Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/Psxkz7GzHigkpRLkkMjACUSVw7A.roa
File: Psxkz7GzHigkpRLkkMjACUSVw7A.roa (raw, json)
Hash identifier: zhIfV1LiwMRAPjquU2ft8wiOaX8sDQU2f1HhG/1qKTU=
Subject key identifier: 3E:CC:64:CF:B1:B3:1E:28:24:A5:12:E4:90:C8:C0:09:44:95:C3:B0
Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Certificate serial: 046A
Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/Psxkz7GzHigkpRLkkMjACUSVw7A.roa
Signing time: Thu 13 Apr 2023 09:59:45 +0000
ROA not before: Thu 13 Apr 2023 09:59:45 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 10010
IP address blocks: 220.216.68.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1130 (0x46a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Validity
Not Before: Apr 13 09:59:45 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=3ECC64CFB1B31E2824A512E490C8C0094495C3B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:f5:c0:50:fa:d5:3b:19:8d:08:96:f4:da:16:
83:0a:e1:3d:da:16:32:73:f2:f7:96:41:bd:59:58:
bf:95:f4:f4:48:60:84:66:02:9b:0d:8f:58:a5:d7:
df:2a:36:14:77:b2:79:cc:2e:bb:a1:cd:d0:92:62:
81:16:4b:1b:f6:56:ed:6b:cb:92:de:ea:41:87:84:
f7:30:e2:3b:b5:e7:30:cb:08:c5:0e:67:e6:ea:76:
f0:72:da:81:f4:4c:5a:4e:82:ab:cf:38:9a:5d:20:
e3:37:c5:b7:b2:ba:94:4c:b0:35:22:dc:89:58:03:
31:28:d2:c2:1f:90:8c:0d:cb:e6:15:b5:e5:29:53:
5d:1e:57:40:d2:90:13:94:ff:2e:e6:00:e2:9f:21:
a7:70:86:7e:a6:3f:2a:49:64:82:d6:25:2a:39:c6:
01:43:26:19:bf:37:4b:38:a5:d6:15:86:d6:99:d8:
db:91:56:ea:24:d9:f9:70:5f:21:ba:22:fe:42:15:
76:59:1e:56:1b:a5:84:3c:af:f8:32:3c:8d:93:46:
38:7e:3f:b1:00:d7:09:eb:49:e8:84:52:95:83:c8:
01:a9:05:9a:98:09:ff:a5:3e:e5:cd:85:97:54:0b:
1d:28:01:03:ee:d0:59:63:93:57:05:d4:5c:25:d3:
5a:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:CC:64:CF:B1:B3:1E:28:24:A5:12:E4:90:C8:C0:09:44:95:C3:B0
X509v3 Authority Key Identifier:
keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/Psxkz7GzHigkpRLkkMjACUSVw7A.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.216.68.0/23
Signature Algorithm: sha256WithRSAEncryption
6f:90:be:6f:70:36:87:30:c9:14:93:40:a1:1b:49:fc:9e:38:
dd:57:63:ea:d6:d3:20:0b:b0:e7:b8:39:0b:98:da:47:91:98:
48:a2:15:62:8e:0b:21:58:62:bc:0f:31:c3:0a:48:2c:ce:d1:
c6:4d:2c:79:2a:0b:19:f0:09:48:bc:d9:70:ce:2c:b6:8c:92:
5b:c3:15:1a:0f:f7:0d:f7:08:51:c4:ea:51:de:66:1b:28:df:
b1:0b:6d:9f:9f:59:59:b1:e8:4b:fe:6b:1d:0d:cd:17:1e:1b:
fe:78:d7:b4:e2:35:22:3a:13:58:66:1f:d8:08:10:88:f3:7d:
9f:16:a5:e9:e5:a6:7b:ba:95:3b:2b:d7:db:83:e7:e5:ae:eb:
f2:0b:f0:b6:ad:33:c6:bf:d8:44:78:d5:64:08:47:89:5d:ea:
df:2f:54:5c:5e:f9:e6:bb:18:22:9b:b0:7c:a5:72:33:3b:10:
37:d3:e4:6b:22:8a:22:6d:11:42:a1:f2:e1:19:a0:88:57:03:
b4:f1:7d:12:88:3b:b3:1c:d1:47:05:91:58:bc:a7:9f:d4:72:
3d:78:cf:42:2a:66:fe:0e:3b:d5:e5:5e:f2:b9:56:bd:dc:1d:
1d:06:d9:99:f1:5e:5c:ef:64:09:7b:fb:a4:b8:92:a9:9d:80:
43:51:16:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:55 2024 by rpki-client on console-fra.rpki-client.org