Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/GRVhO2iYd3aeNhQ0uZFZmh6WqXk.roa
File: GRVhO2iYd3aeNhQ0uZFZmh6WqXk.roa (raw, json)
Hash identifier: v2bzGcfK08pATkcho0YzTpC7JosUzb7ochR1Ax6fs0I=
Subject key identifier: 19:15:61:3B:68:98:77:76:9E:36:14:34:B9:91:59:9A:1E:96:A9:79
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 04BD
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/GRVhO2iYd3aeNhQ0uZFZmh6WqXk.roa
Signing time: Thu 27 Jul 2023 16:48:13 +0000
ROA not before: Thu 27 Jul 2023 16:48:13 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 49.106.236.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1213 (0x4bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:48:13 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=1915613B689877769E361434B991599A1E96A979
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:34:1d:2a:46:0f:a0:8c:7a:d4:e1:cd:24:26:
c9:ec:67:dd:b8:55:e1:5f:2f:7c:0e:f9:bc:ae:bd:
e8:57:59:9d:27:ca:bb:9e:8a:b7:58:5d:52:69:e6:
de:41:8c:18:fd:b7:3e:98:69:c0:27:76:d6:13:fd:
61:6b:93:13:10:26:a7:b0:11:02:32:e8:b3:a7:f7:
6b:f5:3e:6e:fc:f1:1a:a2:54:7f:65:89:39:d6:68:
08:36:55:57:f7:a2:62:b1:75:d7:e1:fd:68:05:19:
9b:7a:1f:40:e6:ac:b3:f3:4c:4d:a8:bb:d5:d4:e9:
8a:77:71:21:4a:3c:12:02:d3:38:69:8c:b9:d5:c3:
5e:eb:13:3c:20:ac:d1:e7:0d:81:4d:c6:89:b2:75:
e7:7a:80:15:01:13:a2:8d:e5:4a:00:75:78:8f:f2:
2a:c4:84:44:d5:26:c5:46:9e:e6:86:56:89:ce:ad:
da:b3:a5:e1:e8:89:bc:78:08:75:de:41:b2:ec:35:
32:84:76:ef:41:e8:d3:27:27:84:ab:81:96:e4:88:
3e:a2:62:3f:9b:85:19:c1:ed:08:8e:4a:fb:ba:38:
bd:d0:26:71:a8:a1:94:cf:53:ac:47:1a:9d:ee:00:
eb:b8:3a:16:56:27:d6:6f:c2:07:5c:2b:78:8e:c8:
1e:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:15:61:3B:68:98:77:76:9E:36:14:34:B9:91:59:9A:1E:96:A9:79
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/GRVhO2iYd3aeNhQ0uZFZmh6WqXk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.106.236.0/23
Signature Algorithm: sha256WithRSAEncryption
cd:90:d2:f0:41:99:b5:0e:68:d8:59:a0:34:81:c1:ed:c5:aa:
90:25:4f:62:09:4e:bf:56:b4:9b:fa:99:53:70:7e:21:cc:64:
02:3b:3b:04:f3:b6:cf:b1:27:23:46:96:7c:6a:37:1f:46:d6:
78:59:30:ee:40:16:b5:45:41:51:4e:c4:d0:40:e6:7c:ca:59:
39:80:ae:72:44:43:e7:26:a4:84:fa:57:c6:56:1e:e6:9d:8c:
37:12:70:a6:81:9f:87:5d:5c:08:bc:ed:c9:b8:f8:cb:f2:e1:
e9:2d:3f:27:91:ea:e6:85:25:67:fe:03:05:84:55:f0:65:1f:
77:05:eb:7d:87:c7:d7:4c:39:79:8f:b9:83:b3:bf:5e:10:e3:
65:f3:0c:de:7c:c6:ef:10:e5:a9:e5:bf:e2:63:f3:71:a8:b8:
2f:c7:92:b7:17:5b:ac:97:71:e2:b6:e8:ae:1f:70:3e:43:b2:
1e:a0:fc:b9:8f:55:35:c2:ae:d9:96:61:b5:fc:f3:46:46:18:
3a:43:a2:ea:bf:78:34:dc:7e:39:66:97:75:22:51:2f:94:c4:
21:7a:13:c5:da:cb:7a:a9:72:b9:ac:24:97:34:2c:70:5b:e6:
c2:1e:1c:f9:06:00:dc:89:6e:04:43:f6:40:d6:b7:b3:6b:67:
55:8f:e5:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:33:13 2025 by rpki-client