Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/731/wQNjngVakY433rc4QKqEYODoe7o.roa
File: wQNjngVakY433rc4QKqEYODoe7o.roa (raw, json)
Hash identifier: LWdXrTntvoQUa4dDWkdQR7N705d4CHyS4vlbSwaGQL4=
Subject key identifier: C1:03:63:9E:05:5A:91:8E:37:DE:B7:38:40:AA:84:60:E0:E8:7B:BA
Certificate issuer: /CN=91ACA44275EC0572BC6921502B241C14D44A9AA1
Certificate serial: 46
Authority key identifier: 91:AC:A4:42:75:EC:05:72:BC:69:21:50:2B:24:1C:14:D4:4A:9A:A1
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/kaykQnXsBXK8aSFQKyQcFNRKmqE.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/731/wQNjngVakY433rc4QKqEYODoe7o.roa
Signing time: Thu 13 Apr 2023 09:54:04 +0000
ROA not before: Thu 13 Apr 2023 09:54:04 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 18260
IP address blocks: 220.156.192.0/18 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70 (0x46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91ACA44275EC0572BC6921502B241C14D44A9AA1
Validity
Not Before: Apr 13 09:54:04 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=C103639E055A918E37DEB73840AA8460E0E87BBA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:53:ee:80:b8:e8:dd:28:e6:24:1b:b2:85:fd:
08:7d:79:3c:c1:41:35:06:f5:b9:5c:cb:5c:31:f5:
13:af:05:8d:52:4d:ef:47:7f:cf:fd:e7:e6:e9:aa:
cb:80:72:5f:9c:42:cd:1a:ba:12:24:11:f7:ef:18:
dc:e4:0a:39:57:c3:30:76:e4:d4:61:0a:b0:22:02:
99:2e:9d:01:a5:5a:3c:14:6c:92:55:3d:e6:8d:63:
4f:b2:ba:27:a1:11:77:91:0b:32:15:60:a0:77:28:
f3:eb:ee:37:87:8d:47:91:a3:25:05:83:6f:69:cc:
ff:06:af:43:82:ac:26:2b:97:b1:14:33:ce:b5:98:
0b:bf:03:10:45:bc:3b:57:b1:43:e0:da:c3:22:5e:
b3:26:09:71:4f:ae:54:e0:17:02:39:0b:51:55:a5:
f7:a9:26:10:da:17:71:b4:67:52:f9:9f:59:aa:18:
8d:1b:2e:30:4d:5d:7e:6c:47:83:70:b6:33:db:35:
47:22:ce:d7:39:dc:f3:4b:14:2b:16:fb:4a:3a:e9:
5c:80:6f:62:b7:b3:ba:16:08:10:d9:55:3a:f7:84:
88:ff:ad:30:93:eb:d1:eb:90:60:7b:b0:4f:b1:bf:
9f:39:59:62:0a:f8:c5:dc:21:04:e0:77:6f:a9:a5:
df:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:03:63:9E:05:5A:91:8E:37:DE:B7:38:40:AA:84:60:E0:E8:7B:BA
X509v3 Authority Key Identifier:
keyid:91:AC:A4:42:75:EC:05:72:BC:69:21:50:2B:24:1C:14:D4:4A:9A:A1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/731/kaykQnXsBXK8aSFQKyQcFNRKmqE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/kaykQnXsBXK8aSFQKyQcFNRKmqE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/731/wQNjngVakY433rc4QKqEYODoe7o.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.156.192.0/18
Signature Algorithm: sha256WithRSAEncryption
38:1e:70:8e:99:59:70:56:f2:75:5a:60:c6:c4:7b:db:07:e7:
8f:eb:0c:20:aa:d8:44:98:11:b1:1f:08:9b:62:5c:45:7c:7e:
70:7c:ba:a5:2d:89:97:28:c0:9f:e6:bd:5e:89:68:42:ba:85:
ed:ae:ae:dd:22:e3:07:90:b7:06:e0:e7:b0:79:00:78:16:18:
d0:31:25:0f:bc:18:f7:76:44:98:0b:80:e3:18:5c:4e:24:b1:
07:7e:ca:1c:6b:96:a6:6b:05:03:3b:5e:b1:a7:de:2a:93:ad:
37:34:0e:c6:51:48:50:64:0b:09:5a:57:af:05:80:c2:d4:4b:
1c:f5:72:41:ee:d4:54:46:53:aa:5b:e1:c6:98:e2:c5:a7:14:
39:42:99:e4:dc:05:fb:e9:d0:b7:15:f1:54:07:94:f1:58:f1:
56:3b:d2:b5:72:cc:76:d7:d3:89:89:0b:01:e6:cc:aa:84:ed:
2f:5c:cb:d3:86:0e:ee:28:0e:a4:74:b0:93:84:dd:f8:b8:93:
0f:3d:ca:4e:2b:33:6a:87:8d:84:96:ae:26:40:a4:f5:f8:f7:
d7:87:66:ae:03:8e:6b:75:c4:b9:7a:4f:9b:56:66:ae:f5:24:
26:19:e9:d6:3c:36:55:12:4c:17:f0:70:84:a2:7b:c1:30:c7:
6a:cc:37:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:56 2024 by rpki-client on console-fra.rpki-client.org