Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/207MN2jb1ZOv1XFP0cvmkY99eaU.roa
File: 207MN2jb1ZOv1XFP0cvmkY99eaU.roa (raw, json)
Hash identifier: zrR5MpEYFs9s3cTMqiqRAjqaJqiKZnnQMoovUr67798=
Subject key identifier: DB:4E:CC:37:68:DB:D5:93:AF:D5:71:4F:D1:CB:E6:91:8F:7D:79:A5
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0425
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/207MN2jb1ZOv1XFP0cvmkY99eaU.roa
Signing time: Tue 06 Jun 2023 16:09:07 +0000
ROA not before: Tue 06 Jun 2023 16:09:07 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.106.202.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1061 (0x425)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 6 16:09:07 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=DB4ECC3768DBD593AFD5714FD1CBE6918F7D79A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a2:c3:94:6f:19:f6:23:df:e6:31:0f:50:c3:
e4:19:84:5e:fc:ee:20:a9:94:eb:06:51:b0:e0:70:
b1:e8:90:13:f8:bc:8f:9e:fb:6c:6f:34:41:4f:36:
bd:1e:a8:b3:ed:36:55:7a:73:31:b9:c6:b8:f8:80:
a5:1a:ae:2a:87:7a:c0:fc:01:9c:f1:43:62:56:96:
6c:dd:01:72:58:51:9b:32:08:98:f5:cb:2e:e6:c9:
72:60:0b:8e:d8:63:f7:30:3a:78:42:fc:5e:e5:4f:
a3:63:c9:f7:e3:bd:63:00:37:8c:44:23:b3:82:64:
38:d0:3d:a3:97:b4:e8:66:2f:12:8c:7b:d6:90:aa:
20:f1:69:15:ad:6f:b1:e7:23:88:6a:7f:e0:98:be:
d5:0b:6b:f0:a0:42:90:82:4d:52:58:5b:5d:a0:92:
22:df:32:82:19:dc:b3:b9:25:2f:67:f9:96:08:90:
2e:d9:58:85:23:7e:60:fe:81:4d:92:a7:96:51:53:
38:6a:81:81:a5:aa:6f:01:6e:de:03:47:31:c0:35:
3a:c4:98:45:58:8d:39:51:97:9d:a7:24:89:60:9b:
38:d1:c1:e8:67:0c:e3:24:8b:96:fc:b4:99:51:38:
65:31:e4:00:8a:ef:55:cc:df:4c:48:98:a4:b0:23:
90:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:4E:CC:37:68:DB:D5:93:AF:D5:71:4F:D1:CB:E6:91:8F:7D:79:A5
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/207MN2jb1ZOv1XFP0cvmkY99eaU.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.106.202.0/23
Signature Algorithm: sha256WithRSAEncryption
40:01:7b:24:c7:25:94:ed:e6:2f:f9:d1:ec:80:5c:1a:19:08:
45:ae:11:d3:a1:83:91:35:e6:15:ce:f1:de:ff:30:1c:0d:75:
26:34:75:0f:20:fe:bb:6d:36:4d:63:0c:bc:6c:6c:ea:0b:f4:
9b:f3:aa:c5:27:38:1a:bc:72:5c:be:6f:58:30:63:1d:a7:49:
ab:ca:61:d6:98:0e:fe:9f:fa:bb:2a:70:b1:ae:99:7e:4b:b1:
f6:e8:b8:c1:37:d4:2d:6b:e7:0f:a1:53:83:a9:b5:c3:56:9d:
de:01:61:96:26:b4:b6:83:ea:31:ce:d3:e0:65:ee:91:9b:14:
7a:ce:93:36:50:05:7b:1c:48:df:c5:44:3b:5a:14:c7:09:22:
a7:28:37:7e:70:8c:df:c2:ec:a6:7a:83:1d:65:2b:f4:b9:a8:
6f:43:11:48:4f:4f:73:bf:0b:fb:ca:fb:0b:74:d9:5b:53:bf:
4d:0e:71:42:f2:01:02:d2:fd:6d:96:05:ff:0f:7f:10:09:fa:
e9:23:59:97:6a:96:52:37:c4:5a:ff:8f:f9:45:2d:4a:b2:11:
5c:42:f0:96:a0:ea:b7:71:6f:93:ed:11:da:6b:cc:ac:a1:0f:
57:a9:95:c1:56:46:61:2a:db:e8:80:d5:f6:05:fd:a4:1b:fd:
da:22:1c:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:10:40 2025 by rpki-client