Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/440/rzlMB6p-sXa1i2NaKyqIYlq1sz8.roa
File: rzlMB6p-sXa1i2NaKyqIYlq1sz8.roa (raw, json)
Hash identifier: mYiAJZ3zHKyZAvbHDDn/vpQvdlmFSItJYFIywMhHdXg=
Subject key identifier: AF:39:4C:07:AA:7E:B1:76:B5:8B:63:5A:2B:2A:88:62:5A:B5:B3:3F
Certificate issuer: /CN=E62338DE332C6F4B9E2596EE5DC379A25EFE58CF
Certificate serial: 25
Authority key identifier: E6:23:38:DE:33:2C:6F:4B:9E:25:96:EE:5D:C3:79:A2:5E:FE:58:CF
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/rzlMB6p-sXa1i2NaKyqIYlq1sz8.roa
Signing time: Wed 01 Feb 2023 01:30:24 +0000
ROA not before: Wed 01 Feb 2023 01:30:24 +0000
ROA not after: Mon 15 Jan 2024 01:30:02 +0000
asID: 17676
IP address blocks: 61.213.0.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37 (0x25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E62338DE332C6F4B9E2596EE5DC379A25EFE58CF
Validity
Not Before: Feb 1 01:30:24 2023 GMT
Not After : Jan 15 01:30:02 2024 GMT
Subject: CN=AF394C07AA7EB176B58B635A2B2A88625AB5B33F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:22:f3:79:0f:4e:1c:fd:c8:04:17:95:d5:be:
6c:dc:6f:b5:b4:b7:67:76:57:56:2a:50:d1:65:2a:
54:05:4b:4e:7b:ee:4f:dd:c1:0b:ea:bb:26:ba:62:
17:ce:e1:0f:65:5b:a3:83:80:d8:32:a0:e1:97:29:
e1:1e:c7:16:f1:23:70:9c:7b:44:ba:e0:73:ff:80:
89:a9:90:d6:bb:23:b4:ec:76:b1:17:bc:5a:ac:b4:
31:b8:9c:63:b0:e5:22:9e:a4:52:f6:d2:00:ef:ef:
47:2c:b0:ab:40:64:e5:e2:be:72:7f:9b:50:df:c4:
f4:48:8c:f8:3a:a2:e4:01:4b:80:75:54:1f:44:ee:
9c:97:7e:47:61:d2:ad:52:65:75:84:4c:46:9c:72:
04:ba:04:ad:cf:6a:40:91:da:cb:72:7e:03:57:e5:
a5:a7:c7:ac:db:14:dd:ce:05:7a:da:14:d4:80:45:
81:22:2a:f6:fb:fa:ba:7d:93:a7:38:41:3b:09:db:
eb:61:79:06:1c:86:ce:76:bb:74:2e:45:3e:8f:79:
cc:83:6d:25:14:13:ba:d0:c0:41:64:ea:cc:39:9e:
ff:3b:21:81:1d:e4:b4:14:32:ec:86:30:58:f8:68:
29:91:7d:a1:1c:5d:44:e6:3f:85:41:f9:0b:ba:08:
cf:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:39:4C:07:AA:7E:B1:76:B5:8B:63:5A:2B:2A:88:62:5A:B5:B3:3F
X509v3 Authority Key Identifier:
keyid:E6:23:38:DE:33:2C:6F:4B:9E:25:96:EE:5D:C3:79:A2:5E:FE:58:CF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/5iM43jMsb0ueJZbuXcN5ol7-WM8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/rzlMB6p-sXa1i2NaKyqIYlq1sz8.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
61.213.0.0/20
Signature Algorithm: sha256WithRSAEncryption
73:b8:bb:5a:27:fa:e9:8e:ed:32:78:cb:02:0c:14:33:6f:c1:
b9:35:61:94:69:d5:9b:29:f9:8a:f1:c8:28:d4:3e:de:29:06:
5c:cd:92:19:77:37:f1:d8:a9:b3:c0:fe:3e:93:95:fc:3f:0d:
1f:b3:03:f1:dd:18:67:61:ad:78:0b:a3:4e:f8:bd:68:ee:bc:
cd:c3:4d:3c:a1:16:bb:77:fb:c2:22:f9:de:fe:4f:76:b7:45:
de:c7:73:d3:48:46:b4:d6:dc:7d:61:74:84:a2:9f:c6:e4:9a:
b2:d4:2c:b0:40:9f:aa:df:7b:ca:7d:0d:95:c5:5a:8c:11:8f:
5e:01:eb:2a:9b:aa:d3:7c:39:8d:b5:07:17:2b:5c:50:1f:e1:
17:7e:07:5b:6b:e6:1b:f3:31:4f:b1:c0:cc:b1:13:61:dd:26:
3d:96:95:1a:c2:be:8d:f5:b3:1a:3f:7e:27:ad:71:4e:d6:65:
4c:a7:0d:b5:75:2a:5d:81:70:b1:d1:5a:94:97:ac:5f:2c:36:
12:32:a3:37:d7:95:3c:da:ea:2f:c4:20:49:46:19:c3:e2:d0:
90:ee:dd:02:13:c4:e6:c7:c0:f0:d4:3e:ad:d8:42:48:71:40:
97:3b:e4:fb:a0:e8:b4:c5:68:3c:30:1b:10:ac:73:5d:0c:76:
bc:7c:fe:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:10 2024 by rpki-client on console-ams.rpki-client.org