Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/DyfVIJJKVnGksPSAP3ioKyBXOdk.roa
File: DyfVIJJKVnGksPSAP3ioKyBXOdk.roa (raw, json)
Hash identifier: grelVDLJrTxt+gWzDiyD4OwcDsER0HwWmIClDRIeMYI=
Subject key identifier: 0F:27:D5:20:92:4A:56:71:A4:B0:F4:80:3F:78:A8:2B:20:57:39:D9
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 03DA
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/DyfVIJJKVnGksPSAP3ioKyBXOdk.roa
Signing time: Tue 06 Jun 2023 16:03:39 +0000
ROA not before: Tue 06 Jun 2023 16:03:39 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.106.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 986 (0x3da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 6 16:03:39 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=0F27D520924A5671A4B0F4803F78A82B205739D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:3a:b4:d6:01:e9:4c:7e:7a:b1:26:33:7f:2b:
f2:64:c5:40:72:c9:84:77:65:4f:60:3d:e1:cb:bb:
40:1f:ba:5b:5e:e0:3a:a6:0f:e9:11:de:d9:a2:e0:
d7:fb:0d:88:c4:26:14:b1:6e:eb:66:97:04:a2:eb:
9d:f3:f8:43:2c:c8:68:43:12:32:20:16:84:84:30:
a6:69:ca:83:8b:23:82:b7:39:75:cf:2a:1c:97:c9:
df:16:45:4d:26:d6:55:c2:4f:1e:1a:b7:48:69:ad:
09:4b:7f:89:b5:7b:34:d8:f7:9c:49:a6:1f:04:c3:
d7:bc:0d:ec:ba:72:86:3d:a1:96:b8:56:ce:89:52:
db:f8:ac:46:79:8a:35:c0:5b:ea:c8:01:a7:4c:ea:
f1:2e:56:21:31:ee:fb:32:44:c5:3c:87:3a:99:72:
2e:9d:e8:52:f5:24:c3:e8:bf:55:39:48:f0:6b:fb:
d9:4b:0b:5d:7f:3b:95:6d:c3:30:c8:e2:af:95:83:
11:b1:31:34:48:53:a0:9b:91:19:72:64:bc:43:a9:
28:aa:58:73:3f:78:0e:97:1e:79:dc:f4:2b:c2:21:
14:d6:fb:f7:d1:07:9e:e4:fc:8b:54:3e:6c:7a:51:
54:89:7d:5c:ea:2f:a4:1f:d1:2e:1b:62:18:1d:38:
1e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:27:D5:20:92:4A:56:71:A4:B0:F4:80:3F:78:A8:2B:20:57:39:D9
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/DyfVIJJKVnGksPSAP3ioKyBXOdk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.106.231.0/24
Signature Algorithm: sha256WithRSAEncryption
de:df:4b:5f:c3:a9:40:eb:53:32:af:69:77:54:07:b4:2a:68:
4d:f1:66:dd:04:73:3a:8d:48:33:86:5b:07:49:b1:d4:1c:f5:
55:a4:80:7b:02:8d:3b:a7:ae:7c:21:bb:4c:58:6f:d8:f3:16:
4a:b4:e9:6c:e1:cc:b3:94:86:2a:2b:03:63:e9:89:46:94:3f:
54:37:01:36:3a:3a:9a:1e:ec:74:95:44:f7:2d:93:6b:a5:8d:
72:aa:e6:a6:b6:bc:9c:95:d3:cc:5e:94:ef:87:5a:b3:04:1d:
5a:80:df:a4:a7:79:77:0e:a8:f4:cd:f6:58:7d:9d:3d:11:1d:
c0:7d:28:43:09:c2:29:07:09:e3:d4:20:29:c4:3f:6d:53:95:
de:29:8a:8e:6e:6e:cc:16:c0:30:f3:f5:dd:6c:7d:ee:30:d7:
71:88:c0:12:a2:d7:b5:45:33:0d:fe:fc:5b:3f:da:4e:c3:b1:
c2:a9:5b:e8:ff:2c:52:1c:df:a8:31:02:89:65:eb:bc:e5:4e:
46:b0:8b:8f:f7:ad:00:42:d0:bf:3e:49:36:b6:8b:aa:af:0d:
88:fd:97:c0:a3:55:b7:f8:e5:96:5c:b1:b2:17:5a:08:b0:1f:
0a:76:1d:a7:e7:78:91:70:48:e3:ad:6b:01:36:94:52:fd:f3:
cd:17:8f:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:24:21 2025 by rpki-client