Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/CibZrXRqihN3cc2hbu7yYFsezw4.roa
File: CibZrXRqihN3cc2hbu7yYFsezw4.roa (raw, json)
Hash identifier: JIKhZw0a5cXJVLCF/SrPCA6JKiBRBwV+Y40xHykP8HI=
Subject key identifier: 0A:26:D9:AD:74:6A:8A:13:77:71:CD:A1:6E:EE:F2:60:5B:1E:CF:0E
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: D7
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CibZrXRqihN3cc2hbu7yYFsezw4.roa
Signing time: Wed 24 May 2023 16:02:21 +0000
ROA not before: Wed 24 May 2023 16:02:21 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.98.154.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 215 (0xd7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:02:21 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=0A26D9AD746A8A137771CDA16EEEF2605B1ECF0E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c8:80:e6:71:7e:06:30:17:3d:a8:b8:0d:31:
ac:7c:14:6d:6d:dc:14:6b:1e:ed:e0:fd:8b:60:75:
20:e8:a3:0f:8a:cf:60:87:b3:c7:1a:2f:8e:8a:a2:
0f:4f:b4:ea:fa:b9:c7:35:a4:60:3a:00:47:61:71:
a5:8a:77:22:66:67:f2:df:e4:66:b6:0a:b2:2c:96:
87:c4:35:ca:cd:0d:a4:0e:d1:37:3b:b2:e1:b0:a0:
c3:73:53:f0:dc:4d:2b:db:0e:c0:23:82:e5:d8:7f:
1b:db:f9:48:87:11:81:1d:2b:07:10:a5:93:8c:3b:
79:6a:cf:73:b7:6d:79:2e:e9:09:7e:f2:7c:f6:73:
df:21:aa:21:b4:db:22:7b:12:96:f4:c9:da:18:e1:
62:89:38:be:da:2f:ac:4e:27:ef:d4:13:6e:be:5b:
c8:68:80:c5:ac:b4:5d:84:e2:91:1a:15:5d:7f:3b:
d9:98:37:57:43:2d:92:e2:7b:f8:84:fa:82:0a:b7:
77:36:07:91:d3:51:b4:c6:6a:28:e5:5c:48:98:44:
6c:91:6f:ae:a9:c7:55:b0:bb:80:77:2d:56:ce:32:
b1:83:ba:57:e2:cf:bb:61:97:e4:6b:c3:d3:e0:84:
c5:d3:9e:61:fa:c1:54:0e:a3:a5:14:33:52:32:8b:
0d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:26:D9:AD:74:6A:8A:13:77:71:CD:A1:6E:EE:F2:60:5B:1E:CF:0E
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CibZrXRqihN3cc2hbu7yYFsezw4.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.154.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:cd:a2:55:8e:68:d4:47:5a:ea:21:f2:88:0e:b8:20:9b:69:
bf:ee:87:4d:6d:c1:35:b6:28:93:de:25:12:ce:83:1a:ba:b5:
93:e3:fa:25:43:1d:36:a3:d6:25:29:a5:87:43:3c:1d:61:a3:
87:2f:1a:13:29:ec:9f:1e:20:89:3c:5e:63:cf:ca:18:a1:22:
e7:86:95:c2:4e:2e:9c:3f:44:33:0e:68:da:f9:10:2a:03:65:
41:36:0b:9a:8c:51:14:c0:f4:23:e0:8a:71:4c:fe:50:90:9e:
93:fb:cf:1d:f5:ff:b8:85:f8:65:96:1e:d5:ba:fa:a9:bb:45:
88:c6:ff:7b:e5:ff:d4:5a:73:3c:fe:5a:65:55:c1:29:f7:eb:
6f:f5:1d:6e:82:35:6c:72:20:e3:09:1e:e1:43:a2:94:bc:05:
d1:75:e7:e7:a3:69:8d:a0:4f:4d:67:9f:ea:11:53:66:48:46:
ec:df:bd:b6:90:6d:fc:15:c6:21:d4:c0:58:1d:3f:f8:7e:49:
77:6e:85:a9:91:e7:52:6a:52:42:be:77:b8:04:fa:97:e6:c0:
9c:90:00:f2:0c:ca:77:93:26:f4:fd:85:46:83:2c:78:b7:22:
36:ff:57:9e:c6:d3:c5:95:1b:3f:04:14:11:c3:5a:50:ad:95:
87:c7:b2:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:51 2024 by rpki-client on console-fra.rpki-client.org