Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/CFH8HniOlJShrmDFdrEbltJgIys.roa
File: CFH8HniOlJShrmDFdrEbltJgIys.roa (raw, json)
Hash identifier: 9cAKG9GiPwPwkbmTJqgK68WyBGzHy5cxUBgCI19ZonA=
Subject key identifier: 08:51:FC:1E:78:8E:94:94:A1:AE:60:C5:76:B1:1B:96:D2:60:23:2B
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0138
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CFH8HniOlJShrmDFdrEbltJgIys.roa
Signing time: Wed 24 May 2023 16:30:24 +0000
ROA not before: Wed 24 May 2023 16:30:24 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.98.17.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 312 (0x138)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:30:24 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=0851FC1E788E9494A1AE60C576B11B96D260232B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:d1:d3:b2:73:95:72:bd:61:23:a0:cb:33:42:
19:e7:d8:a7:18:55:4b:65:d4:3d:dd:17:87:fa:a5:
a7:3e:b4:c2:08:74:a3:dd:2e:9d:c3:4e:1d:28:fd:
f4:09:db:02:5a:62:bc:9b:f4:db:54:2b:62:91:05:
ca:f5:6f:4b:df:2c:b4:64:58:8d:c8:d5:fb:cd:cc:
84:25:e8:37:b6:c2:6e:e2:80:99:b1:10:f4:73:1c:
16:8a:cf:f2:63:94:44:40:5a:84:7d:42:26:b4:02:
8c:9b:64:7a:29:ef:9d:e7:8e:22:2c:ec:f9:17:52:
e1:4e:fe:84:42:e8:88:5f:ce:cc:48:31:2f:64:a0:
e2:8a:0d:53:02:aa:44:20:b6:1a:49:82:f5:fc:89:
7f:b8:bc:d7:76:77:58:ac:94:c8:d7:40:4b:db:d4:
1d:af:3a:2b:3b:8c:21:e0:bb:37:3c:53:ea:a8:ac:
22:a1:8a:f2:8a:3e:05:bb:d1:3c:d0:d4:6f:45:57:
f9:12:e4:26:fb:da:b7:66:36:e0:94:55:65:79:1c:
dc:80:d0:bc:a3:50:9a:af:ab:d1:21:c4:66:3d:ee:
58:3a:15:5f:09:e7:49:43:2d:a5:7b:d8:0c:c8:07:
5a:84:bc:cf:30:26:6f:5c:a3:71:0f:bc:90:35:53:
a5:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:51:FC:1E:78:8E:94:94:A1:AE:60:C5:76:B1:1B:96:D2:60:23:2B
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CFH8HniOlJShrmDFdrEbltJgIys.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.17.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:fb:b2:57:57:84:17:38:53:99:c6:b7:d6:2a:5d:6f:e3:5f:
a9:97:7f:af:26:cb:a7:df:c7:72:6a:96:51:91:ea:1b:d7:1c:
3b:32:d9:aa:c1:9a:f8:bd:0b:dc:01:de:74:88:5d:b9:63:51:
d0:81:c5:8e:10:fd:f8:7e:61:2b:4d:82:bc:b0:fb:75:23:39:
cc:ec:d3:10:3b:a8:75:4b:d5:32:bb:e5:e3:58:10:ac:02:0c:
6e:52:c8:0c:53:4d:9c:1a:66:af:85:13:e9:ee:27:08:5f:5e:
2f:cc:1c:38:fe:1c:48:0a:3b:d2:2a:47:75:13:06:7d:29:3c:
2f:1a:69:5c:7d:5e:4d:17:02:63:d0:3d:07:b1:54:eb:c4:c1:
08:46:da:ba:58:d0:42:a5:49:2d:fc:04:3a:73:56:db:26:ec:
b2:95:5e:d7:e2:ce:f0:78:00:91:90:8e:bc:af:32:cd:38:c9:
59:e0:92:14:fe:b0:fe:c9:f0:da:1f:36:b8:70:bb:bd:05:c0:
d7:02:23:25:15:01:f4:be:05:a3:cd:06:0d:04:51:d4:e7:c7:
55:f5:7d:93:5c:c7:84:03:9a:be:f9:b2:84:53:8e:68:21:76:
9e:17:18:f7:54:f6:08:ba:57:60:22:aa:b2:9a:49:d7:07:82:
d8:5b:27:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 01:48:42 2025 by rpki-client