Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/699/Tgdt601FY6CbBf2ADaDwxK-Tv1U.roa
File: Tgdt601FY6CbBf2ADaDwxK-Tv1U.roa (raw, json)
Hash identifier: GZC8ROOSULYTvUp04pkXHmlX5KBVAyFvqKhEEHO+SQY=
Subject key identifier: 4E:07:6D:EB:4D:45:63:A0:9B:05:FD:80:0D:A0:F0:C4:AF:93:BF:55
Certificate issuer: /CN=6522E2C3EF4D93F13E758A807A40A8E1BF9AB130
Certificate serial: 3221
Authority key identifier: 65:22:E2:C3:EF:4D:93:F1:3E:75:8A:80:7A:40:A8:E1:BF:9A:B1:30
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZSLiw-9Nk_E-dYqAekCo4b-asTA.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/Tgdt601FY6CbBf2ADaDwxK-Tv1U.roa
Signing time: Thu 13 Apr 2023 09:53:08 +0000
ROA not before: Thu 13 Apr 2023 09:53:08 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 7671
IP address blocks: 125.252.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12833 (0x3221)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6522E2C3EF4D93F13E758A807A40A8E1BF9AB130
Validity
Not Before: Apr 13 09:53:08 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=4E076DEB4D4563A09B05FD800DA0F0C4AF93BF55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b2:68:87:03:fd:6e:87:1f:ea:88:5d:8a:97:
44:ce:66:fd:86:fa:a0:ac:41:d3:c4:71:33:90:f0:
32:87:e3:27:34:50:7c:d6:ee:95:df:22:66:38:3a:
37:9d:f4:fa:6b:57:2a:da:6a:33:5f:b9:7e:ba:c3:
bc:d2:df:d1:d2:c7:80:94:a1:69:fe:2b:39:95:0a:
2f:f4:32:e0:2a:a9:ca:90:55:c4:54:94:46:1c:40:
22:69:01:fc:4d:fe:5c:13:32:d8:79:2b:46:4e:21:
e8:9e:61:bf:df:0c:90:63:78:73:aa:c7:b9:c6:d8:
cc:75:16:f7:5f:c4:b9:1a:98:18:a5:d8:cb:26:00:
14:6b:d6:bd:c6:6b:20:38:69:e9:c2:11:9c:21:76:
38:08:bb:fc:6b:e1:f5:db:1c:30:a3:e8:ce:f7:be:
f4:24:df:58:a4:cb:b0:c9:bd:b1:27:6d:7b:db:c7:
c3:c9:f3:0c:e0:fd:53:d6:ea:c0:c9:a5:76:e3:b3:
7a:95:17:4a:30:be:1f:93:29:64:e1:b5:3d:21:bb:
3b:9a:1f:01:b2:fb:ec:de:41:2d:a7:0b:97:f3:cd:
22:67:56:c0:b2:04:9d:e0:c2:63:b4:d1:2a:dd:c3:
a9:56:f6:a5:e7:ce:73:a9:25:c6:e5:b3:8b:27:68:
aa:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:07:6D:EB:4D:45:63:A0:9B:05:FD:80:0D:A0:F0:C4:AF:93:BF:55
X509v3 Authority Key Identifier:
keyid:65:22:E2:C3:EF:4D:93:F1:3E:75:8A:80:7A:40:A8:E1:BF:9A:B1:30
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/ZSLiw-9Nk_E-dYqAekCo4b-asTA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZSLiw-9Nk_E-dYqAekCo4b-asTA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/Tgdt601FY6CbBf2ADaDwxK-Tv1U.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
125.252.128.0/18
Signature Algorithm: sha256WithRSAEncryption
9b:f3:25:d1:db:da:3f:a9:ab:58:21:a9:29:be:a2:de:2b:e7:
46:ae:b2:19:42:1b:6b:f8:17:6d:03:86:9e:a1:12:cc:74:a3:
86:ee:0b:0b:6d:e1:f7:6a:51:5d:97:d5:70:38:2a:29:ea:44:
3e:4f:80:6b:94:dd:25:51:7e:75:ad:54:17:d7:27:3e:10:ba:
0c:a6:68:2e:ef:8d:b1:92:db:9d:90:79:cb:c1:0f:fc:8b:9f:
2f:a6:9b:66:38:b4:b5:59:a7:f6:b3:8b:00:06:76:bb:4b:3a:
94:f9:a6:6e:e6:71:b2:5e:a3:c2:92:86:28:ce:3c:54:e0:19:
dc:7a:5a:71:bd:5c:b1:59:e7:58:f1:b9:5c:0b:b2:c3:cf:b2:
ed:c2:8f:90:d4:18:0a:87:c8:88:ec:24:01:7b:79:a5:ad:8e:
b9:8c:c6:3f:54:f0:79:36:f6:2d:a1:bb:5c:29:d4:7d:94:ec:
67:69:43:20:79:12:de:66:d1:49:20:1d:59:9d:54:b6:ea:9f:
75:70:78:f6:00:4a:81:5a:80:cc:f0:22:e2:58:ae:27:14:80:
85:37:0b:b3:7f:9d:48:81:b2:d9:e0:5a:54:24:b9:af:c8:99:
b2:95:c2:7c:0c:9f:93:a3:a5:ce:53:43:93:1f:d4:14:38:07:
df:1f:6a:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:14 2024 by rpki-client on console-ams.rpki-client.org