Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/462/zNsN0QPL1Xq3-e9RkE_k67cVp14.roa
File: zNsN0QPL1Xq3-e9RkE_k67cVp14.roa (raw, json)
Hash identifier: 6AszdH8gmPs5MpSJy1Q3xVOVFd3WKm9+ndjfVrr6Ygw=
Subject key identifier: CC:DB:0D:D1:03:CB:D5:7A:B7:F9:EF:51:90:4F:E4:EB:B7:15:A7:5E
Certificate issuer: /CN=43917B23074524E9E6EA8E40FA4A0672C9620318
Certificate serial: 3A
Authority key identifier: 43:91:7B:23:07:45:24:E9:E6:EA:8E:40:FA:4A:06:72:C9:62:03:18
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Q5F7IwdFJOnm6o5A-koGcsliAxg.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/zNsN0QPL1Xq3-e9RkE_k67cVp14.roa
Signing time: Mon 01 May 2023 01:29:08 +0000
ROA not before: Mon 01 May 2023 01:29:08 +0000
ROA not after: Sun 14 Apr 2024 01:30:02 +0000
asID: 10019
IP address blocks: 194.193.96.0/19 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58 (0x3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43917B23074524E9E6EA8E40FA4A0672C9620318
Validity
Not Before: May 1 01:29:08 2023 GMT
Not After : Apr 14 01:30:02 2024 GMT
Subject: CN=CCDB0DD103CBD57AB7F9EF51904FE4EBB715A75E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:62:69:bf:4c:6e:0d:5d:fb:a4:78:4b:27:53:
3c:37:78:a4:7b:44:01:6d:64:c8:e2:a7:dd:0b:f1:
4a:ca:4e:e2:4e:03:89:a5:bf:af:c8:29:8e:7f:06:
89:a9:f4:23:84:8b:3b:38:11:d2:b5:2a:04:af:76:
86:c8:18:25:ca:43:76:60:53:09:4d:d1:d5:bc:6a:
31:eb:91:55:41:8a:13:67:b0:9d:52:4f:f6:54:b7:
15:f9:37:ad:f2:59:0c:e9:9d:60:df:d0:cf:67:e0:
b3:9c:0e:f3:2e:a0:b9:e5:8a:d4:e6:0e:83:ae:b4:
05:2d:e5:05:c0:13:45:42:b5:19:7a:ed:a0:47:8f:
da:65:28:fb:4f:eb:f1:62:27:cd:87:5c:9d:a3:2a:
2d:44:46:69:e0:e3:b9:a1:52:b1:ac:bc:6b:6a:dd:
5c:e0:51:57:b6:8b:4f:51:2d:0f:d1:77:ea:c9:2a:
50:d5:e0:9d:97:2a:cf:95:42:0f:37:69:77:ea:02:
ad:9d:75:41:10:d5:07:56:1d:0e:a1:97:bc:38:66:
84:c1:c0:58:91:84:ea:33:c5:74:c4:a4:59:3d:1d:
4e:ee:44:cf:07:5b:a2:06:88:41:dc:24:dc:0a:f1:
d3:35:3c:8c:0c:f4:22:98:be:df:b5:50:28:86:2b:
e0:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:DB:0D:D1:03:CB:D5:7A:B7:F9:EF:51:90:4F:E4:EB:B7:15:A7:5E
X509v3 Authority Key Identifier:
keyid:43:91:7B:23:07:45:24:E9:E6:EA:8E:40:FA:4A:06:72:C9:62:03:18
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/Q5F7IwdFJOnm6o5A-koGcsliAxg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Q5F7IwdFJOnm6o5A-koGcsliAxg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/zNsN0QPL1Xq3-e9RkE_k67cVp14.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
194.193.96.0/19
Signature Algorithm: sha256WithRSAEncryption
37:94:83:a1:06:ee:d5:5a:58:f9:b4:e5:6e:79:33:ed:b9:29:
2e:67:d5:d4:0d:51:e2:f2:41:78:c9:3e:2e:19:a1:f7:c7:d1:
ee:3d:73:90:40:90:a4:0b:79:ce:07:95:0c:b7:e9:93:0a:8c:
bf:cf:a2:22:8d:62:c1:49:6e:e1:98:d3:2f:03:a1:5e:6f:90:
5a:48:84:bb:2c:52:66:d2:68:0a:8a:82:a6:ea:8e:9a:63:a7:
a7:de:be:81:68:0f:c4:2e:ca:a5:ca:3f:82:79:a5:6b:58:fb:
44:1b:3b:07:45:b5:25:52:ad:0a:0e:fc:bc:60:99:6c:f8:92:
d6:27:32:9b:bf:14:97:42:97:bf:4b:cd:84:d0:cb:64:6c:13:
10:88:eb:42:af:1f:47:e5:5a:0e:79:37:13:0b:f5:50:c1:c5:
52:27:51:fa:83:53:77:00:59:c9:7e:0b:76:7e:fa:49:41:81:
de:34:77:18:d0:2f:50:cd:0d:e4:a7:c7:4e:a9:8e:e6:0d:40:
6d:3a:09:af:4f:a4:76:28:18:de:42:9f:cd:f3:27:dd:ab:65:
a7:88:e2:22:c1:89:fe:48:a2:75:97:41:68:9f:be:21:ba:87:
41:6c:cb:3b:08:40:ba:36:80:fe:9d:0e:a1:5d:31:69:b5:39:
0c:2f:cf:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:54 2024 by rpki-client on console-fra.rpki-client.org