Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/clO2tE4cfHWlKWVMenWK9-pdPiI.roa
File: clO2tE4cfHWlKWVMenWK9-pdPiI.roa (raw, json)
Hash identifier: iAM622TTDuIEHsQuVLy80m49Ni7xsrIqJCdzgV5riJQ=
Subject key identifier: 72:53:B6:B4:4E:1C:7C:75:A5:29:65:4C:7A:75:8A:F7:EA:5D:3E:22
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0334
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/clO2tE4cfHWlKWVMenWK9-pdPiI.roa
Signing time: Thu 01 Jun 2023 16:07:33 +0000
ROA not before: Thu 01 Jun 2023 16:07:33 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.98.90.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 820 (0x334)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 16:07:33 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=7253B6B44E1C7C75A529654C7A758AF7EA5D3E22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9c:60:46:26:e4:2f:a7:f2:04:b3:8b:d2:34:
6b:6e:f1:8f:c1:b4:19:04:4e:a2:27:c3:af:53:2a:
1a:74:b5:37:f3:46:64:c9:7d:eb:1d:61:1b:20:98:
e5:06:b7:63:7f:d1:e2:b6:e7:c0:cd:39:f7:25:4c:
fa:5a:cd:2b:a3:76:89:b7:10:f0:ed:04:8e:c0:60:
0f:cb:ca:7b:f4:13:10:5e:56:b0:42:eb:02:60:a0:
ec:6a:9e:cd:29:77:dc:0b:79:6e:b5:cf:97:5a:56:
e3:d6:3e:f7:ca:66:dc:51:64:7d:54:f4:c0:b1:23:
e2:4f:6f:92:da:44:75:1b:29:18:75:51:90:d7:3c:
2b:4e:7e:57:de:cf:71:e6:17:9b:ee:2d:87:76:19:
56:51:ef:2c:0e:dc:a3:47:48:4d:7f:45:a2:02:2b:
33:ec:35:b4:ef:13:28:40:b9:d1:c7:a9:a8:aa:1c:
50:7a:df:6a:c1:14:75:d6:cd:95:d1:3f:73:d1:56:
78:aa:13:f6:3e:8a:ca:b2:44:2a:3b:25:d2:86:09:
1f:00:fe:b6:98:dd:83:ea:d6:27:9c:90:3e:2b:87:
36:bc:68:85:2f:f9:63:20:21:3e:db:fd:6e:c9:cb:
15:b3:e8:55:83:ae:76:f0:e1:f3:66:fa:8b:99:a7:
5f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:53:B6:B4:4E:1C:7C:75:A5:29:65:4C:7A:75:8A:F7:EA:5D:3E:22
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/clO2tE4cfHWlKWVMenWK9-pdPiI.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.90.0/23
Signature Algorithm: sha256WithRSAEncryption
cc:9b:f8:f6:6b:dc:d0:39:67:6a:e7:b4:f1:a7:8c:9c:cc:be:
85:a0:a8:64:91:aa:98:71:40:f8:9f:00:91:b0:16:cb:e8:92:
cf:88:85:69:9b:1d:ed:96:48:75:1b:94:bd:bc:23:02:8f:59:
a2:cb:c5:62:44:12:d5:0d:bd:1c:6e:17:61:c6:ae:6c:17:0a:
98:77:40:52:b0:5c:32:8a:cf:f2:8e:ed:9c:4a:4f:81:6f:7f:
b9:bb:48:01:78:63:60:81:1c:cf:48:ff:2b:ff:5c:3d:40:5e:
75:fb:18:ce:7d:f4:c3:d3:dd:55:c1:b0:19:00:4b:07:96:95:
04:dd:64:3a:33:9c:71:2b:77:6d:e8:49:36:a9:e5:6f:94:11:
8e:2f:5d:4c:bd:67:33:39:20:72:9b:a2:36:0c:c3:1d:f0:4d:
07:d4:28:68:bb:81:2c:72:c0:e1:8a:09:5b:39:2e:23:37:f9:
98:ce:c8:16:e4:3a:7d:53:c3:d4:e7:43:dc:78:71:9f:63:94:
7c:10:6e:1b:c3:31:52:6c:22:a4:62:7a:85:91:73:b8:16:2d:
27:60:81:f7:4e:37:c8:21:06:b9:38:9a:0c:3f:6c:ec:d2:fb:
5e:8b:36:cc:00:e3:bd:b6:ce:5c:7b:84:68:6e:ad:0e:cf:c8:
75:c7:89:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:49:24 2025 by rpki-client