Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/90gusWFmF8DxkD0o2iiyTqLNO6k.roa
File: 90gusWFmF8DxkD0o2iiyTqLNO6k.roa (raw, json)
Hash identifier: OH/R0uNScqPsE8JL9QUNSY+hdZvMOlTea2LGsyxXiXM=
Subject key identifier: F7:48:2E:B1:61:66:17:C0:F1:90:3D:28:DA:28:B2:4E:A2:CD:3B:A9
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 9E
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/90gusWFmF8DxkD0o2iiyTqLNO6k.roa
Signing time: Wed 29 Mar 2023 16:05:44 +0000
ROA not before: Wed 29 Mar 2023 16:05:44 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.96.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158 (0x9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 29 16:05:44 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=F7482EB1616617C0F1903D28DA28B24EA2CD3BA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:76:38:69:62:91:58:14:32:12:35:6c:60:a8:
07:f3:8c:21:47:c6:98:99:ab:41:03:d0:03:f5:ac:
07:54:82:69:e7:09:2e:9c:63:b9:70:49:6b:44:69:
d0:b8:a0:8b:97:f5:b0:bc:ff:8c:0e:a4:51:a5:5d:
1f:d9:60:5c:64:5e:97:e2:ce:9e:06:68:92:df:10:
f5:50:ac:65:4c:95:d1:7e:82:aa:ed:20:cc:15:22:
85:fd:0a:8f:3c:0e:ad:3d:3b:a3:dd:fa:14:ad:81:
ae:38:95:cc:fa:b3:66:04:3a:b2:f7:2e:85:52:61:
bf:25:46:e9:36:b0:e9:2d:f4:ff:5d:b9:70:ef:1f:
4b:f1:ff:98:b7:1d:b7:82:0b:28:96:cf:4d:08:f0:
95:e9:5a:d1:61:a2:87:6c:1f:1f:a3:49:3d:cf:64:
a2:af:0f:ee:6e:f9:74:67:fe:e3:23:33:03:0b:93:
a2:82:a7:6a:06:5f:12:0f:62:20:6a:d9:9a:0d:de:
15:a2:7d:09:a0:71:da:4a:0d:ad:52:fe:df:22:08:
98:75:d6:33:00:39:49:f7:b6:93:00:33:34:b4:da:
ec:d2:04:9a:ac:03:ba:15:59:48:8f:21:38:47:d4:
c2:83:47:9f:9b:97:aa:b9:52:1e:d2:eb:be:d1:10:
b9:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:48:2E:B1:61:66:17:C0:F1:90:3D:28:DA:28:B2:4E:A2:CD:3B:A9
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/90gusWFmF8DxkD0o2iiyTqLNO6k.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.96.227.0/24
Signature Algorithm: sha256WithRSAEncryption
87:28:74:27:8a:07:59:96:35:97:8d:8f:a7:53:3e:72:84:84:
e3:e3:99:8b:bb:bb:1c:08:85:2f:e8:8e:78:7c:f0:fd:81:6e:
9e:db:1e:48:7f:b1:20:47:d7:8c:4c:1e:d7:ff:87:0c:57:d2:
65:41:94:cb:11:ad:1d:88:6f:2a:41:9e:04:d8:78:7d:bc:bf:
d1:d2:17:19:16:06:b3:20:cc:2c:19:7d:98:1e:d7:3c:d5:59:
9a:de:01:6d:52:1e:8e:b1:ef:ba:5d:f3:ee:c2:e4:ad:c0:da:
16:93:9f:4c:12:3d:c6:64:07:8d:94:18:72:c7:5a:4d:c4:54:
ef:83:3c:cf:c8:57:f3:e8:86:60:7d:78:c2:99:18:f3:97:aa:
6d:53:52:26:36:7b:e4:b1:e2:55:5b:61:7c:3f:64:9d:44:a1:
d4:72:49:6f:7f:92:b9:66:64:91:24:41:28:29:a2:01:75:13:
bc:80:d2:a9:19:23:2b:85:0b:bd:79:71:09:d5:22:99:7c:23:
85:21:ee:79:54:d1:b3:fa:11:aa:7b:7e:ea:04:b2:ab:c4:45:
6f:39:3c:c8:a4:57:41:9d:1a:d5:6e:74:bd:be:49:2d:6e:af:
4c:18:a3:a9:41:29:c9:da:91:d4:a9:35:f5:10:c0:9d:31:6f:
c6:50:22:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:51 2024 by rpki-client on console-fra.rpki-client.org