Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/840/HM6rTBoR6sN3FgXboWJ3BsqFJMY.roa
File: HM6rTBoR6sN3FgXboWJ3BsqFJMY.roa (raw, json)
Hash identifier: YuDG61p9liIDtRCfRa8ZhP2yPUDP8wDMNr50bnZzmYY=
Subject key identifier: 1C:CE:AB:4C:1A:11:EA:C3:77:16:05:DB:A1:62:77:06:CA:85:24:C6
Certificate issuer: /CN=D79B3890C2DA3795148976B954C2024056797554
Certificate serial: 1B
Authority key identifier: D7:9B:38:90:C2:DA:37:95:14:89:76:B9:54:C2:02:40:56:79:75:54
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/HM6rTBoR6sN3FgXboWJ3BsqFJMY.roa
Signing time: Thu 13 Apr 2023 09:51:25 +0000
ROA not before: Thu 13 Apr 2023 09:51:25 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 131934
IP address blocks: 221.132.96.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27 (0x1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D79B3890C2DA3795148976B954C2024056797554
Validity
Not Before: Apr 13 09:51:25 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=1CCEAB4C1A11EAC3771605DBA1627706CA8524C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:af:25:46:ee:81:1d:a2:8b:d4:38:b3:09:d6:
cf:66:53:6e:8c:32:47:18:63:d4:f1:60:2c:e0:23:
c8:88:36:03:24:83:49:17:a0:fb:c7:d3:57:84:4b:
01:df:63:0b:4e:55:c9:3c:01:81:ed:94:4f:60:a6:
8b:4f:8c:a7:d4:0a:8d:33:1f:a8:ce:8e:c6:f4:a0:
db:23:8e:2c:ea:15:53:9f:0a:3c:3a:88:c6:05:44:
ea:91:7d:93:73:16:fc:00:cd:a6:6f:04:7f:60:3f:
c1:36:4b:0c:7e:38:1b:5c:e4:d4:d6:7d:2e:3a:83:
c6:a9:7a:f9:f0:29:9a:36:1c:4a:dc:8d:c3:fa:6a:
55:bf:c3:3c:27:48:95:33:4c:89:fe:fd:da:49:0c:
cd:d9:6c:8b:aa:34:09:94:af:ef:38:41:ec:d0:72:
44:12:7c:2c:04:82:8a:bd:fe:8a:46:f5:e9:22:7f:
b7:3e:f5:ce:87:74:65:e2:71:5a:07:d6:30:fd:4b:
f0:94:08:b2:b0:45:92:78:46:20:0e:cc:63:6e:ab:
a6:a1:87:2f:3e:a0:6a:5c:bc:08:d1:67:97:cd:87:
3d:ed:58:ae:4c:41:59:71:0a:99:f9:6d:c2:1d:49:
1b:c8:11:f5:78:d7:9b:48:9f:45:a8:e8:09:a5:2b:
b1:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:CE:AB:4C:1A:11:EA:C3:77:16:05:DB:A1:62:77:06:CA:85:24:C6
X509v3 Authority Key Identifier:
keyid:D7:9B:38:90:C2:DA:37:95:14:89:76:B9:54:C2:02:40:56:79:75:54
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/15s4kMLaN5UUiXa5VMICQFZ5dVQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/HM6rTBoR6sN3FgXboWJ3BsqFJMY.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
221.132.96.0/20
Signature Algorithm: sha256WithRSAEncryption
ae:3c:a9:d0:4d:86:09:dc:c5:0a:8d:d1:f2:95:22:27:03:63:
4c:b8:40:e6:fa:6d:54:e5:64:de:7a:a5:3c:b8:6e:cc:bb:85:
49:ac:46:f1:c6:c9:fd:68:99:71:26:09:97:4a:55:94:2c:a8:
7b:00:82:ff:48:f9:04:c8:39:f8:8a:54:46:2e:b1:8a:c7:42:
af:13:82:ea:ed:f0:65:75:60:ca:27:41:b3:ae:2d:c6:28:46:
b8:85:ba:f5:a4:98:c7:8c:12:ac:30:c0:3d:44:a8:a9:37:46:
20:56:89:2c:e5:18:f0:65:f0:c7:4b:f0:b7:5b:81:93:62:2f:
db:9b:52:86:7b:43:3c:2b:00:59:07:18:4b:44:f5:d6:1e:f5:
ca:41:b2:32:37:3e:eb:41:fe:17:45:4f:49:38:d6:a5:5c:43:
d0:00:15:2c:2e:fa:a6:b0:46:6a:88:10:21:14:21:61:c5:4b:
46:da:39:b0:2b:92:75:23:e5:07:50:1c:d6:a0:63:ab:07:ad:
56:7d:11:2c:c1:c3:97:6a:94:38:ec:be:0e:d4:3e:d4:b9:99:
f1:e7:5c:ac:0f:fc:fc:34:4d:2c:f4:c1:05:c2:58:32:62:33:
ca:fd:fc:cb:ac:de:d1:05:07:c8:55:32:cd:20:2d:a8:31:70:
4a:9a:f1:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:56 2024 by rpki-client on console-fra.rpki-client.org