Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/539/nzELKbJSMO5tUfjonyMJidcOntE.roa
File: nzELKbJSMO5tUfjonyMJidcOntE.roa (raw, json)
Hash identifier: 9BjbVHr/sEP4nPugh4EGbjpAxdV2a4Y8GFgiRbkDixw=
Subject key identifier: 9F:31:0B:29:B2:52:30:EE:6D:51:F8:E8:9F:23:09:89:D7:0E:9E:D1
Certificate issuer: /CN=5B0D72F9F430B7D4003375F10D5025B9E5C00437
Certificate serial: 44
Authority key identifier: 5B:0D:72:F9:F4:30:B7:D4:00:33:75:F1:0D:50:25:B9:E5:C0:04:37
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/nzELKbJSMO5tUfjonyMJidcOntE.roa
Signing time: Sat 01 Oct 2022 01:29:29 +0000
ROA not before: Sat 01 Oct 2022 01:29:29 +0000
ROA not after: Fri 15 Sep 2023 01:30:03 +0000
asID: 55900
IP address blocks: 202.171.224.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68 (0x44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5B0D72F9F430B7D4003375F10D5025B9E5C00437
Validity
Not Before: Oct 1 01:29:29 2022 GMT
Not After : Sep 15 01:30:03 2023 GMT
Subject: CN=9F310B29B25230EE6D51F8E89F230989D70E9ED1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8e:b3:81:b0:0b:ee:0a:94:28:dc:6d:bc:90:
ca:43:2b:19:27:ca:3a:d8:c2:e0:4e:22:22:26:3c:
cc:f0:01:27:a8:15:90:14:ee:67:bf:2c:b8:df:cd:
2b:4e:f5:ce:08:1f:5d:cd:9a:fb:5a:1d:c8:13:46:
96:77:7f:b9:f0:38:8a:10:c3:bf:a5:65:4f:7d:9b:
40:68:77:82:47:b5:1c:f2:6f:59:b8:c4:7c:8a:6e:
78:aa:88:52:1d:49:65:6b:a5:12:1d:5d:f8:a4:af:
75:f4:ea:ea:ec:26:c9:b1:85:bf:be:cd:4a:06:29:
33:4f:98:b8:27:e6:c6:90:4d:70:f6:56:1c:a4:9e:
d7:50:c9:0f:33:44:d1:a8:22:31:88:56:cb:f9:5e:
e6:a4:7c:a0:28:d0:3f:e9:d7:9f:b0:1d:38:b5:4a:
08:3c:b9:dd:8e:d2:a2:b9:9a:47:43:b8:05:c9:ab:
27:36:01:c1:b6:0a:c1:f4:26:c0:3a:19:9d:b3:63:
e9:07:f3:dc:d7:67:8f:21:79:60:de:9b:fa:b8:18:
03:88:57:77:f5:a8:06:13:6d:cb:44:d0:52:9d:b2:
3d:d2:7d:55:05:67:45:3c:2b:f6:4f:78:be:5b:8b:
35:17:af:6e:df:8a:3c:95:79:08:12:95:f7:55:38:
27:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:31:0B:29:B2:52:30:EE:6D:51:F8:E8:9F:23:09:89:D7:0E:9E:D1
X509v3 Authority Key Identifier:
keyid:5B:0D:72:F9:F4:30:B7:D4:00:33:75:F1:0D:50:25:B9:E5:C0:04:37
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/nzELKbJSMO5tUfjonyMJidcOntE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.171.224.0/21
Signature Algorithm: sha256WithRSAEncryption
90:75:e0:22:70:33:d2:3d:14:09:78:cc:ac:1a:3e:18:00:35:
84:a4:f7:5b:3f:cf:03:ce:ff:47:bf:ba:21:bd:e3:71:cb:6a:
3d:6f:61:de:ea:ec:61:42:05:31:58:d9:96:78:34:65:ee:48:
10:5a:81:7c:02:04:d5:d1:bc:21:05:f6:19:4e:7e:3b:f0:57:
c8:b0:ea:07:1b:bc:61:38:25:19:4e:65:b8:05:c5:39:b2:67:
04:83:ff:c9:74:ed:06:50:6d:db:ae:6e:14:e1:ef:52:3b:95:
4d:41:b4:6a:13:76:81:75:97:9a:f8:56:d8:5f:24:c2:b6:35:
80:e8:1d:62:bd:e7:94:6a:66:45:d4:82:16:14:ec:a2:ca:cd:
5f:bb:a1:9a:a2:36:d9:64:1b:bb:8d:7d:db:ff:76:7a:cd:75:
32:f8:d7:16:60:0e:4e:1b:bf:2d:6a:5c:ec:1d:b1:a0:69:4b:
00:60:85:fb:db:77:2f:c2:92:43:6c:fb:36:61:02:59:5a:70:
f0:b6:60:25:dd:49:b3:74:9e:85:da:79:e2:a3:f1:f8:cb:fc:
71:ca:77:75:de:0a:e3:5a:62:e4:ba:2d:71:e2:e1:cd:5a:25:
22:8f:78:44:e9:67:a1:d3:f6:9f:3c:e1:75:1d:3c:d2:b6:66:
a5:28:45:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:54 2024 by rpki-client on console-fra.rpki-client.org