Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/5AJvwfTdKprDBqt8InjJx0VvN-s.roa
File: 5AJvwfTdKprDBqt8InjJx0VvN-s.roa (raw, json)
Hash identifier: ymG6p4x2i8hS3qlUmn/ouChyzbIdV/stGOgsdk9bBAs=
Subject key identifier: E4:02:6F:C1:F4:DD:2A:9A:C3:06:AB:7C:22:78:C9:C7:45:6F:37:EB
Certificate issuer: /CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA
Certificate serial: 5E
Authority key identifier: 04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/5AJvwfTdKprDBqt8InjJx0VvN-s.roa
Signing time: Sun 01 Jan 2023 01:31:10 +0000
ROA not before: Sun 01 Jan 2023 01:31:10 +0000
ROA not after: Fri 15 Dec 2023 01:30:02 +0000
asID: 2527
IP address blocks: 157.147.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94 (0x5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA
Validity
Not Before: Jan 1 01:31:10 2023 GMT
Not After : Dec 15 01:30:02 2023 GMT
Subject: CN=E4026FC1F4DD2A9AC306AB7C2278C9C7456F37EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:17:30:81:82:15:f3:26:d2:b5:a2:74:11:f0:
6c:c0:aa:6a:8c:3e:40:38:e0:4e:c4:e5:4b:45:78:
82:ff:54:b1:1a:0b:7f:0f:13:d5:40:07:a9:45:9a:
56:d3:75:97:75:1f:9b:3b:55:06:16:53:4f:ce:83:
c9:78:69:bc:6c:6e:28:7b:aa:65:33:dd:2c:30:9c:
ed:14:35:1d:62:8f:64:57:93:73:07:c2:8c:ae:39:
84:e5:ce:93:5c:38:2f:b1:ae:3f:9f:ff:79:57:48:
7b:2b:e7:d9:df:ed:a6:88:cc:a0:e6:62:e5:a3:5e:
f1:3c:50:1e:3c:28:37:3f:70:a5:1c:b9:4c:f9:e1:
2e:98:b2:81:7a:89:24:9a:5d:5a:14:85:67:8f:4d:
8c:6f:a1:c1:15:19:90:77:1b:97:19:f3:c3:60:b2:
1b:cd:8a:1e:37:64:49:fa:8c:22:9b:f3:1f:fa:47:
82:b2:74:3e:8e:54:11:6b:fb:e7:70:9c:c4:e2:9a:
22:36:3e:e2:d7:22:cb:e5:54:b3:61:50:23:44:df:
e4:5d:ee:46:75:d2:2f:22:49:f2:34:d4:0d:fa:73:
24:0b:66:1a:61:bf:3c:a1:e1:74:de:18:65:50:e4:
1d:18:75:2d:93:1c:18:a7:08:ce:b1:6c:c6:18:09:
94:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:02:6F:C1:F4:DD:2A:9A:C3:06:AB:7C:22:78:C9:C7:45:6F:37:EB
X509v3 Authority Key Identifier:
keyid:04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/5AJvwfTdKprDBqt8InjJx0VvN-s.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.147.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1a:ff:3b:05:6a:24:81:84:bd:38:eb:69:b5:9e:e2:76:9b:e0:
e4:64:76:43:47:21:a9:29:41:57:99:5f:a9:45:a7:10:4c:fc:
58:d9:eb:39:43:8a:3d:c9:50:10:be:64:d6:49:2f:26:93:47:
e5:e5:31:9b:39:82:fd:9a:ce:6b:18:83:e7:0b:39:21:42:96:
3a:97:46:ab:1a:aa:fd:a2:2b:46:1f:7c:f6:04:c2:e0:ba:dd:
3d:64:c7:09:7f:4e:10:54:9d:05:18:27:52:b0:3d:8b:16:d2:
f9:12:a3:8b:f2:13:37:0c:c8:f9:99:4a:6e:63:be:a4:55:04:
64:6b:23:0c:3e:38:82:8a:1a:68:7a:3c:26:de:ae:40:b7:ec:
2f:e4:6d:9b:72:9b:be:66:46:26:67:13:70:a5:28:95:b9:ec:
df:b6:02:d7:49:0f:0a:0a:c2:fa:98:81:00:2e:8b:71:8c:97:
92:21:b5:08:d6:4c:18:74:be:38:48:65:92:a6:67:ce:3c:e5:
80:7c:f6:e9:70:48:00:16:b2:a3:86:c3:9f:23:32:52:11:8e:
40:9e:d2:e2:24:13:aa:fb:b1:ed:43:9c:da:2a:dd:d0:9b:d6:
34:70:cf:fb:99:6e:b8:ea:d9:43:04:fd:30:42:23:d7:84:bb:
c2:dd:b7:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:53 2024 by rpki-client on console-fra.rpki-client.org