Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/2Tgm5dWUXEfBQtRA864OJ0vCPnY.roa
File: 2Tgm5dWUXEfBQtRA864OJ0vCPnY.roa (raw, json)
Hash identifier: Ad9OluCdi2t3xkt5uCR+87QFPk89DJpBOROTRi/tJYA=
Subject key identifier: D9:38:26:E5:D5:94:5C:47:C1:42:D4:40:F3:AE:0E:27:4B:C2:3E:76
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 03D8
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2Tgm5dWUXEfBQtRA864OJ0vCPnY.roa
Signing time: Tue 06 Jun 2023 16:03:39 +0000
ROA not before: Tue 06 Jun 2023 16:03:39 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.104.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 984 (0x3d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 6 16:03:39 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=D93826E5D5945C47C142D440F3AE0E274BC23E76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:00:5a:82:cb:9e:2a:48:fd:b8:31:ac:81:2e:
3a:86:70:50:8a:a5:3c:89:84:23:8f:dc:31:e8:f0:
5a:f3:26:b1:a2:3d:d4:ca:ac:9d:87:0c:1e:e0:69:
6c:b6:e9:8e:90:ff:6f:56:14:32:2f:eb:54:7a:ff:
61:09:a2:10:c9:0c:ab:b8:b1:56:7b:07:3f:bb:4b:
15:9f:f1:4d:f9:95:3c:0c:25:92:01:b2:76:26:ec:
c3:3e:56:8f:9f:ff:c3:a6:50:10:49:19:38:47:ee:
1e:3c:ac:54:96:81:c4:30:60:d2:2a:14:6c:78:6c:
52:c4:58:a9:3e:37:c3:01:57:20:0e:cd:39:b5:84:
b0:f0:06:66:2a:7d:2e:0a:b7:f5:8a:00:55:2d:45:
b5:a7:76:c6:10:d3:e2:f2:f6:9c:f3:e9:5a:e5:d1:
f3:a9:34:51:47:65:71:9f:e5:23:42:a3:8b:5b:e2:
be:7f:99:88:37:cc:5e:34:6b:ba:e1:c8:84:b7:eb:
0e:5b:b7:a4:30:55:22:3e:2c:42:ee:1e:87:f8:ce:
4e:4d:57:ae:9e:1f:24:da:63:92:92:6c:ec:b0:c0:
dd:a4:0c:cc:b5:70:d7:9e:f6:78:b2:9f:b7:a1:74:
dc:d1:30:b6:3f:1c:3d:03:43:1f:e3:7e:cc:22:90:
10:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:38:26:E5:D5:94:5C:47:C1:42:D4:40:F3:AE:0E:27:4B:C2:3E:76
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2Tgm5dWUXEfBQtRA864OJ0vCPnY.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.104.33.0/24
Signature Algorithm: sha256WithRSAEncryption
27:9c:ea:98:4e:50:2c:9a:97:43:4a:e2:66:6d:e3:df:4c:ea:
78:8d:fc:a9:58:b0:8b:fe:e4:16:89:fa:89:f3:b8:63:76:82:
30:36:67:94:d6:83:82:d7:be:88:50:21:72:87:53:d8:c2:0c:
ae:17:73:92:a4:27:26:81:89:9c:6b:6d:17:19:ce:84:86:28:
5a:fb:df:e4:c9:7e:8b:ad:d6:aa:33:50:8a:42:78:fd:45:db:
46:85:c2:da:49:1a:37:8c:56:38:8c:98:b9:75:7b:11:1e:d1:
3d:22:38:ba:9e:7f:23:e3:e8:9b:a2:7d:fd:fa:81:af:14:da:
21:e4:fb:96:ce:19:19:19:8c:a8:8c:72:58:a3:27:b3:4a:46:
1f:7b:91:e8:6b:c7:f9:d5:72:64:f0:21:16:53:67:4d:ec:35:
cb:94:fe:63:4c:63:f1:3a:98:3c:2f:37:a8:fc:da:2a:34:0b:
f1:f2:b0:4d:dd:4c:0d:66:ca:c6:6e:82:f6:74:9f:9b:a3:a3:
03:c6:cd:f3:f4:fd:2c:71:70:7a:96:37:9d:2f:f0:09:55:f4:
72:f9:9a:6f:53:58:98:85:f6:91:65:ab:57:20:5e:44:62:d8:
b3:dd:e8:a0:eb:d6:50:62:ba:97:bd:3e:b7:ce:e0:68:c8:8a:
bf:1b:9b:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:24:03 2025 by rpki-client