Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/954/VcK9whPyk90QDb3-Dd-kMztkw1w.roa
File: VcK9whPyk90QDb3-Dd-kMztkw1w.roa (raw, json)
Hash identifier: yEbOi1xhkbm+o2pXcSvXQS0iVgdnwpCv9ohg8tGCZCE=
Subject key identifier: 55:C2:BD:C2:13:F2:93:DD:10:0D:BD:FE:0D:DF:A4:33:3B:64:C3:5C
Certificate issuer: /CN=1678DD6B61CB673BA4423C81BF63A61DD724E840
Certificate serial: 15
Authority key identifier: 16:78:DD:6B:61:CB:67:3B:A4:42:3C:81:BF:63:A6:1D:D7:24:E8:40
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fnjda2HLZzukQjyBv2OmHdck6EA.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/954/VcK9whPyk90QDb3-Dd-kMztkw1w.roa
Signing time: Fri 28 Apr 2023 00:41:24 +0000
ROA not before: Fri 28 Apr 2023 00:41:24 +0000
ROA not after: Sun 14 Apr 2024 01:30:02 +0000
asID: 131954
IP address blocks: 202.226.12.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21 (0x15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1678DD6B61CB673BA4423C81BF63A61DD724E840
Validity
Not Before: Apr 28 00:41:24 2023 GMT
Not After : Apr 14 01:30:02 2024 GMT
Subject: CN=55C2BDC213F293DD100DBDFE0DDFA4333B64C35C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:d6:a8:2d:d5:33:39:19:e4:68:dd:bd:0c:59:
55:98:fe:c6:1c:65:74:46:7b:0f:40:2a:23:b4:e7:
d7:fb:d4:3a:2a:48:69:e2:81:63:ab:df:fd:d0:87:
e3:53:b1:10:7e:b1:c7:4b:0b:5d:da:ac:72:ea:03:
45:c5:91:42:63:c9:18:c3:17:d2:55:4f:27:63:79:
41:e4:7f:5e:e7:ac:57:94:66:f2:60:6a:2f:1a:5a:
fb:93:e7:76:f0:a9:2c:fd:f3:f5:e4:07:ee:01:44:
2e:80:b8:40:57:f0:97:7c:74:5a:a5:1f:b2:ad:79:
b7:41:7d:55:51:50:6d:b1:2f:aa:32:8f:c5:c8:ee:
e7:7b:43:66:bd:f8:3e:21:40:f8:4b:a1:a8:21:85:
dd:f8:70:3b:70:c7:e1:96:da:f3:bc:ea:13:f4:03:
c6:68:74:95:ef:5f:8c:02:f8:a7:7b:68:90:16:f7:
1d:a0:8e:be:6c:29:7f:d2:78:10:6a:ea:f1:64:a3:
d7:73:f1:64:32:51:8b:88:cb:d7:b9:38:c6:22:a1:
9f:22:70:98:f1:34:8c:3b:c6:a9:d2:99:fc:c5:87:
8c:d5:5f:07:a1:aa:4c:53:c4:f7:53:85:77:97:b5:
00:a6:07:95:24:4b:65:53:9d:e8:91:5a:bb:69:7e:
85:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:C2:BD:C2:13:F2:93:DD:10:0D:BD:FE:0D:DF:A4:33:3B:64:C3:5C
X509v3 Authority Key Identifier:
keyid:16:78:DD:6B:61:CB:67:3B:A4:42:3C:81:BF:63:A6:1D:D7:24:E8:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/954/Fnjda2HLZzukQjyBv2OmHdck6EA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fnjda2HLZzukQjyBv2OmHdck6EA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/954/VcK9whPyk90QDb3-Dd-kMztkw1w.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.226.12.0/22
Signature Algorithm: sha256WithRSAEncryption
23:c9:7a:d2:89:72:84:70:52:a6:6d:21:38:ab:97:da:9a:13:
f6:6e:33:65:ce:e7:5f:3b:e6:3f:02:2d:7e:24:7f:4d:88:22:
ad:fe:d9:ed:c2:c1:7e:ee:2c:60:dd:24:2f:5d:98:05:b7:e1:
c2:35:20:71:da:ba:70:c1:31:a8:90:34:d1:03:24:eb:78:bf:
76:8e:f5:e9:5e:a1:09:db:65:97:79:ab:3a:17:d6:71:17:b8:
4a:5c:db:cc:59:31:d1:56:27:b4:83:f9:0b:50:f4:4f:a7:8e:
ab:eb:37:a5:bb:0c:07:d5:b8:98:ef:40:2f:51:92:b3:0f:fd:
40:a8:9b:ca:ec:7f:14:bb:57:47:62:a0:02:ef:d9:8d:3f:29:
6a:3b:c5:0b:91:60:57:56:2d:3e:7c:e9:fa:f3:cf:1e:6b:ca:
47:7e:65:e3:e9:e3:bd:28:dc:d3:b6:91:14:92:e6:18:74:a1:
32:6b:ca:bd:b5:39:3b:92:b9:7c:34:12:15:4b:43:21:85:c8:
58:03:31:81:db:8d:fb:b9:b4:fd:16:fc:e7:d3:b8:72:86:4d:
81:b0:e6:04:53:22:1e:68:9d:30:06:61:e2:7d:4b:33:35:d8:
9b:4c:1b:13:3e:e4:30:eb:c9:72:4a:e1:7b:e5:7a:80:31:80:
4f:84:b4:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:15 2024 by rpki-client on console-ams.rpki-client.org