Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/DWjIAnMK2LQgaqygndWKgmel8Bg.roa
File: DWjIAnMK2LQgaqygndWKgmel8Bg.roa (raw, json)
Hash identifier: OccxrWcqvFOt6qNBqBsMLWceKTUNPlIhYM30C9LyVfI=
Subject key identifier: 0D:68:C8:02:73:0A:D8:B4:20:6A:AC:A0:9D:D5:8A:82:67:A5:F0:18
Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6
Certificate serial: BE
Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/DWjIAnMK2LQgaqygndWKgmel8Bg.roa
Signing time: Sun 01 Jan 2023 01:29:12 +0000
ROA not before: Sun 01 Jan 2023 01:29:12 +0000
ROA not after: Fri 15 Dec 2023 01:30:02 +0000
asID: 10021
IP address blocks: 114.31.88.0/21 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 190 (0xbe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6
Validity
Not Before: Jan 1 01:29:12 2023 GMT
Not After : Dec 15 01:30:02 2023 GMT
Subject: CN=0D68C802730AD8B4206AACA09DD58A8267A5F018
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a4:ec:1d:01:34:2b:5e:8b:ab:5b:21:2f:ce:
3f:5b:8f:b8:f4:1a:81:8c:51:54:8b:39:ba:ff:39:
d4:a6:d7:7d:55:c1:83:fd:a8:a8:87:2e:68:fb:55:
4c:4d:ad:89:a2:31:5d:47:cf:35:21:55:f8:cf:db:
7a:73:f7:54:15:82:ca:ad:34:10:15:e1:34:e4:59:
96:36:66:2e:04:6c:a8:61:e1:7e:0c:a2:67:8a:45:
f1:6f:d7:46:f5:c6:65:4d:2f:26:a6:cd:ea:d1:9a:
f6:51:39:0f:cb:95:19:51:86:d7:da:7d:b3:74:e6:
b2:e0:42:f8:85:d1:3b:ce:4c:4f:d5:c9:36:c2:b2:
85:1f:73:1c:4b:54:48:77:ce:fc:a6:d2:c5:5b:b8:
dd:33:80:90:7c:5a:fe:de:0b:80:a2:ae:91:c4:75:
7a:4d:48:d4:86:26:9c:c2:d3:b6:f6:91:ec:aa:0b:
77:0e:af:d9:32:5f:16:88:84:f1:90:b7:c5:20:8e:
a0:b0:af:a2:29:44:e1:c0:7a:c1:49:d6:fb:b4:7b:
e0:0c:45:a6:61:16:ce:44:19:d0:c7:72:0b:dd:0f:
f0:ac:e4:6a:56:bb:05:6c:58:4b:da:d6:2f:4f:10:
6a:f6:48:30:ba:62:a7:0c:b2:da:b6:16:fc:cd:40:
16:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:68:C8:02:73:0A:D8:B4:20:6A:AC:A0:9D:D5:8A:82:67:A5:F0:18
X509v3 Authority Key Identifier:
keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/DWjIAnMK2LQgaqygndWKgmel8Bg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
114.31.88.0/21
Signature Algorithm: sha256WithRSAEncryption
6f:ae:7e:65:e5:8c:d1:b8:fb:85:6f:56:27:9f:00:92:e1:84:
5c:32:09:5b:e0:b4:1b:d1:27:20:74:38:90:4e:f3:83:ec:46:
a7:fe:91:6b:ad:4a:f0:30:e2:c1:54:06:42:06:fb:34:c8:db:
6c:6a:01:52:7d:49:73:1a:5e:bb:d0:84:52:4b:8f:a4:62:31:
38:db:ad:11:70:dc:ba:67:b3:aa:b3:e0:83:14:56:f4:ae:79:
d4:a2:47:61:3e:6d:3b:17:34:f0:7c:cb:59:a4:20:52:7d:50:
85:f1:05:86:3e:51:6f:69:8d:a8:f4:f6:fa:82:a5:ee:69:04:
bc:5d:c4:66:11:2f:b4:9b:2d:d6:71:b1:95:8b:38:32:d2:03:
70:20:6b:41:e6:1a:68:30:fe:d1:fd:3d:42:c7:61:ed:f9:b6:
54:80:23:0a:88:19:dc:79:c0:fd:a0:f2:0e:a4:90:40:40:e6:
2f:34:b4:1a:b8:04:24:44:dc:10:fd:c1:ae:bd:3c:d8:5f:a0:
33:19:0c:ea:27:31:e2:40:92:e9:0c:a9:86:64:45:5a:62:7b:
c8:ed:e1:fb:eb:81:8c:5f:10:18:66:b7:90:6d:ef:bc:16:1c:
ce:83:4d:5f:56:da:5f:89:b3:0b:9c:d8:32:7a:9f:3a:cc:90:
fb:0f:b1:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:10 2024 by rpki-client on console-ams.rpki-client.org