Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/tYycmydKQqpD6VSVlcpUhpCeq30.roa
File: tYycmydKQqpD6VSVlcpUhpCeq30.roa (raw, json)
Hash identifier: crOJ41jqdwRsHYc/gtjKsw2iK9QI/KXsbGqOMJWPG9A=
Subject key identifier: B5:8C:9C:9B:27:4A:42:AA:43:E9:54:95:95:CA:54:86:90:9E:AB:7D
Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Certificate serial: 0476
Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/tYycmydKQqpD6VSVlcpUhpCeq30.roa
Signing time: Thu 13 Apr 2023 09:59:50 +0000
ROA not before: Thu 13 Apr 2023 09:59:50 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 10010
IP address blocks: 220.148.180.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1142 (0x476)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Validity
Not Before: Apr 13 09:59:50 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=B58C9C9B274A42AA43E9549595CA5486909EAB7D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ff:02:9d:7a:ae:96:bb:95:f5:03:89:fb:81:
02:aa:c8:54:84:35:a3:75:17:bf:8e:c7:86:89:3a:
aa:bd:96:91:f0:a1:eb:2f:76:5c:8c:0a:8c:14:4c:
5f:74:fd:03:57:06:fa:28:b9:9a:44:5c:c8:58:a5:
e0:29:fe:31:81:7f:00:8e:1b:b2:ad:98:3f:14:66:
5b:83:e4:ed:aa:49:97:08:b6:75:5d:8c:b8:03:2f:
40:c2:c3:1c:2a:b7:8d:f9:e6:4d:8a:01:4c:80:d4:
e6:68:ad:59:3d:0a:e5:03:1e:66:0f:ef:bc:78:c8:
81:a7:1d:07:36:22:99:80:ef:72:3f:7f:5d:9a:12:
02:f3:70:76:5e:bd:a6:86:da:dd:a6:89:46:e9:22:
07:01:f6:27:6c:6d:5e:af:35:19:43:09:de:2a:9f:
4d:94:2f:a2:87:ae:d6:de:7b:da:62:14:17:f9:6e:
70:61:f2:fd:ea:fc:29:1b:c5:d7:bb:ff:02:26:f8:
5d:c8:47:27:5e:7c:2b:ad:73:22:e0:27:46:6e:d7:
58:61:88:78:bd:1b:06:22:9c:87:8a:11:da:6b:22:
ce:f1:7c:ce:ac:9c:33:c0:f2:9e:6a:09:64:54:5e:
89:24:ac:2e:e7:cc:cd:22:dd:24:80:76:ba:9c:99:
96:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:8C:9C:9B:27:4A:42:AA:43:E9:54:95:95:CA:54:86:90:9E:AB:7D
X509v3 Authority Key Identifier:
keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/tYycmydKQqpD6VSVlcpUhpCeq30.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.148.180.0/22
Signature Algorithm: sha256WithRSAEncryption
74:50:66:11:4e:74:68:20:fc:a2:ff:5f:8b:01:36:57:7c:3a:
b9:c9:6a:3e:12:17:72:1d:67:d1:51:35:14:6f:99:49:b9:d8:
88:7b:34:09:f7:07:8b:f7:ae:68:39:5f:3b:66:09:bb:d1:67:
37:3c:00:40:1d:11:a2:17:20:21:ca:12:4e:e1:14:75:bf:d2:
19:94:98:7a:68:9c:3f:ef:c7:5b:59:d0:91:5b:13:73:22:3f:
9f:4b:f5:a9:d6:b3:e4:00:fe:e5:f7:95:17:88:18:a1:68:bf:
7b:24:31:16:cb:55:db:28:4d:90:e8:95:78:1c:0d:77:80:6e:
87:2c:b0:0c:cd:9e:a3:47:21:38:d4:5a:ce:c4:81:65:c5:5a:
f4:ab:5c:88:66:1c:87:f6:7a:7a:a8:c6:b7:40:57:51:f8:a6:
07:be:f4:9e:01:31:71:7d:f9:79:2d:6f:5f:0e:02:fe:3e:da:
18:76:2a:b3:e8:63:cb:b0:f9:42:52:67:69:0c:e0:3e:86:c3:
95:e0:18:5e:76:00:b1:75:1a:b8:9a:1d:f8:ec:22:77:f1:ce:
30:cd:39:e8:3e:96:b2:0d:d8:59:17:f9:5e:78:cc:bb:ab:1e:
bd:f3:cc:cf:70:0b:ba:6c:42:74:72:80:93:67:28:a3:45:cf:
32:c8:2b:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:11 2024 by rpki-client on console-ams.rpki-client.org