Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/989/CcdDImALZCUiUNKC-woWHrUuht0.roa
File: CcdDImALZCUiUNKC-woWHrUuht0.roa (raw, json)
Hash identifier: 5cWETAS8gSxuAdcNcOlcx1mZYj+DOhhW7siIpjY1iPc=
Subject key identifier: 09:C7:43:22:60:0B:64:25:22:50:D2:82:FB:0A:16:1E:B5:2E:86:DD
Certificate issuer: /CN=8D26E0D17E30D8BF5714F4BA92EEEB0D22DDDB1D
Certificate serial: 40
Authority key identifier: 8D:26:E0:D1:7E:30:D8:BF:57:14:F4:BA:92:EE:EB:0D:22:DD:DB:1D
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jSbg0X4w2L9XFPS6ku7rDSLd2x0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/989/CcdDImALZCUiUNKC-woWHrUuht0.roa
Signing time: Sun 01 May 2022 01:30:44 +0000
ROA not before: Sun 01 May 2022 01:30:44 +0000
ROA not after: Thu 27 Apr 2023 09:52:34 +0000
asID: 45680
IP address blocks: 101.78.4.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64 (0x40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8D26E0D17E30D8BF5714F4BA92EEEB0D22DDDB1D
Validity
Not Before: May 1 01:30:44 2022 GMT
Not After : Apr 27 09:52:34 2023 GMT
Subject: CN=09C74322600B64252250D282FB0A161EB52E86DD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:0b:ec:20:69:fa:98:98:0e:89:a7:ed:a3:05:
3c:59:3c:3a:36:ec:4b:ba:1d:93:9c:b6:cd:3e:64:
90:0a:dd:92:35:66:41:85:e2:a3:98:15:8c:64:da:
c1:19:27:7e:6f:6f:a8:a0:61:ca:80:a2:48:47:4a:
95:f2:a3:64:6a:95:1a:21:4e:08:64:2d:e4:03:d7:
f2:92:94:ec:2c:59:23:5b:b1:15:ba:e9:49:45:c7:
bb:a6:62:79:57:75:43:03:08:88:73:02:92:86:a6:
df:12:81:16:e0:d7:f3:28:15:52:66:c3:b1:ec:a2:
16:7c:db:db:12:b6:dc:8c:39:2c:76:4a:f7:95:85:
b4:20:72:fb:87:5d:3e:83:6f:32:63:c3:84:b3:9e:
e0:6a:1c:98:aa:d9:9a:a3:6c:8a:d3:01:da:b4:ba:
60:97:84:16:3b:55:d1:c9:0d:e2:02:37:36:4a:68:
72:a4:57:cc:46:9a:53:7b:52:3d:38:34:45:42:ef:
fe:8b:e3:81:fe:b1:93:54:26:b2:c9:82:22:b8:14:
d6:b4:30:1f:8e:3d:dc:e2:01:7d:0d:ef:86:c6:2f:
7f:f3:36:2e:33:92:03:ee:9c:37:50:d8:a6:81:29:
30:53:3a:97:62:b1:6d:d9:ae:71:89:98:0c:7d:81:
c6:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:C7:43:22:60:0B:64:25:22:50:D2:82:FB:0A:16:1E:B5:2E:86:DD
X509v3 Authority Key Identifier:
keyid:8D:26:E0:D1:7E:30:D8:BF:57:14:F4:BA:92:EE:EB:0D:22:DD:DB:1D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/989/jSbg0X4w2L9XFPS6ku7rDSLd2x0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jSbg0X4w2L9XFPS6ku7rDSLd2x0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/989/CcdDImALZCUiUNKC-woWHrUuht0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
101.78.4.0/22
Signature Algorithm: sha256WithRSAEncryption
44:bb:69:90:1a:c5:d6:98:8c:c8:04:bb:f2:2f:ca:90:06:39:
c8:05:a0:8f:c4:43:83:ad:97:97:8c:ed:4d:8b:0a:83:a3:9a:
79:3a:94:fd:4f:de:74:c1:46:64:75:32:e0:fe:84:9b:64:7a:
10:21:ca:57:27:fc:ce:a4:18:fd:a8:b4:4f:57:40:af:54:f9:
08:dd:da:17:d3:12:38:81:9b:88:4a:0a:01:fd:68:57:e2:d9:
0b:48:79:2e:25:c7:31:e7:99:54:df:54:eb:28:20:8a:06:a6:
8a:14:36:e4:a1:32:fb:ca:7a:f6:24:a4:cd:2f:75:ff:94:ad:
64:2e:9b:b4:74:cd:be:5f:d5:30:fe:2d:47:aa:06:c9:21:ef:
65:89:38:3e:64:fe:20:4d:4e:b6:74:20:6b:76:e8:1c:78:3e:
5c:ff:54:9d:05:09:3d:a2:92:de:36:d8:79:73:07:d8:49:a1:
7a:ac:22:b9:5c:ad:fd:87:1e:86:58:22:34:2c:50:2e:2b:43:
b1:10:bd:4a:90:1e:a8:b2:b8:15:7f:ef:85:46:15:37:eb:38:
24:a7:a9:64:a4:7e:64:14:e6:0c:b9:e2:1d:1e:01:90:c8:37:
15:13:00:45:f3:43:4a:88:46:e5:a1:95:b7:50:91:53:1a:ff:
89:da:a6:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:19 2023 by rpki-client on console-fra.rpki-client.org