Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/fSHtIOFjjseURby6SiN13-0Ommg.roa
File: fSHtIOFjjseURby6SiN13-0Ommg.roa (raw, json)
Hash identifier: FmgGlPsT4Ih6gK+FKGLsu6DpDPyPfChgf2+6vg8JUR0=
Subject key identifier: 7D:21:ED:20:E1:63:8E:C7:94:45:BC:BA:4A:23:75:DF:ED:0E:9A:68
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 03A5
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/fSHtIOFjjseURby6SiN13-0Ommg.roa
Signing time: Thu 01 Jun 2023 17:59:32 +0000
ROA not before: Thu 01 Jun 2023 17:59:32 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.104.18.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 933 (0x3a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 17:59:32 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=7D21ED20E1638EC79445BCBA4A2375DFED0E9A68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:97:a2:97:86:3e:44:ac:48:d9:88:f5:d4:bd:
3c:68:f2:cb:84:0e:68:08:01:bf:11:72:eb:78:59:
47:c9:f1:77:b7:1e:51:c4:06:72:57:f7:18:1a:9c:
8d:18:c8:40:6a:cd:2e:fa:fb:7f:4b:3c:35:12:f2:
a5:09:58:52:bc:2e:e4:8e:d6:ed:33:3f:c2:17:a0:
d1:bb:b5:77:ab:50:46:9f:42:b7:09:0d:63:dd:7b:
18:cb:16:f7:f4:f7:8c:32:67:ae:27:9f:0a:68:29:
cc:46:63:70:f4:c6:01:40:f2:e7:04:9b:59:64:7a:
4d:13:df:e4:61:78:a3:8d:43:f8:d3:f2:0a:4f:d8:
c2:c5:af:69:a5:5a:4c:9f:51:c3:e7:40:24:12:81:
07:0e:34:3c:18:c8:9c:48:0d:07:bd:ab:6d:a4:c0:
4e:5d:10:93:4c:a7:04:1d:d7:d5:59:c7:31:91:c6:
54:18:ad:df:e9:83:cb:95:e6:30:c6:cf:c0:95:38:
d5:41:e0:2e:3e:bc:fb:7c:28:a7:cc:9e:f1:0d:f3:
c7:52:d0:3f:31:03:9a:1b:7c:77:35:59:44:4b:7c:
35:28:dc:92:a9:76:07:f6:68:e2:f7:b0:83:7f:dc:
4b:e6:a5:39:b6:16:ed:27:73:8f:92:66:42:83:e5:
56:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:21:ED:20:E1:63:8E:C7:94:45:BC:BA:4A:23:75:DF:ED:0E:9A:68
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/fSHtIOFjjseURby6SiN13-0Ommg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.104.18.0/23
Signature Algorithm: sha256WithRSAEncryption
e3:03:b1:71:7d:12:ae:6a:a6:0c:23:2e:ef:46:4e:82:f9:e1:
c1:17:cc:2d:a4:d6:6f:74:b8:7b:3e:cc:13:7d:5a:80:93:08:
f1:84:d2:b2:f1:f0:a0:50:5b:c0:d8:f9:65:1a:80:08:60:4e:
2b:62:72:80:18:24:e4:c9:c1:96:a1:38:83:ba:8d:55:8d:ac:
6d:50:00:34:24:7e:20:37:c6:06:00:24:78:b3:88:7e:fd:86:
ad:60:db:c2:f4:10:1f:dd:e9:7b:5e:6c:69:d9:e0:22:e3:17:
69:7d:01:82:82:d9:a8:59:67:05:40:54:c7:24:71:84:f2:6f:
1d:00:8f:b0:99:41:bd:7c:af:3a:5f:bd:9b:b6:b7:1f:ad:4c:
3c:b6:89:fc:18:e3:ff:31:61:60:5c:b5:62:53:7f:eb:86:c1:
db:51:f9:f6:33:e9:ad:e0:18:37:d4:13:ca:ec:4d:d1:15:92:
ba:3a:d9:7f:21:15:c5:fb:03:b6:37:e3:cc:d9:ec:2a:7b:8b:
fa:a5:00:c9:83:1c:cd:7f:02:a3:24:7b:6a:ef:74:1c:a4:2e:
90:4b:28:82:d6:7b:f1:56:9b:80:1b:6d:02:8a:3a:0d:cb:ac:
06:33:59:15:35:52:ec:fd:3b:25:07:f6:91:24:98:c0:7b:5b:
d7:93:12:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:42:28 2025 by rpki-client