Route Origin Authorization
$ rpki-client -vvf rpki.apernet.io/repo/APERNET/1/3130332e3135322e33342e302f32332d3234203d3e203136353039.roa
File: 3130332e3135322e33342e302f32332d3234203d3e203136353039.roa (raw, json)
Hash identifier: CoyrlfFUktjZWmOZJIIaYWT9wglzaAqnigvzJgHl+ew=
Subject key identifier: 1B:92:18:26:B2:00:57:A6:5B:AF:8E:B9:B8:0E:47:E8:BA:7A:91:B6
Certificate issuer: /CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7
Certificate serial: 27BF9CB1588A4D842EE8D66AECE0A776F30F1BF1
Authority key identifier: FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7
Authority info access: rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer
Subject info access: rsync://rpki.apernet.io/repo/APERNET/1/3130332e3135322e33342e302f32332d3234203d3e203136353039.roa
Signing time: Wed 18 May 2022 20:06:27 +0000
ROA not before: Wed 18 May 2022 20:01:27 +0000
ROA not after: Thu 18 May 2023 20:06:27 +0000
asID: 16509
IP address blocks: 103.152.34.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:bf:9c:b1:58:8a:4d:84:2e:e8:d6:6a:ec:e0:a7:76:f3:0f:1b:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FCB1805FA7AE22D565E0A502D08D37EB2BD837A7
Validity
Not Before: May 18 20:01:27 2022 GMT
Not After : May 18 20:06:27 2023 GMT
Subject: CN=3082010A0282010100BB92B7CB3C7AA1782CDC01F0E7DFF5B7E77BED580127D5EAC429A0F7D73C7D5441334D5D88769729BCEC65854C211195115F48D73B02CAA6465CC6D4A33A52E0C6295B9537F1A1DEF34945A89A2E198CD8D2059DD400A38DB77EC16CF3928E0AE9B2582E2DC4C6EE9D94D80C0E7226B30AD89BFD14489D57A6B9F69A955EFDA21EEC5F62DF3A84CB224EDE6C419CCF5AA1C5B8EFCC0BD5F195144A8773238FEFF6726F7A0DE361F68DC4F2B3A4B5D661B16C2DB14113BB78146E9D51A6A089B5ABB846ED4BEA9E1CE017D52B1DEB2D6B6A2F4C28DAECA37019B8D72509067B7D990AFF071C3001E4F50376CE655FCDB68677BB29E566F848CCB873B6529116430203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:92:b7:cb:3c:7a:a1:78:2c:dc:01:f0:e7:df:
f5:b7:e7:7b:ed:58:01:27:d5:ea:c4:29:a0:f7:d7:
3c:7d:54:41:33:4d:5d:88:76:97:29:bc:ec:65:85:
4c:21:11:95:11:5f:48:d7:3b:02:ca:a6:46:5c:c6:
d4:a3:3a:52:e0:c6:29:5b:95:37:f1:a1:de:f3:49:
45:a8:9a:2e:19:8c:d8:d2:05:9d:d4:00:a3:8d:b7:
7e:c1:6c:f3:92:8e:0a:e9:b2:58:2e:2d:c4:c6:ee:
9d:94:d8:0c:0e:72:26:b3:0a:d8:9b:fd:14:48:9d:
57:a6:b9:f6:9a:95:5e:fd:a2:1e:ec:5f:62:df:3a:
84:cb:22:4e:de:6c:41:9c:cf:5a:a1:c5:b8:ef:cc:
0b:d5:f1:95:14:4a:87:73:23:8f:ef:f6:72:6f:7a:
0d:e3:61:f6:8d:c4:f2:b3:a4:b5:d6:61:b1:6c:2d:
b1:41:13:bb:78:14:6e:9d:51:a6:a0:89:b5:ab:b8:
46:ed:4b:ea:9e:1c:e0:17:d5:2b:1d:eb:2d:6b:6a:
2f:4c:28:da:ec:a3:70:19:b8:d7:25:09:06:7b:7d:
99:0a:ff:07:1c:30:01:e4:f5:03:76:ce:65:5f:cd:
b6:86:77:bb:29:e5:66:f8:48:cc:b8:73:b6:52:91:
16:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:92:18:26:B2:00:57:A6:5B:AF:8E:B9:B8:0E:47:E8:BA:7A:91:B6
X509v3 Authority Key Identifier:
keyid:FC:B1:80:5F:A7:AE:22:D5:65:E0:A5:02:D0:8D:37:EB:2B:D8:37:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apernet.io/repo/APERNET/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.crl
Authority Information Access:
CA Issuers - URI:rsync://sakuya.nat.moe/repo/NATOCA/1/FCB1805FA7AE22D565E0A502D08D37EB2BD837A7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.apernet.io/repo/APERNET/1/3130332e3135322e33342e302f32332d3234203d3e203136353039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.152.34.0/23
Signature Algorithm: sha256WithRSAEncryption
d1:21:28:2e:42:92:ee:2c:9c:6b:71:b1:de:1a:c0:a5:34:b6:
2d:9f:ac:4e:f5:7e:0b:12:01:f5:ad:14:86:ea:5d:3f:7d:b6:
23:f9:ac:33:50:d5:a6:f2:0a:e1:59:f1:76:77:5f:c6:6f:75:
b3:4d:f9:5f:39:f2:fc:c7:4b:f1:f6:f6:a4:ec:1e:78:87:7a:
44:16:d4:d7:1a:f8:90:d2:79:1a:b8:9c:0d:73:8e:db:0d:28:
05:94:f3:45:66:04:e4:9d:cf:76:53:17:f5:1e:f7:1a:c6:b7:
70:21:67:9e:8e:b1:da:5f:03:2b:66:0f:7a:d3:5c:5a:db:84:
c2:42:10:e0:3e:ed:55:ee:28:7f:b3:ef:df:c2:cf:5c:e1:12:
60:a9:18:c6:15:06:53:a1:02:39:70:36:5a:4c:a4:dc:16:24:
7b:b2:8d:09:00:06:f1:33:47:9d:32:9e:7e:3c:9c:0a:9a:88:
b1:c5:49:f8:44:da:de:d3:f8:b3:3a:71:f7:c3:0d:e6:ab:01:
93:bf:68:00:21:be:c0:16:0b:81:24:d4:fd:30:83:15:fd:5a:
30:46:31:62:88:7b:b4:4c:42:8c:64:47:62:3a:7f:39:d5:54:
b5:a6:3f:c5:1c:54:77:bd:9c:9e:66:72:41:09:8d:07:90:ff:
76:6a:86:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-ams.rpki-client.org