Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/859/3XpaKch-UpRBBRaJyGy8CN_-kxE.roa
File: 3XpaKch-UpRBBRaJyGy8CN_-kxE.roa (raw, json)
Hash identifier: gQlJNT76X5kqJ4vWvBgIuDGSi576iyJP7ONYvSd8Fxk=
Subject key identifier: DD:7A:5A:29:C8:7E:52:94:41:05:16:89:C8:6C:BC:08:DF:FE:93:11
Certificate issuer: /CN=3F90F2FBCAA2538CA6574FB22D8C6EB3E9CA046B
Certificate serial: 17
Authority key identifier: 3F:90:F2:FB:CA:A2:53:8C:A6:57:4F:B2:2D:8C:6E:B3:E9:CA:04:6B
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/3XpaKch-UpRBBRaJyGy8CN_-kxE.roa
Signing time: Mon 13 Jun 2022 06:20:46 +0000
ROA not before: Mon 13 Jun 2022 06:20:46 +0000
ROA not after: Mon 15 May 2023 01:30:04 +0000
asID: 23778
IP address blocks: 202.95.176.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23 (0x17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3F90F2FBCAA2538CA6574FB22D8C6EB3E9CA046B
Validity
Not Before: Jun 13 06:20:46 2022 GMT
Not After : May 15 01:30:04 2023 GMT
Subject: CN=DD7A5A29C87E529441051689C86CBC08DFFE9311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:75:0b:82:90:09:15:2a:7f:10:c0:13:34:7e:
13:4e:69:7e:3d:88:61:40:e5:58:65:c5:01:28:2e:
84:2f:e6:5d:b0:45:50:72:bc:e8:a3:33:e6:91:7b:
37:16:d2:81:45:e4:ed:ca:81:df:8d:79:af:19:be:
67:fc:24:d7:b4:96:16:93:d5:c3:e8:d9:37:47:2a:
39:f3:e0:2f:be:6c:95:26:62:c5:fb:65:d5:b0:cb:
f5:aa:b9:fd:8f:f0:8f:36:bb:c4:0b:c2:de:3b:47:
b9:1a:68:85:85:28:ca:14:ed:30:07:d3:e4:9a:47:
e5:06:9a:44:06:9b:f4:31:2c:63:23:fa:85:63:8d:
15:2b:20:a4:e7:30:80:9b:16:ad:51:bd:a5:d6:1b:
1f:63:dc:64:92:d9:15:0d:8e:ce:b9:0d:dc:42:22:
b6:01:f3:eb:c1:8c:e8:63:45:47:fb:18:72:4b:9f:
51:9e:bd:49:b9:88:e2:d0:03:a5:e8:73:ae:1b:ca:
c1:0e:f9:86:21:98:65:e3:8a:7b:4c:6c:00:aa:93:
ac:22:53:d3:83:75:7d:b4:9c:d3:3f:f6:21:1f:08:
aa:a7:cc:2c:24:c9:e2:e0:b8:6e:28:3a:8a:6d:39:
9b:99:9c:f0:d9:96:28:7c:7a:c3:ac:de:03:73:12:
96:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:7A:5A:29:C8:7E:52:94:41:05:16:89:C8:6C:BC:08:DF:FE:93:11
X509v3 Authority Key Identifier:
keyid:3F:90:F2:FB:CA:A2:53:8C:A6:57:4F:B2:2D:8C:6E:B3:E9:CA:04:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/P5Dy-8qiU4ymV0-yLYxus-nKBGs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/3XpaKch-UpRBBRaJyGy8CN_-kxE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.95.176.0/20
Signature Algorithm: sha256WithRSAEncryption
43:9e:42:39:09:fd:1c:90:2e:e9:dc:3d:28:ee:80:14:27:0c:
72:5f:e7:1b:94:e1:03:a5:6d:52:70:05:48:d3:d0:1d:46:29:
06:75:89:43:9f:ff:f5:94:c9:5b:98:3d:58:26:23:a7:d3:38:
35:76:41:2a:c1:54:e0:7f:2f:f6:6c:df:38:91:dc:5c:58:0f:
b2:9a:b5:3e:ec:5c:4e:1e:99:e6:ce:b0:63:cf:cf:b0:c8:7f:
c3:46:81:ce:cb:bc:23:46:77:8b:36:b6:f3:7e:47:11:48:6a:
71:80:3e:d1:18:d9:da:a2:27:6b:b9:84:d2:94:f7:21:c9:ad:
23:82:55:7f:a8:c6:9a:e0:7e:6c:07:21:aa:73:39:8e:25:0d:
2e:b9:40:11:8a:c9:52:99:93:d7:b3:33:b7:a8:57:62:51:e5:
c4:30:fd:6d:3b:13:cf:f3:51:f2:e0:9d:54:15:1b:f4:af:35:
e8:7f:f0:c3:c4:b1:60:88:f8:89:a7:07:c3:4b:0f:71:94:31:
fc:81:e9:f4:a5:10:10:d9:10:d5:d2:78:f8:20:0e:0c:b8:9b:
66:72:23:32:65:ea:9c:b8:85:b3:01:c9:ee:cb:e1:b7:81:71:
8f:96:f7:e0:c5:b0:e1:07:03:61:54:09:91:a1:91:51:54:27:
a7:90:ec:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:11 2023 by rpki-client on console-fra.rpki-client.org