Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/4LHZsWbhHaH2ZM_H2-Y--L9u1ds.roa
File: 4LHZsWbhHaH2ZM_H2-Y--L9u1ds.roa (raw, json)
Hash identifier: X2ww7Msg55mLZTMeFGju1TClMFt8Yuf5bC3LTsrG+Io=
Subject key identifier: E0:B1:D9:B1:66:E1:1D:A1:F6:64:CF:C7:DB:E6:3E:F8:BF:6E:D5:DB
Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB
Certificate serial: 018F
Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/4LHZsWbhHaH2ZM_H2-Y--L9u1ds.roa
Signing time: Sun 01 Oct 2023 01:34:35 +0000
ROA not before: Sun 01 Oct 2023 01:34:35 +0000
ROA not after: Sat 14 Sep 2024 01:30:03 +0000
asID: 9824
IP address blocks: 123.98.224.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 399 (0x18f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB
Validity
Not Before: Oct 1 01:34:35 2023 GMT
Not After : Sep 14 01:30:03 2024 GMT
Subject: CN=E0B1D9B166E11DA1F664CFC7DBE63EF8BF6ED5DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:cf:ee:30:a0:59:e7:66:ea:3a:98:36:1d:8f:
f7:4a:41:df:a3:ef:1f:58:6a:69:92:29:32:3c:ac:
12:4d:ad:66:03:ce:f8:0b:bc:33:d3:20:af:87:d8:
e6:81:95:cb:2f:63:3f:f0:aa:fb:f3:a0:17:24:1a:
87:0a:76:a7:8b:72:9a:91:45:9c:c4:ef:f2:d0:03:
df:63:44:00:19:f5:09:be:4d:66:e5:85:2b:8f:12:
c2:79:59:9b:97:24:d0:5d:45:43:c9:74:1a:27:a0:
9e:b6:ca:b9:44:77:5e:38:14:8b:7c:2f:6b:0d:74:
fc:f1:e5:e2:5e:c2:3c:13:dc:8e:a1:0d:a2:3d:1f:
53:cc:2b:50:02:0c:33:f8:f0:bd:cf:a1:28:bb:d1:
2d:8e:06:b9:76:a6:ef:86:93:b9:04:a5:47:1e:0f:
39:30:ef:c7:d5:28:8b:90:cd:09:67:99:18:9f:6e:
d2:a4:53:05:0e:f6:e6:77:00:b3:bb:69:69:c4:f5:
b3:07:2c:94:1f:cc:f3:82:7c:f0:90:9c:4f:cc:d6:
bf:5e:79:4c:6b:5f:26:a4:05:cc:92:32:49:54:6a:
fb:14:72:6c:50:69:4f:74:fb:c0:f9:f1:47:9c:e4:
7d:3f:83:0c:74:6d:80:36:e8:a4:b3:32:47:95:6f:
71:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:B1:D9:B1:66:E1:1D:A1:F6:64:CF:C7:DB:E6:3E:F8:BF:6E:D5:DB
X509v3 Authority Key Identifier:
keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/4LHZsWbhHaH2ZM_H2-Y--L9u1ds.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
123.98.224.0/19
Signature Algorithm: sha256WithRSAEncryption
83:10:2d:98:58:e2:aa:f7:11:25:c1:21:56:1d:37:60:3d:2e:
6e:f0:ea:b1:05:bf:90:12:2e:14:6f:63:f5:4d:f9:4b:69:57:
80:02:8b:e3:e4:41:3d:c3:b8:9d:ba:78:30:7b:30:28:38:c1:
24:4e:ec:12:c0:c5:e7:2c:3c:39:20:82:d4:79:b8:57:05:48:
53:64:88:81:b8:8f:b8:24:0c:ec:15:85:bc:dd:e4:74:df:ea:
05:1d:46:4c:83:67:a6:eb:e1:cd:70:e0:70:a8:5f:19:8c:41:
49:ff:7a:13:eb:e8:72:34:c1:98:a6:a9:e2:9e:75:68:1d:48:
4e:3d:1b:17:e1:26:3a:ad:e0:c3:be:c0:e9:33:08:bb:bc:4b:
99:7e:30:e0:78:4f:22:e8:c1:6b:c1:8f:a4:23:63:04:c9:f2:
03:32:c2:c9:c6:46:ea:2a:bb:13:35:19:1c:f9:3e:25:12:b6:
1d:5c:5b:6c:ac:4b:b3:e4:95:e9:db:63:0d:09:ec:c1:99:78:
fd:1f:5c:8f:f0:31:dc:f7:02:e0:6e:d6:22:8d:b0:c3:bb:16:
ce:17:eb:e2:d3:e1:c2:b6:c7:c2:93:42:09:5a:cc:3f:40:5a:
f1:d3:31:b3:f2:60:04:2b:83:36:cc:c6:69:b0:06:6b:c9:e1:
dc:36:9c:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:34:21 2025 by rpki-client