Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/573/65DyDtP13I2aLNGKN7KvabWOO64.roa
File: 65DyDtP13I2aLNGKN7KvabWOO64.roa (raw, json)
Hash identifier: IGraLed5FaNn96j6FTPnS4vvPWdB2HApCHDsRn/2h1k=
Subject key identifier: EB:90:F2:0E:D3:F5:DC:8D:9A:2C:D1:8A:37:B2:AF:69:B5:8E:3B:AE
Certificate issuer: /CN=C814D85BD48360A65D9D4144EC6D20752C1EDC7D
Certificate serial: 3A
Authority key identifier: C8:14:D8:5B:D4:83:60:A6:5D:9D:41:44:EC:6D:20:75:2C:1E:DC:7D
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yBTYW9SDYKZdnUFE7G0gdSwe3H0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/573/65DyDtP13I2aLNGKN7KvabWOO64.roa
Signing time: Thu 01 Dec 2022 01:28:59 +0000
ROA not before: Thu 01 Dec 2022 01:28:59 +0000
ROA not after: Wed 15 Nov 2023 01:30:02 +0000
asID: 131896
IP address blocks: 103.198.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58 (0x3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C814D85BD48360A65D9D4144EC6D20752C1EDC7D
Validity
Not Before: Dec 1 01:28:59 2022 GMT
Not After : Nov 15 01:30:02 2023 GMT
Subject: CN=EB90F20ED3F5DC8D9A2CD18A37B2AF69B58E3BAE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:30:6c:cf:03:63:a0:bd:45:20:23:fa:26:d0:
d1:c5:50:1c:fb:9c:89:92:5b:25:ba:15:05:34:f0:
32:8b:b3:e0:54:a9:47:80:aa:e5:8e:bd:b9:4d:51:
1c:f1:64:a5:c2:35:c5:12:23:fb:57:d6:d6:7b:c2:
7b:52:ff:45:55:65:7c:e1:62:c1:71:3b:11:08:2a:
5f:36:b0:86:cc:84:1d:8f:d9:b5:be:1e:69:79:7d:
10:b1:5a:5e:61:22:23:93:9d:25:f5:98:86:64:e5:
dd:d0:52:cf:bf:ae:49:21:4d:81:67:b5:1f:fc:75:
90:b2:7c:a7:79:0e:ea:56:59:b3:fb:da:94:d8:1e:
ae:79:33:60:21:13:6b:fc:bf:d5:a0:0a:5a:b1:e7:
16:a1:46:39:63:c6:ac:8f:6d:b9:69:ba:f9:4e:92:
98:4a:26:67:7c:3d:f6:8e:11:7b:80:18:5d:70:5f:
ab:bb:e4:98:07:3e:8c:25:16:93:8b:72:8d:09:ce:
a8:9f:53:48:ed:1c:94:50:7a:39:7e:ae:57:02:2e:
47:e3:c1:ac:ca:c7:b4:41:4e:bc:a3:27:1b:2a:20:
f5:83:2e:8a:4e:29:61:54:dc:af:1a:ef:61:4d:a0:
9b:54:74:dd:5d:d7:53:59:db:2c:5c:41:1d:58:cf:
e0:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:90:F2:0E:D3:F5:DC:8D:9A:2C:D1:8A:37:B2:AF:69:B5:8E:3B:AE
X509v3 Authority Key Identifier:
keyid:C8:14:D8:5B:D4:83:60:A6:5D:9D:41:44:EC:6D:20:75:2C:1E:DC:7D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/573/yBTYW9SDYKZdnUFE7G0gdSwe3H0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yBTYW9SDYKZdnUFE7G0gdSwe3H0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/573/65DyDtP13I2aLNGKN7KvabWOO64.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.198.109.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:61:97:54:64:24:ea:73:3a:39:4e:ad:1d:6c:cb:49:7e:48:
ab:ce:24:29:2c:09:1d:9e:57:4f:8e:a8:8b:1a:df:9a:c4:39:
eb:88:2d:7b:b9:6d:b9:7b:10:df:d5:5d:83:e5:dd:95:e7:51:
1d:1f:4e:2d:e1:6c:ad:ef:63:91:ac:ef:05:97:be:77:ac:93:
92:0f:15:d3:47:63:08:40:fa:d4:62:1b:70:f2:ad:97:d8:0f:
41:53:d8:a2:91:d0:68:89:7f:49:a4:42:25:32:5e:bc:ba:d7:
75:64:d2:61:0e:32:82:3b:82:22:48:59:74:03:53:f2:b8:ec:
f8:71:b2:82:36:09:8e:21:86:14:72:9e:03:36:1f:b9:af:69:
86:a1:71:b7:80:91:c5:82:67:b9:f5:00:8d:5f:4e:1f:34:82:
cb:4f:87:f2:0b:13:1c:f6:03:52:c2:95:e4:6d:42:89:df:65:
c4:1b:77:5d:53:46:f1:d1:28:bf:77:7a:59:70:1b:1f:d4:89:
f4:24:1d:a2:94:f9:c1:fa:f3:98:5d:4b:48:a0:86:bd:3c:f7:
08:ce:70:dd:0a:d1:20:83:c1:a9:0a:79:26:f1:c2:26:4a:9a:
67:67:a2:cc:45:e0:df:b6:32:32:2d:56:c2:ac:36:55:57:60:
11:2c:ed:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:55 2024 by rpki-client on console-fra.rpki-client.org