Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/H8VnjDCPVEudcL184VnYPoHi1bs.roa
File: H8VnjDCPVEudcL184VnYPoHi1bs.roa (raw, json)
Hash identifier: 4cAkAyc0IIsa5sCnV7Y+LsGl+HZSjRc/w8pmagyMuBU=
Subject key identifier: 1F:C5:67:8C:30:8F:54:4B:9D:70:BD:7C:E1:59:D8:3E:81:E2:D5:BB
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 03EE
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/H8VnjDCPVEudcL184VnYPoHi1bs.roa
Signing time: Tue 06 Jun 2023 16:03:46 +0000
ROA not before: Tue 06 Jun 2023 16:03:46 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.106.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1006 (0x3ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 6 16:03:46 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=1FC5678C308F544B9D70BD7CE159D83E81E2D5BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:8d:57:a0:73:c0:e9:53:04:41:10:dc:03:44:
55:a6:3d:16:15:52:01:61:8f:21:8c:0e:69:c1:92:
0e:bb:6e:7a:8e:a8:81:d8:67:2e:24:c8:87:b0:65:
c4:1b:0b:7a:b7:79:58:ea:d3:fc:b0:6b:8b:05:24:
6e:59:7a:74:d1:a5:02:41:a7:fe:7d:1d:39:8a:12:
96:35:9a:ed:d5:4f:b6:94:83:0c:1d:0e:f3:74:fb:
0c:be:f1:cc:ee:f6:fa:07:f1:9f:12:43:b8:08:65:
3a:ee:bf:ac:b4:c5:3d:7f:eb:aa:2b:da:e7:94:1f:
83:d0:de:d7:7e:f0:9d:7a:b7:a6:bd:bd:65:e1:f9:
7c:11:05:9d:ad:10:2c:cf:f8:0b:ad:c6:f3:af:bd:
88:0a:38:23:10:e7:dd:d0:b5:66:ba:d3:33:a9:ca:
74:97:60:02:74:68:98:42:23:60:3b:fa:32:33:53:
32:1f:54:a1:db:f4:74:97:cf:59:4e:e5:dc:08:24:
85:27:cf:62:11:4d:75:1e:f8:28:56:b3:42:e8:45:
37:a6:53:79:cb:e3:e6:13:0c:bb:d0:45:fc:96:04:
c7:05:bc:43:a9:ae:5d:24:81:5d:5a:e8:be:6d:74:
61:be:b2:f4:d1:6a:b6:ff:09:d0:f2:84:6e:a0:b1:
05:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:C5:67:8C:30:8F:54:4B:9D:70:BD:7C:E1:59:D8:3E:81:E2:D5:BB
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/H8VnjDCPVEudcL184VnYPoHi1bs.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.106.170.0/24
Signature Algorithm: sha256WithRSAEncryption
68:ca:17:22:0d:12:01:d8:7a:e1:90:95:07:8c:1f:f6:4e:be:
a6:04:3e:d0:cf:2e:67:36:33:b8:16:6b:21:a1:96:86:d5:00:
b8:ac:a7:be:96:8e:f3:cf:bf:f1:9a:15:ee:83:77:36:e1:06:
7c:91:4f:f4:60:55:17:e8:a3:ca:0d:88:66:3e:92:cc:f1:ba:
0a:10:6b:85:d1:82:ee:17:eb:be:79:26:f4:4e:df:aa:6c:ba:
ff:e2:bd:41:18:c0:3c:e6:ec:e4:5d:c1:96:f5:6d:5e:67:17:
1c:8a:f6:1e:9b:db:10:2b:52:ce:2e:d5:43:6f:b7:14:15:64:
ae:70:ab:5b:3e:f4:48:68:71:18:15:e3:84:e2:9d:6b:47:51:
17:d2:ad:e0:1c:a4:23:f7:59:aa:77:5b:5e:b0:90:3d:94:8f:
29:fd:b1:fb:de:27:1d:4c:06:61:82:54:08:3b:bf:27:bd:b0:
e6:d1:15:ff:8a:8a:b4:38:03:ac:c6:c8:2c:13:6e:0f:55:55:
a0:ba:54:72:cb:be:2c:b5:61:86:ee:c9:8d:0b:97:53:99:61:
42:ce:d8:d0:cc:f6:e5:f5:93:69:ff:bc:14:10:24:51:dd:87:
74:4d:cd:8e:58:05:20:bc:15:35:3e:7d:52:f5:d6:9f:97:8f:
0e:49:7a:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:51 2024 by rpki-client on console-fra.rpki-client.org