Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/FOU2u1x9sS9jLTfC3n3z3HZ02dc.roa
File: FOU2u1x9sS9jLTfC3n3z3HZ02dc.roa (raw, json)
Hash identifier: PDX1+Opk6ycf7T0Oyr6chWUGNAri/KFqJgIOyCEtRS0=
Subject key identifier: 14:E5:36:BB:5C:7D:B1:2F:63:2D:37:C2:DE:7D:F3:DC:76:74:D9:D7
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 033E
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/FOU2u1x9sS9jLTfC3n3z3HZ02dc.roa
Signing time: Thu 01 Jun 2023 16:10:42 +0000
ROA not before: Thu 01 Jun 2023 16:10:42 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.98.60.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 830 (0x33e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 16:10:42 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=14E536BB5C7DB12F632D37C2DE7DF3DC7674D9D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:38:46:fb:96:75:a9:93:f6:8d:c0:05:6d:08:
d5:47:4a:96:ef:00:7b:10:69:fd:e7:52:f6:a5:42:
1d:56:07:86:70:95:21:a2:c4:74:86:dc:2c:e0:7d:
c7:d1:dd:fc:1b:8d:1f:c6:e1:bd:55:2c:ca:8e:b5:
79:97:0f:c2:30:b4:72:d1:de:aa:a3:1f:63:5e:40:
b8:1e:91:ee:cf:ec:f4:3e:c2:b2:16:5f:d0:db:5f:
d8:5b:42:c5:67:97:d2:19:16:a6:06:7f:03:2d:0b:
c0:b7:8b:8f:da:e4:02:6a:7f:c7:c9:37:cc:20:5c:
e7:6b:41:42:02:5d:87:8a:8f:f6:e6:1c:b2:f5:f2:
71:2b:35:79:63:0a:62:85:2a:22:a2:8c:6e:ba:8f:
78:70:d7:e3:fc:d8:20:34:e3:8b:df:5d:6c:28:1e:
52:8d:7f:9e:64:ef:2a:a9:f3:a2:f6:bd:32:d2:4c:
c1:48:25:bb:7a:3c:b5:7a:42:ce:1a:2a:4b:7d:f1:
05:5d:0a:f0:60:6e:0f:d3:54:ed:c1:3c:61:fe:ab:
91:47:95:db:a6:fa:ff:0a:cb:09:89:f1:a7:ef:e9:
1a:b7:eb:5b:48:62:bf:64:5e:c9:b9:bc:0f:b8:5e:
42:81:7e:f9:e0:05:cc:83:52:07:0c:89:ef:ac:78:
95:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:E5:36:BB:5C:7D:B1:2F:63:2D:37:C2:DE:7D:F3:DC:76:74:D9:D7
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/FOU2u1x9sS9jLTfC3n3z3HZ02dc.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.60.0/22
Signature Algorithm: sha256WithRSAEncryption
c9:60:c9:06:64:0d:94:a4:ef:8b:fe:30:26:c1:86:50:fa:b5:
5c:a9:f8:5c:63:61:1e:7a:96:a7:c3:b6:35:b2:5d:59:54:96:
1c:8e:c2:92:96:5c:d3:93:67:a8:3f:67:3a:7a:57:80:d7:7c:
0f:dd:6a:c0:bb:f3:ed:bc:94:55:16:cc:78:52:f1:c5:d5:0e:
07:9b:9d:61:09:35:14:fa:06:5e:c2:45:56:ca:f2:08:75:ea:
6f:c5:8b:aa:11:7f:7d:b5:e2:be:92:5c:b5:ae:10:98:41:b1:
ba:24:2c:ca:7b:73:1f:27:08:b3:91:3e:87:66:3b:3b:a5:65:
a7:55:58:e6:a4:b0:75:36:49:bb:7e:49:a4:b6:a9:c4:3d:35:
ab:f5:4b:73:8a:02:34:14:c8:b6:e1:8f:8a:6c:38:e9:58:0a:
65:9a:5b:80:96:86:57:85:10:14:54:fd:33:bc:c6:47:e7:1e:
48:4f:80:b2:96:d4:64:27:71:a1:00:bc:a6:99:a1:4c:43:96:
9a:59:c0:a0:1c:db:28:e5:67:56:48:f8:b3:31:49:f6:c3:13:
f4:d4:ad:a2:72:1a:d4:94:61:1d:bd:bf:85:4e:04:94:cc:f3:
87:1a:ce:5a:c6:c7:fb:5e:7a:d1:09:7b:6a:ac:a3:d5:fa:ff:
42:50:76:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:01 2024 by rpki-client on console-ams.rpki-client.org