Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/QKHXFmBHhguz9UCfhtJGOtczBaM.roa
File: QKHXFmBHhguz9UCfhtJGOtczBaM.roa (raw, json)
Hash identifier: A8tTQPXK+y+JZvg/bFvQ7bozYfED/BFCXnhSMoIRTsc=
Subject key identifier: 40:A1:D7:16:60:47:86:0B:B3:F5:40:9F:86:D2:46:3A:D7:33:05:A3
Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6
Certificate serial: B7
Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QKHXFmBHhguz9UCfhtJGOtczBaM.roa
Signing time: Sun 01 Jan 2023 01:29:10 +0000
ROA not before: Sun 01 Jan 2023 01:29:10 +0000
ROA not after: Fri 15 Dec 2023 01:30:02 +0000
asID: 10021
IP address blocks: 27.110.28.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 183 (0xb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6
Validity
Not Before: Jan 1 01:29:10 2023 GMT
Not After : Dec 15 01:30:02 2023 GMT
Subject: CN=40A1D7166047860BB3F5409F86D2463AD73305A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b2:9a:38:04:ec:ca:be:40:90:39:fe:9c:5c:
4e:ed:4e:58:ed:06:45:37:5e:39:e3:64:e3:be:5c:
c1:6c:ac:27:c2:5d:b2:2f:b0:f7:70:81:7e:4c:0a:
53:a7:73:d4:23:7a:6f:d8:84:09:bc:65:d4:9b:a6:
6d:e1:f3:a1:d8:27:40:27:80:c0:5c:77:5f:9f:8d:
51:6c:e1:0d:33:72:5c:81:99:65:c2:21:d8:5f:55:
4f:49:c3:32:f5:92:2f:0f:b6:20:50:20:c4:f4:90:
49:6b:30:1f:b4:82:4f:da:e1:79:03:ad:f1:18:aa:
e9:33:c9:7e:15:c9:5a:7f:05:d9:7e:f6:e2:b4:ea:
28:dd:0a:ee:d4:f6:15:4e:f0:63:4a:a0:dd:86:be:
5d:69:c1:25:5b:b9:f1:05:ed:de:9f:d9:ea:bf:44:
f4:1e:47:d3:65:8f:ca:c5:f3:80:aa:d9:ff:7b:e5:
40:ac:8d:9a:fc:3e:6d:34:13:c3:23:6a:cb:a6:56:
ee:82:03:56:01:0c:62:3a:32:fc:a9:b5:3b:62:b4:
3a:0f:15:67:6a:1d:cd:9f:aa:1a:90:3c:37:5b:06:
e5:a5:00:7b:62:7a:65:98:8f:26:63:da:e1:a5:07:
83:16:80:de:b4:c4:35:d1:b6:6d:45:aa:51:d7:c6:
04:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:A1:D7:16:60:47:86:0B:B3:F5:40:9F:86:D2:46:3A:D7:33:05:A3
X509v3 Authority Key Identifier:
keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QKHXFmBHhguz9UCfhtJGOtczBaM.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.110.28.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:2f:16:49:cc:1f:98:1a:6a:38:64:6b:4e:d2:d8:28:ae:bb:
5d:c6:bf:64:5a:5c:c9:03:98:62:ce:d4:a2:d1:9c:f8:a5:8f:
d4:6e:41:8b:69:f2:7a:2d:9d:71:a8:a7:73:6d:2b:f1:2c:6c:
f1:4b:cf:80:25:61:09:01:f6:36:14:2d:90:b6:5b:dc:6d:d6:
da:ac:5d:d7:75:1b:a5:5e:5a:95:ae:35:77:f7:91:20:35:44:
6c:1c:0a:04:14:5e:3e:cd:9d:0e:b7:0f:30:47:f9:a9:32:35:
e9:0c:9d:fb:cf:ea:63:b8:8d:11:7c:e7:c6:a2:ed:9f:9b:a8:
be:b6:48:50:68:4f:85:e6:64:53:80:72:1c:63:e1:34:e1:b4:
d8:9c:9e:02:27:15:09:42:9f:57:cc:28:3c:24:74:be:b8:9c:
6e:4d:c6:00:90:d9:cf:5a:ba:ee:90:07:bc:a8:d9:04:35:9b:
22:ce:e3:bb:0e:97:45:cd:39:39:4c:12:55:69:a0:05:52:7d:
72:83:4d:a6:15:bb:7e:38:b9:24:74:2e:49:3d:fb:9d:26:60:
5e:86:8c:9e:b6:7f:8d:6c:b4:83:0a:9d:1c:97:80:18:34:77:
eb:65:97:60:8f:3e:2e:f0:55:2d:a5:9e:77:43:f1:3d:cb:5e:
40:cf:f0:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:54 2024 by rpki-client on console-fra.rpki-client.org