Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/5hZOzMHcoaztsVw53h1u1J14vPE.roa
File: 5hZOzMHcoaztsVw53h1u1J14vPE.roa (raw, json)
Hash identifier: FVIBehUeyOkF4iB/7KKTd6l1edl6Ig1mUd6LMEY9ASM=
Subject key identifier: E6:16:4E:CC:C1:DC:A1:AC:ED:B1:5C:39:DE:1D:6E:D4:9D:78:BC:F1
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0452
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/5hZOzMHcoaztsVw53h1u1J14vPE.roa
Signing time: Thu 27 Jul 2023 16:43:14 +0000
ROA not before: Thu 27 Jul 2023 16:43:14 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 49.108.0.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1106 (0x452)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:43:14 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=E6164ECCC1DCA1ACEDB15C39DE1D6ED49D78BCF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b1:53:61:bf:e7:ab:a2:9c:99:cc:95:77:fa:
9f:4e:66:e5:63:b0:10:28:0c:0d:2e:50:d2:0d:ad:
f8:6e:6d:cf:97:90:21:a0:ce:8d:63:43:93:da:10:
a5:c3:ce:8a:1c:b3:7b:20:64:1a:59:2c:74:d2:4a:
9b:8f:bc:da:8c:2e:ab:14:98:e0:60:4c:c2:98:84:
5f:64:1c:46:49:15:45:b7:48:72:57:f3:6e:5b:f8:
c7:f5:d5:b5:3d:02:ac:d3:c3:c1:a8:16:64:f4:3d:
dc:85:cd:66:c7:8f:bb:8a:09:81:ba:43:44:d6:68:
cc:89:42:3f:c4:5d:3d:73:aa:14:c1:bc:36:a4:7c:
6b:fa:82:e6:58:77:dc:ce:90:64:c2:f1:88:85:1b:
ba:c8:b6:d1:68:a7:3f:c1:e7:79:27:14:df:d6:97:
b8:76:3e:6c:d5:a5:76:f1:33:74:01:b0:3d:a7:89:
b0:6d:2d:88:d0:50:54:cf:4b:f9:57:62:9a:76:07:
3e:88:7d:dd:bd:0a:b9:b5:c0:21:3e:9a:23:d3:48:
98:1d:2e:da:8c:d0:23:49:88:66:51:48:2d:4e:05:
04:d5:ef:65:47:c8:de:7e:e8:95:b1:d3:c6:31:4a:
8a:5f:29:65:0e:ea:7c:91:73:eb:9e:51:75:62:14:
db:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:16:4E:CC:C1:DC:A1:AC:ED:B1:5C:39:DE:1D:6E:D4:9D:78:BC:F1
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/5hZOzMHcoaztsVw53h1u1J14vPE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.108.0.0/18
Signature Algorithm: sha256WithRSAEncryption
1a:b4:ca:31:ee:43:1b:16:25:c5:d7:bd:ed:1c:23:bb:87:0e:
a3:32:8d:e5:85:c8:f5:0b:0b:b5:37:82:1b:7e:50:50:72:d7:
6d:be:e1:d4:d1:46:1b:8a:9a:52:0c:ac:cb:a5:52:e8:6f:53:
1d:20:c6:63:b8:18:c2:dc:93:3c:9c:f8:23:1d:dd:0e:2b:0b:
72:11:25:65:67:13:d5:85:5f:87:12:ef:53:ec:e2:ee:21:26:
0c:24:c2:fc:9c:3d:30:ed:d9:db:58:6d:7f:cd:ef:f9:f5:5c:
d7:51:99:76:16:18:f1:69:ab:e6:51:ce:6d:54:36:14:31:ed:
ba:55:68:50:4d:df:9f:08:a9:0c:ac:9b:6b:0c:41:bf:7e:79:
ee:e5:f9:70:ad:02:cc:d1:47:38:d0:eb:d5:b9:e6:67:bb:7e:
70:a0:32:33:1a:fa:f0:06:3b:2b:97:91:1a:4f:f5:6a:9a:d7:
05:1f:74:28:1c:3f:9a:80:5b:6d:88:f9:b5:9c:06:56:19:9e:
c0:52:94:fb:44:87:b4:90:26:61:1c:e4:d3:e0:16:8a:11:ee:
aa:38:7d:38:3d:16:99:62:3e:dc:01:4c:97:4e:bf:e7:4d:80:
ca:e0:95:55:35:74:40:26:77:87:95:de:0f:7b:48:37:5d:a7:
6c:c2:92:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:39:57 2025 by rpki-client