Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/IOMyvNbJzmIRYJd_86JO8J-WFDA.roa
File: IOMyvNbJzmIRYJd_86JO8J-WFDA.roa (raw, json)
Hash identifier: 36pKTP5cXWO8MpRh9j6jRhLqShOgJYnJrmPX9BhhGMo=
Subject key identifier: 20:E3:32:BC:D6:C9:CE:62:11:60:97:7F:F3:A2:4E:F0:9F:96:14:30
Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6
Certificate serial: C4
Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/IOMyvNbJzmIRYJd_86JO8J-WFDA.roa
Signing time: Sun 01 Jan 2023 01:29:14 +0000
ROA not before: Sun 01 Jan 2023 01:29:14 +0000
ROA not after: Fri 15 Dec 2023 01:30:02 +0000
asID: 10021
IP address blocks: 202.95.208.0/21 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 196 (0xc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6
Validity
Not Before: Jan 1 01:29:14 2023 GMT
Not After : Dec 15 01:30:02 2023 GMT
Subject: CN=20E332BCD6C9CE621160977FF3A24EF09F961430
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:01:ee:f4:18:d4:d9:0e:55:31:6e:62:64:11:
7c:3a:46:1c:a2:e6:d5:6d:92:8c:f9:30:94:b1:f4:
df:28:b7:5a:36:34:8b:d6:19:b1:77:62:b4:b9:c3:
d4:58:31:6b:de:33:37:24:18:f5:de:c7:cf:de:f0:
f7:e1:a5:82:2b:d3:66:b1:66:0d:aa:1e:fd:47:7c:
19:6e:6c:6a:c1:3c:bd:88:36:77:2b:b5:1c:2d:ba:
cc:5b:5e:6c:3d:fe:31:ed:a4:69:81:d1:39:d6:69:
64:aa:f9:a2:47:fc:56:b8:92:ce:37:7b:80:e9:c5:
a2:67:8c:1d:b9:b8:86:5e:31:a2:4f:a8:cd:61:ec:
19:db:22:09:38:3d:49:76:b9:45:e9:71:36:af:ac:
c8:06:16:4e:c6:b4:b7:ee:8e:58:83:fb:6b:f4:12:
6f:62:d7:bc:de:16:7d:dc:f5:6a:7f:ec:42:59:46:
21:0f:1b:9c:74:7d:c8:9e:a4:d1:7c:31:50:4e:4b:
38:c3:fc:72:0a:cc:21:7f:c7:1f:63:98:99:60:23:
7c:19:e4:f4:94:ad:c8:41:77:c3:5a:a8:70:8a:f5:
9b:ae:a0:5e:c1:ae:12:4a:00:f8:7e:68:54:cc:09:
2e:fc:95:77:19:e2:ef:63:8a:2a:48:84:c0:c6:64:
91:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:E3:32:BC:D6:C9:CE:62:11:60:97:7F:F3:A2:4E:F0:9F:96:14:30
X509v3 Authority Key Identifier:
keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/IOMyvNbJzmIRYJd_86JO8J-WFDA.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.95.208.0/21
Signature Algorithm: sha256WithRSAEncryption
5c:11:24:b6:21:23:b7:40:18:77:51:c2:b5:e1:92:5f:e5:f2:
97:ae:74:e5:7c:05:1e:2d:1e:fd:36:4e:ac:38:ce:48:f5:5d:
18:db:2f:d5:fb:4b:ba:9f:a2:e8:1e:79:ac:00:4b:5a:69:76:
c5:44:a3:1b:9a:e0:5b:f8:d9:b0:82:cf:69:02:b5:16:a4:76:
c4:de:cd:32:f6:30:ee:af:3c:c3:b0:9c:b7:1c:2c:9d:ef:da:
33:a0:4b:0c:d0:64:ef:fe:1c:2a:bc:82:de:78:f8:ef:49:82:
57:93:b2:ab:20:fd:a7:c8:b6:49:84:39:a9:8e:bd:ab:d7:cf:
d0:b9:b7:80:9a:d3:9a:3c:c6:52:19:72:b5:81:03:98:07:0f:
17:f4:08:33:12:56:ce:11:52:91:ee:0a:bc:5f:12:78:d6:1c:
54:a5:17:6b:e1:c7:ec:c6:fa:93:f0:1f:99:e7:02:c6:9b:7b:
c8:48:f1:bc:52:0b:6c:b1:21:68:19:29:54:64:12:f2:ea:43:
e0:9b:a5:e9:73:9d:b4:bf:11:25:17:f9:b8:9a:2c:05:7a:ac:
23:15:b2:42:08:60:53:8b:b3:07:2b:d2:a5:8d:d9:25:51:f1:
24:95:4b:40:85:f0:4b:cc:e5:20:84:31:c8:ab:4b:67:a9:a8:
ab:92:69:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:10 2024 by rpki-client on console-ams.rpki-client.org