Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/LtQE8k3wL1aWArZDhuWjdQLLYsc.roa
File: LtQE8k3wL1aWArZDhuWjdQLLYsc.roa (raw, json)
Hash identifier: hKPxHwC3Tccsf7YAPNMYeamKQsfpcc4dzv+WdUubjxE=
Subject key identifier: 2E:D4:04:F2:4D:F0:2F:56:96:02:B6:43:86:E5:A3:75:02:CB:62:C7
Certificate issuer: /CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA
Certificate serial: 5A
Authority key identifier: 04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/LtQE8k3wL1aWArZDhuWjdQLLYsc.roa
Signing time: Sun 01 Jan 2023 01:29:39 +0000
ROA not before: Sun 01 Jan 2023 01:29:39 +0000
ROA not after: Fri 15 Dec 2023 01:30:02 +0000
asID: 2527
IP address blocks: 143.189.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90 (0x5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA
Validity
Not Before: Jan 1 01:29:39 2023 GMT
Not After : Dec 15 01:30:02 2023 GMT
Subject: CN=2ED404F24DF02F569602B64386E5A37502CB62C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:02:85:44:1a:33:8c:e1:d7:3b:f0:6d:a2:5c:
5c:a1:14:ab:3e:f3:4d:0d:f7:0b:bd:79:8c:cb:1c:
bf:f7:31:e5:44:4d:6a:ad:0f:1d:df:65:b3:55:a8:
a5:e1:be:3a:08:42:52:8a:b1:01:bd:0b:ee:f2:38:
ca:04:b1:20:77:8a:3d:9e:93:1c:d3:b4:03:90:fc:
58:ab:0f:47:ba:75:b1:fa:fb:b3:50:d8:9e:d5:eb:
f4:97:f3:f6:5b:84:51:11:93:23:1e:bc:08:3b:f7:
a8:83:34:11:cf:d3:20:a4:10:a4:f1:71:93:53:75:
48:ce:52:e4:a6:01:9a:a2:76:17:b5:02:43:19:05:
4e:ae:9a:75:9a:b8:68:78:a6:f4:5d:a0:a2:b4:c3:
ab:b4:0d:c9:53:3f:23:a7:fc:b0:ee:3c:1d:e4:f3:
39:e8:89:36:2c:bd:c3:7a:ab:1f:dc:cb:c8:b5:22:
4f:34:ce:f6:2e:69:fc:a4:a3:ec:c8:95:07:a8:39:
ca:0d:66:92:6f:7c:84:b3:c3:f5:76:c8:8b:6c:9d:
06:16:f4:91:ec:7c:01:2e:4a:1e:b1:10:34:3a:ee:
3c:85:c9:22:29:84:9b:9a:c6:cb:b7:40:c2:85:44:
89:ea:42:ef:91:15:9d:a5:7c:b6:fd:a9:81:63:c9:
b6:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:D4:04:F2:4D:F0:2F:56:96:02:B6:43:86:E5:A3:75:02:CB:62:C7
X509v3 Authority Key Identifier:
keyid:04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/LtQE8k3wL1aWArZDhuWjdQLLYsc.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
143.189.0.0/16
Signature Algorithm: sha256WithRSAEncryption
70:9d:8f:8c:e4:ea:b5:db:09:2f:98:aa:3c:53:56:ab:49:47:
ea:80:cc:51:42:8b:e6:c4:bf:1d:44:d9:73:6e:56:d3:db:dc:
0a:a8:61:c8:16:4e:c5:94:bb:13:43:ba:bd:f7:a9:1c:3a:8b:
6d:94:19:ac:69:1b:3e:47:09:82:a6:ea:09:e3:4e:88:81:2f:
ff:70:6c:b7:06:4a:22:9b:d0:51:f2:6d:d2:9a:bc:e6:74:86:
4a:29:f3:a1:1d:11:86:c7:ec:12:09:d8:c0:1e:ba:2a:fb:60:
a6:4e:f4:c6:ba:39:eb:60:b6:41:2c:b3:13:5f:a7:cd:3d:96:
9b:bc:18:14:97:4a:62:e3:72:2f:7c:3c:00:b1:f6:b8:ee:94:
fd:e0:aa:da:97:be:ec:de:87:bb:34:f0:79:9c:9e:6b:e5:eb:
aa:98:68:3d:51:5c:4c:f5:69:fe:cf:8e:dc:00:e4:87:d1:24:
29:53:b1:48:39:f8:12:90:ae:36:1c:35:a6:b9:32:aa:ee:0a:
a4:dd:e2:6f:ac:e1:fa:56:75:c4:ef:42:41:ef:d5:35:1a:55:
6e:ca:47:62:32:c9:d4:0f:86:dd:d4:06:92:31:36:45:95:5f:
1a:ee:67:8e:87:2f:b1:e0:ac:ac:e7:3e:e6:fe:9b:b2:bd:19:
7a:24:d4:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:54 2024 by rpki-client on console-fra.rpki-client.org