Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/6CMXZORTXPobghvUJeJtkmBMPmQ.roa
File: 6CMXZORTXPobghvUJeJtkmBMPmQ.roa (raw, json)
Hash identifier: ffMFUoAPNWDFgtr/lvYro8pJHxjE3jGpdSfqZuom6fw=
Subject key identifier: E8:23:17:64:E4:53:5C:FA:1B:82:1B:D4:25:E2:6D:92:60:4C:3E:64
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 03DD
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/6CMXZORTXPobghvUJeJtkmBMPmQ.roa
Signing time: Tue 06 Jun 2023 16:03:40 +0000
ROA not before: Tue 06 Jun 2023 16:03:40 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.106.220.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 989 (0x3dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 6 16:03:40 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=E8231764E4535CFA1B821BD425E26D92604C3E64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:53:6b:05:14:79:a5:a1:eb:8f:09:85:a2:76:
43:19:b4:35:d2:74:f2:81:49:02:73:9a:4b:b5:9f:
2e:8c:59:8f:4a:80:87:e7:b2:ab:bd:af:27:58:f0:
61:2d:ed:4c:fe:c9:3f:28:b2:bb:7b:87:f8:62:19:
81:6c:65:ce:21:c4:f6:e3:bf:90:a1:c2:90:0c:1e:
c6:50:27:f0:a3:fc:d8:c1:5f:04:64:7e:26:71:ed:
33:e1:d9:1b:84:be:1e:da:ad:5a:9d:24:f3:5c:b2:
85:5c:f8:0e:02:65:52:a0:ba:12:7a:24:93:d1:27:
d5:a1:74:1d:af:8b:bc:e7:ce:30:e2:14:fb:d0:43:
54:b8:97:f7:f9:20:96:23:c1:e5:51:9f:ec:2f:aa:
53:9b:07:ab:df:95:c1:cd:be:e7:f2:6f:77:5e:3f:
86:8f:59:c2:59:51:42:00:ee:7a:a2:15:4b:e6:b1:
bd:ad:40:43:9c:3b:08:b8:42:de:2a:57:6c:9a:03:
ec:4a:d1:6f:2f:3b:98:a1:b1:90:d0:0e:b2:63:49:
e5:ec:34:cc:b8:d8:60:2f:c1:c4:31:9f:15:f4:ab:
8a:86:9e:68:b8:17:bd:64:0a:c1:05:0a:e1:6f:f6:
62:c3:e4:8d:b9:20:e2:38:e1:92:65:c3:a1:3f:55:
2e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:23:17:64:E4:53:5C:FA:1B:82:1B:D4:25:E2:6D:92:60:4C:3E:64
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/6CMXZORTXPobghvUJeJtkmBMPmQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.106.220.0/23
Signature Algorithm: sha256WithRSAEncryption
77:12:bc:48:76:86:75:ea:d4:94:ec:f3:44:50:52:0c:00:f3:
d3:c5:69:d8:6f:24:79:e4:f1:3b:c3:39:c8:07:17:f5:ab:38:
f6:02:6e:16:25:fd:a2:7f:0c:ae:a1:63:ad:ba:b6:99:5f:ba:
5c:85:b7:f8:91:7f:86:6b:8f:cd:2c:94:3b:9c:5a:d1:08:79:
15:58:a7:6f:57:36:1e:48:dc:36:c9:6b:21:97:e2:83:5c:7e:
3e:28:94:0b:ab:73:61:4c:a5:0b:3f:4e:3d:15:d1:57:56:bc:
c8:ae:5a:5d:8d:d2:46:12:95:30:2c:ba:e8:8a:07:03:0f:b7:
90:4d:f8:d6:91:70:73:fb:38:8b:27:ef:19:99:bb:37:89:83:
51:9b:56:38:8b:69:50:eb:13:17:7b:a2:11:ea:f9:ba:7c:4d:
d0:fc:5f:5e:ac:ba:54:19:56:7d:cc:2d:0e:99:7d:96:81:98:
9e:d3:f2:57:f1:a7:d0:68:bb:01:28:37:09:c2:b5:e5:18:34:
e8:55:e8:cb:e8:58:ad:f8:3e:c0:a0:d8:64:35:db:3b:70:23:
70:b9:d1:2f:6a:54:a3:dc:56:0a:f8:79:73:b6:34:43:c9:9f:
4f:9c:0d:5d:3d:21:36:4e:5e:a0:28:da:b9:2f:79:e3:56:d6:
f1:81:ea:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:51 2024 by rpki-client on console-fra.rpki-client.org