Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/d2IKPH2Lz24DtWVdF8fY0xleM-Q.roa
File: d2IKPH2Lz24DtWVdF8fY0xleM-Q.roa (raw, json)
Hash identifier: K0HnS1B5aL0xVpiC1ozzu8rW/o3pcCy2XPoDSZ2fOBc=
Subject key identifier: 77:62:0A:3C:7D:8B:CF:6E:03:B5:65:5D:17:C7:D8:D3:19:5E:33:E4
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 03DE
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/d2IKPH2Lz24DtWVdF8fY0xleM-Q.roa
Signing time: Tue 06 Jun 2023 16:03:41 +0000
ROA not before: Tue 06 Jun 2023 16:03:41 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.104.12.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 990 (0x3de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 6 16:03:41 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=77620A3C7D8BCF6E03B5655D17C7D8D3195E33E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9e:b3:51:11:4d:3c:0f:21:e5:7d:0d:fd:2b:
43:ee:7e:ea:d9:c8:55:bc:f8:95:2b:6c:ff:54:8e:
80:e1:0f:9e:63:76:e2:7e:52:44:6c:79:1c:70:42:
16:b6:58:7d:04:88:da:f7:e1:70:c8:66:9e:95:09:
72:de:cb:10:7d:85:0c:03:0c:4c:8e:f6:21:1e:53:
d5:2b:af:77:1d:af:25:2e:a4:84:f8:31:54:f1:62:
a4:64:d0:91:a4:92:60:ab:71:c3:51:41:b8:34:d8:
7d:74:6f:4d:ea:e5:0e:26:2c:f1:e0:9b:f7:7e:d6:
63:27:c6:86:9f:c2:fd:ac:70:35:91:39:d2:28:3a:
80:f3:8f:5f:b2:2b:3e:ac:93:12:17:51:9a:f7:1f:
0d:64:f7:b9:b6:21:1d:2e:18:59:7d:3e:1c:d5:4c:
62:d8:82:f4:31:c4:16:a3:1e:b0:04:ee:dd:f9:be:
78:69:15:e9:6e:09:4a:e9:21:fa:68:4c:22:db:23:
1c:47:a7:02:86:e3:b7:87:17:2c:b3:56:03:db:61:
63:4d:60:d5:fc:bd:f9:e7:b5:a6:34:79:60:85:6c:
8e:fb:5d:7f:6a:75:2c:ff:8a:05:63:71:c2:9b:0a:
9f:e7:27:8a:89:c1:0a:0f:40:eb:49:6d:f9:45:f0:
79:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:62:0A:3C:7D:8B:CF:6E:03:B5:65:5D:17:C7:D8:D3:19:5E:33:E4
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/d2IKPH2Lz24DtWVdF8fY0xleM-Q.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.104.12.0/23
Signature Algorithm: sha256WithRSAEncryption
78:1c:a0:52:8b:94:eb:53:de:8e:4b:fa:5e:8d:78:0f:45:2b:
52:b3:ac:26:de:48:6d:c3:b2:de:5b:91:72:cc:2e:f9:48:b5:
84:a7:66:4b:05:b5:be:23:52:45:8f:4e:01:65:61:37:45:c0:
b8:c9:d0:87:52:34:fe:87:3b:9c:8f:74:9f:58:48:50:57:77:
e6:65:79:4b:65:ca:77:ac:dc:fb:14:63:e1:a8:34:51:bf:61:
2d:60:4b:83:bf:9d:65:9f:da:b8:56:29:7c:6f:25:fa:01:71:
83:86:4e:6e:9f:40:23:ba:08:a1:46:90:80:7b:2c:94:eb:19:
36:cd:b1:e6:ce:ac:9f:c9:1b:92:35:e5:ce:f5:50:9e:a4:fd:
ef:c2:1e:9c:90:d4:8d:d5:f1:2d:ab:11:a8:73:cb:47:45:8f:
81:15:e1:fe:73:4b:27:4d:2d:f6:54:7c:e3:20:67:53:0c:23:
83:b7:35:84:ab:a8:9f:09:6b:be:52:a1:e0:cf:49:6d:f4:21:
92:0d:7c:57:a0:7d:2e:2f:2c:5a:98:a3:53:96:9f:e3:2b:ed:
6c:6d:d5:c4:bd:df:be:1e:cd:07:04:b1:a2:58:9b:5f:64:44:
a7:ad:c7:30:09:c9:c8:0c:27:d2:95:4f:d5:91:79:53:41:2e:
c5:61:0b:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:33:07 2025 by rpki-client