Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/QyFpF7z9L4MxBZNCgvMGLTrciAw.roa
File: QyFpF7z9L4MxBZNCgvMGLTrciAw.roa (raw, json)
Hash identifier: 4r625dYvuaevcgsgIOcIhEplW6ui4aIwrxZe8cEuKS4=
Subject key identifier: 43:21:69:17:BC:FD:2F:83:31:05:93:42:82:F3:06:2D:3A:DC:88:0C
Certificate issuer: /CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA
Certificate serial: 23
Authority key identifier: 04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/QyFpF7z9L4MxBZNCgvMGLTrciAw.roa
Signing time: Tue 23 Feb 2021 08:57:42 +0000
ROA not before: Tue 23 Feb 2021 08:57:42 +0000
ROA not after: Tue 15 Feb 2022 01:30:02 +0000
asID: 2527
IP address blocks: 159.28.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35 (0x23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA
Validity
Not Before: Feb 23 08:57:42 2021 GMT
Not After : Feb 15 01:30:02 2022 GMT
Subject: CN=43216917BCFD2F833105934282F3062D3ADC880C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3f:33:db:ea:ad:a8:d6:50:13:d3:ef:4b:11:
41:ed:0f:9f:90:5b:44:e5:e2:e4:87:73:5c:f0:62:
60:2f:2e:d7:5e:be:0f:94:a4:cc:84:f0:ae:83:e7:
9f:a0:41:75:09:5b:1c:d3:36:14:57:3f:6f:0e:07:
6e:51:07:7c:46:97:c1:f9:c3:ab:0c:6a:66:53:4d:
92:fa:2b:f2:f7:69:da:59:e9:b5:2c:42:b9:7e:7f:
c9:20:8b:67:b9:f4:9e:8f:fd:4c:88:1d:47:43:7c:
02:c2:bb:6f:16:d0:a1:59:10:ff:e0:33:34:ba:5c:
93:3a:e7:11:b4:7e:f7:71:52:1c:8f:69:6c:50:b9:
c0:a9:13:9f:16:20:0c:98:4c:4c:7d:2b:38:fe:f2:
33:44:48:6e:eb:5a:0f:10:6d:9a:95:83:d2:8d:f7:
7b:9a:63:00:de:21:79:c1:52:db:8b:53:e4:df:22:
c8:a0:d6:4a:8f:a4:e9:bc:09:72:70:b1:6d:2a:07:
df:8f:08:f6:c3:18:8b:fb:21:a7:32:9d:d1:88:b0:
9f:43:99:51:26:05:42:a2:9e:8c:89:7d:1a:23:7e:
0a:0d:6f:ee:27:d1:18:27:d9:5e:d5:67:2d:20:d3:
2a:b4:33:4d:e7:80:7a:8a:aa:94:46:97:70:90:69:
76:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:21:69:17:BC:FD:2F:83:31:05:93:42:82:F3:06:2D:3A:DC:88:0C
X509v3 Authority Key Identifier:
keyid:04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/QyFpF7z9L4MxBZNCgvMGLTrciAw.roa
sbgp-ipAddrBlock: critical
IPv4:
159.28.128.0/17
Signature Algorithm: sha256WithRSAEncryption
5a:4c:85:22:21:33:1a:3d:9e:16:1a:4a:e1:93:a5:03:6f:08:
35:fc:94:86:7e:10:bc:16:2e:9d:70:4e:8d:23:44:95:e8:08:
fc:da:c6:df:75:2c:22:6b:5a:b6:5a:68:52:f8:1e:d3:cd:d8:
5c:e9:7b:49:f7:1f:92:a4:44:a1:22:b3:41:61:7c:91:06:91:
56:4b:be:25:28:18:89:ae:fe:a2:ea:b4:b2:07:93:4c:45:34:
13:24:5c:9f:10:f7:c0:99:77:6f:9b:ea:cc:18:0c:8b:72:16:
5f:26:51:bd:da:21:cf:4f:6a:62:e1:0e:0e:bf:cd:9f:f5:7c:
48:7c:cb:66:83:09:6f:0c:5c:cd:31:31:15:f0:19:be:63:ea:
24:fb:9d:c0:50:72:6c:7c:9c:c3:09:a2:42:3d:7e:fa:a7:de:
a4:11:ea:85:25:8e:a8:96:15:76:ec:2f:4d:89:87:7b:86:4c:
ab:96:ea:40:c9:e5:f0:8c:46:46:da:8b:0c:9e:57:3a:11:58:
b3:66:2d:9c:7b:f5:27:7f:bb:4c:50:3c:46:0d:96:89:b9:6c:
f0:96:d3:1c:fc:45:eb:46:b3:88:2e:c4:b6:38:8d:0b:73:42:
bb:3c:be:88:37:b0:90:98:43:32:9e:ca:1a:84:42:82:a9:2d:
21:44:89:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:10 2024 by rpki-client on console-ams.rpki-client.org