33:AE:DA:5B:81:A6:B2:F5:4F:F7:14:66:8F:8D:63:E8:7B:85:A1
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/szOu2luBprL1T_cUZo-NY-h7haE.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/O7yf09q1gqMTOoELbJ35EzM5eUY.roa
Signing time: Mon 20 Feb 2023 03:32:56 +0000
ROA not before: Mon 20 Feb 2023 03:32:56 +0000
ROA not after: Fri 16 Feb 2024 07:35:22 +0000
asID: 9619
IP address blocks: 211.125.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14 (0xe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B333AEDA5B81A6B2F54FF714668F8D63E87B85A1
Validity
Not Before: Feb 20 03:32:56 2023 GMT
Not After : Feb 16 07:35:22 2024 GMT
Subject: CN=3BBC9FD3DAB582A3133A810B6C9DF91333397946
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2f:09:81:5c:0f:c5:0b:4e:44:81:09:0a:97:
50:06:e9:dc:15:8f:5c:35:14:67:75:af:b1:28:57:
56:4f:f5:b3:94:59:83:eb:60:85:79:77:7f:1d:13:
a3:58:ea:5f:e7:78:e2:8e:34:5c:6d:67:e8:c4:9d:
c3:6b:b5:2b:52:ef:0a:6d:95:30:32:bf:54:9e:6c:
3b:76:5f:b7:b5:85:62:61:92:b2:f4:2f:3d:f5:ca:
47:92:49:6e:20:60:24:1a:9a:ef:f6:52:62:7b:d5:
ed:c6:be:f4:ea:7d:6c:87:ae:25:9c:cb:01:cf:b5:
c1:ab:de:18:ab:99:b9:fd:a8:aa:81:ea:84:0f:f7:
d0:dd:21:2a:dc:dd:1b:2e:fb:d8:3c:91:12:60:f7:
2d:88:4a:bc:14:74:a7:6d:e7:e5:c6:60:e7:96:76:
53:1e:de:62:3c:4e:e2:fa:02:5d:c2:bb:0b:1b:68:
fb:79:2a:39:a4:6f:e2:ba:cf:66:1d:12:dc:37:83:
65:12:dc:cd:9e:5e:db:35:80:cd:49:6c:33:a2:e1:
de:68:3f:62:a6:16:74:14:2a:4f:40:62:58:df:49:
2b:03:7b:fc:88:e6:d1:bf:f3:d9:15:fb:2f:a6:d0:
6b:62:f0:01:e5:d6:02:b5:86:90:b9:29:c4:6b:5b:
74:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:BC:9F:D3:DA:B5:82:A3:13:3A:81:0B:6C:9D:F9:13:33:39:79:46
X509v3 Authority Key Identifier:
keyid:B3:33:AE:DA:5B:81:A6:B2:F5:4F:F7:14:66:8F:8D:63:E8:7B:85:A1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/szOu2luBprL1T_cUZo-NY-h7haE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/szOu2luBprL1T_cUZo-NY-h7haE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/O7yf09q1gqMTOoELbJ35EzM5eUY.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
211.125.136.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:99:b9:71:fb:c6:93:bc:f4:6a:d0:16:a7:80:ea:07:6e:11:
e9:d6:1d:ec:9e:8f:79:13:b8:5b:f2:5b:04:f0:fc:8e:e5:09:
6e:aa:93:61:60:ce:91:90:47:d7:78:f0:03:1f:44:a9:19:f6:
21:c1:30:1f:cf:06:47:a3:99:a1:6c:fa:ca:fe:52:fb:35:2e:
03:77:5b:17:59:eb:6e:3b:78:b4:0c:c1:f8:e8:49:18:34:e9:
54:4c:8b:71:e0:15:16:fa:85:52:4b:f6:ba:6e:e0:9f:29:60:
78:ac:aa:85:28:ab:82:0e:41:0e:cd:4c:d9:9d:1e:d6:d5:7a:
25:d0:66:37:ad:9c:7d:1c:4a:4e:50:ec:7e:5b:93:ed:49:a3:
48:65:88:46:89:9d:0f:d4:49:30:f1:b2:c7:bf:cc:d8:dd:d0:
41:d9:b3:a3:62:49:02:20:35:26:c7:3d:ca:e1:ad:c3:45:df:
ca:51:e3:10:36:9a:55:4e:3b:39:71:5d:6b:71:ea:3f:0c:92:
16:24:f9:cd:02:2e:57:e5:ef:14:b1:7b:83:8e:d9:1e:02:33:
80:ae:67:b3:ae:a5:d1:fc:12:27:d4:4b:41:14:d1:f8:54:ed:
29:ab:67:48:a6:e3:a2:34:e8:67:e2:c3:87:fe:ea:e5:43:0e:
46:ea:b1:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:09 2024 by rpki-client on console-ams.rpki-client.org