Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/462/3UQrfADEj04ixsIlshTceIJAN8o.roa
File: 3UQrfADEj04ixsIlshTceIJAN8o.roa (raw, json)
Hash identifier: tiuVYmutjLo7mWpQB00PW9xeU7G3EOrb6xMVS5l8q10=
Subject key identifier: DD:44:2B:7C:00:C4:8F:4E:22:C6:C2:25:B2:14:DC:78:82:40:37:CA
Certificate issuer: /CN=43917B23074524E9E6EA8E40FA4A0672C9620318
Certificate serial: 1E
Authority key identifier: 43:91:7B:23:07:45:24:E9:E6:EA:8E:40:FA:4A:06:72:C9:62:03:18
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Q5F7IwdFJOnm6o5A-koGcsliAxg.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/3UQrfADEj04ixsIlshTceIJAN8o.roa
Signing time: Tue 24 May 2022 04:52:25 +0000
ROA not before: Tue 24 May 2022 04:52:25 +0000
ROA not after: Mon 15 May 2023 01:30:04 +0000
asID: 10019
IP address blocks: 61.122.208.0/20 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30 (0x1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43917B23074524E9E6EA8E40FA4A0672C9620318
Validity
Not Before: May 24 04:52:25 2022 GMT
Not After : May 15 01:30:04 2023 GMT
Subject: CN=DD442B7C00C48F4E22C6C225B214DC78824037CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:39:23:41:cb:cc:30:2a:d1:fe:ce:79:c2:02:
7a:fd:08:ed:2a:58:0f:9c:33:a4:c0:36:da:a0:41:
f6:aa:e9:2a:60:59:59:68:5c:e7:6d:d7:af:52:46:
f0:b6:bf:41:0b:72:c9:a2:03:de:9c:95:8b:a3:b9:
37:7e:56:11:26:41:e6:9b:fb:b6:25:3a:b7:af:6b:
9b:b2:f6:4c:dc:ac:0a:eb:e7:a5:c2:84:c8:df:12:
27:7f:cb:a2:54:60:77:20:ec:6f:1d:cf:e1:93:97:
55:e6:48:7f:a2:4b:98:cf:6e:17:28:79:1a:38:17:
ea:06:19:df:18:a7:92:9d:64:7e:c6:94:58:38:5f:
ab:c3:91:51:21:56:aa:20:9f:69:be:01:ab:33:94:
84:15:f9:47:6e:61:71:ef:de:88:3d:22:e2:00:de:
ab:6d:64:b7:87:30:25:42:f7:ed:e0:c1:58:4c:2c:
7c:d3:75:61:10:79:d3:a6:6a:24:c4:03:be:23:20:
f9:31:15:f0:be:16:58:5d:bf:6d:99:03:fe:9c:6a:
6e:89:ad:99:e3:3f:20:7a:df:17:2a:3d:01:6d:df:
c9:d6:e9:0d:e7:cd:d2:35:4f:81:a9:b3:61:fa:3b:
6f:fd:6e:a0:cd:af:ea:5c:8c:67:c5:d7:05:02:5c:
33:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:44:2B:7C:00:C4:8F:4E:22:C6:C2:25:B2:14:DC:78:82:40:37:CA
X509v3 Authority Key Identifier:
keyid:43:91:7B:23:07:45:24:E9:E6:EA:8E:40:FA:4A:06:72:C9:62:03:18
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/Q5F7IwdFJOnm6o5A-koGcsliAxg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Q5F7IwdFJOnm6o5A-koGcsliAxg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/3UQrfADEj04ixsIlshTceIJAN8o.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
61.122.208.0/20
Signature Algorithm: sha256WithRSAEncryption
a8:11:e3:b9:9d:47:d0:2b:6d:43:c9:cd:f4:e9:52:e2:1d:35:
84:fd:76:68:d8:b4:5e:89:89:7f:11:cd:b1:4b:cd:64:a4:3c:
a0:ab:40:e9:aa:9d:00:d1:2c:e4:34:f1:ac:7e:41:ee:42:64:
2b:1d:64:83:78:5f:a6:2d:ad:ee:3f:3d:3a:bf:54:7f:1c:ae:
dd:d1:3f:94:b1:46:ba:c9:93:90:17:8b:b6:e5:ec:c1:7e:0d:
07:8b:e2:07:fa:c0:0b:da:df:90:49:5a:19:53:fd:1d:7d:81:
ba:78:ba:a7:66:35:3d:97:9a:7f:ff:cf:b5:5a:0d:1a:34:1f:
d7:ff:4a:93:3a:d4:35:b6:41:e8:3b:34:e5:04:6b:a0:c6:83:
58:35:59:18:2a:ba:a8:e5:10:52:6f:59:b6:ea:a6:d4:96:fd:
91:ab:30:ec:28:ef:38:46:d9:3c:9c:93:2b:df:cd:82:8e:59:
7b:85:e4:02:12:a3:85:01:24:b1:98:e3:fe:df:dd:ef:37:54:
a6:f2:f4:44:32:a2:56:cc:ce:2c:8a:a6:f9:21:da:c1:2a:47:
47:d4:6e:f0:cf:5c:36:f9:0e:32:87:a1:02:00:96:47:10:9a:
99:a0:97:6c:5d:dd:ea:2e:92:ed:69:bf:4f:7c:10:8a:4a:e2:
7f:f6:71:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:10 2023 by rpki-client on console-fra.rpki-client.org