Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/G4y_8JhppOCx_j_h6f4qHxvwE1M.roa
File: G4y_8JhppOCx_j_h6f4qHxvwE1M.roa (raw, json)
Hash identifier: 2+HdzUNdgVMSImBvYTQXIFA+B/MQt4FQRKaHd7P0O1s=
Subject key identifier: 1B:8C:BF:F0:98:69:A4:E0:B1:FE:3F:E1:E9:FE:2A:1F:1B:F0:13:53
Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Certificate serial: 0423
Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/G4y_8JhppOCx_j_h6f4qHxvwE1M.roa
Signing time: Thu 13 Apr 2023 09:52:28 +0000
ROA not before: Thu 13 Apr 2023 09:52:28 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 10010
IP address blocks: 42.125.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1059 (0x423)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Validity
Not Before: Apr 13 09:52:28 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=1B8CBFF09869A4E0B1FE3FE1E9FE2A1F1BF01353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4a:0b:48:b8:48:40:73:f3:97:c4:b0:0a:ce:
06:03:fc:fb:82:3e:a6:3e:73:79:c4:0b:11:e7:0d:
18:ff:11:64:31:15:0b:bd:55:e9:f7:85:dd:e7:77:
77:96:6e:aa:7f:fe:61:81:a0:ae:b5:f8:4c:1a:f6:
70:cd:a2:cd:11:7f:4b:8b:f8:78:fd:64:53:1c:11:
0d:aa:92:6f:da:3e:58:0f:99:b8:92:90:0e:a6:8a:
a1:95:b3:25:87:65:90:0d:77:76:10:0c:da:ca:13:
36:87:d2:19:36:97:bb:fa:3e:1c:57:33:3e:e7:78:
56:3e:16:23:b7:f2:f5:41:94:29:6a:f7:94:11:11:
b8:60:da:02:a5:e3:f0:74:de:9f:e2:83:87:a9:dd:
d0:be:b3:cc:cd:1d:52:4e:c6:00:3a:14:74:f5:bb:
73:c0:03:d1:e9:c1:8c:ff:94:a4:dc:ef:98:44:d7:
1e:5a:9a:07:06:e4:8d:a0:7a:4a:38:28:9b:53:01:
61:a8:55:53:5e:f7:ab:5f:c8:c1:e1:fa:dd:7a:5e:
8e:40:9f:24:32:e9:a6:d6:d9:6f:bb:07:0f:1d:c2:
38:8f:ab:57:3b:fc:68:2c:ec:ef:67:9f:3f:5b:53:
fc:0f:82:ed:2d:c3:ed:e6:f0:55:f5:c7:c2:fa:12:
ed:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:8C:BF:F0:98:69:A4:E0:B1:FE:3F:E1:E9:FE:2A:1F:1B:F0:13:53
X509v3 Authority Key Identifier:
keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/G4y_8JhppOCx_j_h6f4qHxvwE1M.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
42.125.128.0/18
Signature Algorithm: sha256WithRSAEncryption
5c:0e:14:13:04:30:15:04:e1:ca:f6:55:de:3b:0d:cc:87:78:
db:db:fa:f3:c8:6c:7d:bb:86:1f:70:c2:23:7a:5b:df:24:0a:
19:3a:25:1d:05:d0:da:74:46:90:4a:5d:39:86:f1:b7:b0:92:
57:43:03:6d:40:66:66:39:f0:17:db:fa:ff:ae:d5:a4:4c:fc:
26:42:44:c0:41:92:41:d0:81:be:a5:eb:6f:95:01:57:af:22:
88:7e:19:38:a2:a0:22:64:aa:5e:a0:22:bf:c5:86:75:a2:60:
36:58:3d:dc:3e:99:bb:b4:1b:c7:b4:ee:72:fb:49:e7:16:44:
5e:f9:b4:c1:43:98:9d:fe:ae:c8:3e:66:7b:0f:1b:01:9e:0e:
01:1a:b8:21:c5:00:f2:45:61:d0:ea:68:72:ff:a2:49:aa:55:
77:0c:f9:21:ae:b5:3a:56:77:82:a2:86:df:45:77:99:32:19:
3f:cb:04:10:07:7c:da:0e:00:61:0c:38:aa:99:d0:6b:c0:1d:
e1:de:80:92:7f:08:43:1f:cb:8d:22:7f:6f:41:ed:51:0e:a6:
17:3f:74:0e:6f:d4:fe:cb:00:e0:32:4e:f0:6e:fb:4c:19:1c:
68:b7:04:eb:08:f2:6c:39:74:6a:bb:00:11:be:b7:c0:fe:fb:
fd:9b:af:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:11 2024 by rpki-client on console-ams.rpki-client.org