Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/539/nAAFB1JIBOX1w5hOK9T2HPwyKSs.roa
File: nAAFB1JIBOX1w5hOK9T2HPwyKSs.roa (raw, json)
Hash identifier: BXJZZzWvMbVJVzgoqvjeglpjC7rRpVc/07RwwouIdUk=
Subject key identifier: 9C:00:05:07:52:48:04:E5:F5:C3:98:4E:2B:D4:F6:1C:FC:32:29:2B
Certificate issuer: /CN=5B0D72F9F430B7D4003375F10D5025B9E5C00437
Certificate serial: 2C
Authority key identifier: 5B:0D:72:F9:F4:30:B7:D4:00:33:75:F1:0D:50:25:B9:E5:C0:04:37
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/nAAFB1JIBOX1w5hOK9T2HPwyKSs.roa
Signing time: Mon 01 Nov 2021 01:28:44 +0000
ROA not before: Mon 01 Nov 2021 01:28:44 +0000
ROA not after: Sat 15 Oct 2022 01:30:02 +0000
asID: 55900
IP address blocks: 202.171.224.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44 (0x2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5B0D72F9F430B7D4003375F10D5025B9E5C00437
Validity
Not Before: Nov 1 01:28:44 2021 GMT
Not After : Oct 15 01:30:02 2022 GMT
Subject: CN=9C000507524804E5F5C3984E2BD4F61CFC32292B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:cd:98:b7:e2:d3:b3:e0:43:8a:bb:66:5a:a4:
d2:38:58:7c:76:b3:59:b4:aa:48:18:56:53:4d:36:
2a:41:50:bd:6e:03:b6:db:11:ed:a8:aa:fd:c5:5e:
39:9b:87:b3:89:b4:a6:e2:69:2f:d0:3b:1d:b8:97:
f8:ba:03:3f:9f:7e:90:8a:59:73:1c:36:49:c3:8a:
06:16:4c:5c:19:24:50:0c:73:52:8a:3c:9a:f3:e6:
ad:87:05:ea:f0:26:56:49:f1:e4:18:54:8c:a9:43:
53:50:f8:2f:b2:57:e8:8f:ba:40:c1:89:71:b7:0e:
c3:29:eb:aa:43:8c:c3:09:a2:0a:a8:98:28:98:d0:
8e:e1:1d:a5:37:5c:83:1f:6b:6a:b4:0d:61:7a:9a:
80:f1:44:13:b1:50:28:4f:79:0a:c6:51:8b:7a:a6:
be:7d:c7:bf:df:0a:1e:79:34:05:e4:68:32:44:19:
96:dc:fd:7b:41:f3:aa:20:dd:1e:d9:ae:75:a8:d2:
61:e6:aa:59:66:b3:f0:f7:c0:0c:bb:da:a9:eb:0d:
f9:38:1f:51:17:59:88:c1:22:22:64:d0:e2:e7:3a:
64:47:3f:e0:fb:02:b2:6e:a9:70:a4:9e:8f:60:45:
dd:90:3a:be:f4:87:99:9d:f8:82:33:5f:b1:ed:9d:
5f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:00:05:07:52:48:04:E5:F5:C3:98:4E:2B:D4:F6:1C:FC:32:29:2B
X509v3 Authority Key Identifier:
keyid:5B:0D:72:F9:F4:30:B7:D4:00:33:75:F1:0D:50:25:B9:E5:C0:04:37
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/nAAFB1JIBOX1w5hOK9T2HPwyKSs.roa
sbgp-ipAddrBlock: critical
IPv4:
202.171.224.0/21
Signature Algorithm: sha256WithRSAEncryption
6c:f6:ab:23:ca:c6:16:46:f5:a7:97:32:63:32:13:10:26:8a:
c5:0a:08:2f:9b:06:8a:48:71:c5:35:ad:1a:92:24:d0:80:11:
48:73:03:75:ed:70:93:c4:ac:b1:72:1d:dc:6f:55:f4:ba:ac:
44:c4:2d:4b:50:65:10:4b:d6:1b:84:f5:60:43:16:ab:b1:72:
f8:5e:19:a4:43:e6:87:a7:21:d9:df:a6:91:9f:eb:a2:31:cc:
69:97:d3:47:64:01:31:25:19:7a:cd:c8:f9:ca:ca:8c:39:88:
10:9c:6c:ea:60:54:e6:39:ff:26:3c:4c:2c:5a:64:4a:58:c7:
87:16:c7:44:61:a1:2a:38:28:6f:1a:7e:8b:6c:03:1c:f2:c0:
85:73:ee:aa:68:8a:7f:0f:aa:23:dd:cf:56:b4:d5:0b:3c:6f:
fd:18:a3:ea:04:e7:a1:8a:b3:48:4f:69:a2:b2:f0:86:18:86:
ad:a5:c4:68:47:d9:6c:c2:a7:16:88:7d:bf:d9:c2:e0:c9:30:
de:6e:f8:be:70:c5:d9:d2:5b:b1:bd:b5:50:43:e0:19:52:10:
21:4b:ab:95:80:10:43:5c:cd:13:68:20:87:e7:97:dc:b3:ae:
23:55:ef:af:fe:32:eb:e8:71:26:bf:b3:b7:55:46:40:09:23:
4f:ca:e3:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:11 2024 by rpki-client on console-ams.rpki-client.org