Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/939/IUS_2-aIzVozizIqORb_a47xFbA.roa
File: IUS_2-aIzVozizIqORb_a47xFbA.roa (raw, json)
Hash identifier: M7c1WENqKm+nMXgxNwa13NtjFfQg+TLUTTpbSpCIWsE=
Subject key identifier: 21:44:BF:DB:E6:88:CD:5A:33:8B:32:2A:39:16:FF:6B:8E:F1:15:B0
Certificate issuer: /CN=7C60295C85FF37E2DCF75AF014D44AD3BF8C33A4
Certificate serial: 3B
Authority key identifier: 7C:60:29:5C:85:FF:37:E2:DC:F7:5A:F0:14:D4:4A:D3:BF:8C:33:A4
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/fGApXIX_N-Lc91rwFNRK07-MM6Q.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/939/IUS_2-aIzVozizIqORb_a47xFbA.roa
Signing time: Wed 18 Aug 2021 07:54:28 +0000
ROA not before: Wed 18 Aug 2021 07:54:28 +0000
ROA not after: Mon 15 Aug 2022 01:30:03 +0000
asID: 2518
IP address blocks: 211.13.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59 (0x3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7C60295C85FF37E2DCF75AF014D44AD3BF8C33A4
Validity
Not Before: Aug 18 07:54:28 2021 GMT
Not After : Aug 15 01:30:03 2022 GMT
Subject: CN=2144BFDBE688CD5A338B322A3916FF6B8EF115B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:61:3a:be:18:11:92:53:9b:55:d8:73:7c:60:
0d:01:cb:05:6e:bb:64:6f:42:a5:bd:06:e3:9b:87:
65:71:9a:5a:27:dc:19:63:d5:1e:9f:1c:34:84:e8:
96:e9:73:83:ca:51:15:27:29:dd:dd:24:9e:16:53:
64:13:eb:18:e4:15:d7:ba:87:a1:da:42:e8:75:b6:
20:24:e7:16:1d:68:2c:8f:35:9b:e6:31:7d:e3:1c:
ff:4d:57:da:38:ba:a8:bb:9e:7d:68:0d:63:03:f8:
da:1b:74:12:df:bb:e9:ea:96:7c:85:3b:f7:d3:51:
bc:c5:29:09:38:41:ef:b7:55:dc:1a:13:8e:8f:4c:
c0:4c:a2:c5:69:f1:14:2c:4b:56:d0:eb:cf:1c:de:
03:4a:f6:4e:62:dd:ee:a6:60:49:1a:7d:49:9c:06:
99:ee:6b:4a:b6:d5:f1:53:09:98:4d:79:0b:e1:ee:
87:11:aa:02:3f:a6:04:ea:95:90:4f:32:47:a1:3d:
99:5e:71:df:53:0c:9b:e7:7c:37:d6:9b:11:61:54:
f8:08:c4:ce:89:53:ff:58:22:07:e2:52:fd:57:0f:
d3:f0:cf:44:f3:14:77:64:ab:90:c3:e4:ac:3e:7e:
a5:44:b6:f3:d8:75:3b:ab:7a:8e:5a:c1:7a:4a:80:
fc:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:44:BF:DB:E6:88:CD:5A:33:8B:32:2A:39:16:FF:6B:8E:F1:15:B0
X509v3 Authority Key Identifier:
keyid:7C:60:29:5C:85:FF:37:E2:DC:F7:5A:F0:14:D4:4A:D3:BF:8C:33:A4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/939/fGApXIX_N-Lc91rwFNRK07-MM6Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/fGApXIX_N-Lc91rwFNRK07-MM6Q.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/939/IUS_2-aIzVozizIqORb_a47xFbA.roa
sbgp-ipAddrBlock: critical
IPv4:
211.13.0.0/17
Signature Algorithm: sha256WithRSAEncryption
d0:7d:3a:dd:47:4f:3c:79:62:0c:1f:49:f5:65:8c:b1:6d:e0:
7d:64:e8:b3:a8:ac:dc:cf:60:40:4a:4b:74:96:6f:90:d8:01:
f8:bf:09:42:ff:51:f1:f0:99:00:bb:15:4e:f4:27:ce:26:ad:
b0:cb:ad:de:f0:be:8a:ed:b8:cc:f3:2b:bd:29:09:6d:e4:5a:
92:ad:45:66:d7:74:db:1a:75:87:89:94:36:46:48:03:46:af:
87:2b:6b:78:6d:1e:30:a6:22:af:b2:93:dd:a2:1a:33:70:78:
0b:26:a3:7a:44:a9:5d:ef:f0:9b:c1:6b:6d:93:45:66:95:de:
b0:22:4f:8c:fd:2f:7c:88:7f:9d:56:90:f7:c9:72:b6:a6:42:
7b:e6:b8:8b:c2:bd:92:7c:4f:56:1e:8e:76:d5:3b:bd:96:7c:
79:94:02:17:3a:cc:d5:c5:77:40:4d:f0:26:0b:5e:bc:0c:8f:
17:57:b3:ae:33:88:6a:d5:75:65:ce:39:b6:82:64:a5:00:5c:
2e:f2:45:a0:63:2f:7c:b8:f4:c1:c5:d7:4f:0e:cd:38:59:1e:
02:09:62:64:86:4f:89:58:31:b0:ff:63:cf:bf:8d:c1:a9:bb:
76:6b:37:60:08:09:33:d1:05:e5:77:b0:f9:8d:ae:0d:bf:ee:
4f:f0:12:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:26:46 2025 by rpki-client