Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/1afzs2WWKrj5rftSp18qhm3n_6Q.roa
File: 1afzs2WWKrj5rftSp18qhm3n_6Q.roa (raw, json)
Hash identifier: wuOkghMbwGDH2MxiWSKU7Y4IKQ9VxXq4aHH1zoOF5kw=
Subject key identifier: D5:A7:F3:B3:65:96:2A:B8:F9:AD:FB:52:A7:5F:2A:86:6D:E7:FF:A4
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 03C1
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/1afzs2WWKrj5rftSp18qhm3n_6Q.roa
Signing time: Tue 06 Jun 2023 16:02:51 +0000
ROA not before: Tue 06 Jun 2023 16:02:51 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.106.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 961 (0x3c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 6 16:02:51 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=D5A7F3B365962AB8F9ADFB52A75F2A866DE7FFA4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:12:71:42:12:37:2a:05:9d:2d:5a:5c:e3:ba:
cb:4f:a2:5d:30:5e:2c:86:6b:2e:48:e8:0b:a0:2f:
b9:52:2b:78:fe:29:37:47:1e:e8:77:cd:87:c8:d4:
4c:84:6d:ae:bd:95:2e:6b:a4:21:40:fc:58:a0:91:
83:d2:ba:dd:ee:61:cd:87:54:33:0e:ff:bc:0e:fc:
da:ee:29:a4:76:1c:21:d8:7e:cf:eb:08:80:69:4a:
16:b5:04:84:df:d0:e9:f6:8d:a2:37:e4:7a:c4:fc:
37:2f:11:de:77:8f:db:d1:55:54:1f:a7:3c:e2:30:
64:f3:2d:7e:f2:58:f6:5e:23:3d:9c:29:6d:29:d5:
3c:4b:d5:c6:2f:db:15:9d:47:09:6d:54:31:7d:97:
a4:74:a4:b2:e5:67:6d:9a:8f:8e:ba:51:34:22:49:
df:31:94:7e:a1:a4:3a:16:be:64:2c:c7:76:c0:1d:
33:cb:7a:8b:79:78:65:95:ae:14:c3:40:bd:39:8c:
8a:b4:14:89:13:de:70:0a:53:bd:0b:70:0f:54:cb:
bc:10:c3:6f:72:5d:2e:ac:49:4e:94:3d:05:b0:d8:
08:5d:32:96:26:63:6b:ec:2b:f7:05:50:dc:36:24:
9d:e3:3b:4f:a2:0d:07:da:1c:1f:89:3c:fc:4d:f7:
77:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:A7:F3:B3:65:96:2A:B8:F9:AD:FB:52:A7:5F:2A:86:6D:E7:FF:A4
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/1afzs2WWKrj5rftSp18qhm3n_6Q.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.106.202.0/24
Signature Algorithm: sha256WithRSAEncryption
e3:7c:c9:b9:ec:f4:98:d6:4e:ce:04:a2:23:aa:04:73:c6:3e:
c3:e9:46:3c:e6:25:e5:79:ec:e7:37:ee:4c:bc:a4:7e:a0:c1:
8a:b3:16:bd:1d:af:cb:a2:67:1e:f6:28:44:9a:f9:b7:40:04:
8e:9f:ee:3c:21:f1:48:6e:94:62:9e:b4:75:5b:30:65:d7:fc:
dd:a5:90:88:a5:0a:c4:b5:c5:a8:45:d6:aa:96:94:02:eb:9e:
e5:c0:87:fb:5d:25:8d:59:91:5d:ea:7f:09:b4:a0:8a:a3:c7:
ab:08:99:3c:20:41:ea:c5:6c:67:6e:85:40:bd:b7:ea:ef:61:
10:cd:74:15:15:7c:5d:d4:58:12:3a:22:c9:4c:cb:98:27:5a:
49:53:a1:f4:44:68:1b:01:4f:a0:d7:a8:c9:c9:81:56:76:ee:
b7:50:4c:eb:3e:fc:c2:0f:05:5d:0c:dd:97:71:3f:3a:9d:df:
2d:39:37:2f:06:2f:85:14:67:bf:64:d4:2f:f3:69:07:68:a7:
a5:9f:36:bd:d2:fe:cc:17:54:fa:e6:4c:b2:4a:8f:26:be:2b:
02:cf:cd:38:b1:29:d1:0c:bc:ae:e6:80:98:74:bd:76:4c:b2:
99:7d:50:27:fd:ad:5c:fa:ee:20:65:00:ef:ae:31:d3:9f:d1:
64:a7:ef:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:50 2024 by rpki-client on console-fra.rpki-client.org