Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Hhj8curVJYZ6mFWIUgvl6efcIXc.roa
File: Hhj8curVJYZ6mFWIUgvl6efcIXc.roa (raw, json)
Hash identifier: hfzvjVfsyQgkqiJTa+ZhDDuTzsBDykdbilV1afl9snw=
Subject key identifier: 1E:18:FC:72:EA:D5:25:86:7A:98:55:88:52:0B:E5:E9:E7:DC:21:77
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0412
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Hhj8curVJYZ6mFWIUgvl6efcIXc.roa
Signing time: Tue 06 Jun 2023 16:05:55 +0000
ROA not before: Tue 06 Jun 2023 16:05:55 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.104.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1042 (0x412)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 6 16:05:55 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=1E18FC72EAD525867A985588520BE5E9E7DC2177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f2:4f:57:af:69:26:cb:23:de:03:7b:f2:7f:
c5:f4:39:f3:cd:97:d2:63:f2:63:c4:0e:16:bd:d0:
b5:8d:86:b2:d7:f3:19:38:09:23:48:a1:d8:00:70:
1f:15:e6:0f:f4:2a:5a:24:6d:a4:d8:0c:78:04:dc:
dd:15:b6:2a:49:ce:34:92:cc:c6:81:87:0c:fc:15:
0a:76:5f:69:53:8f:2d:d9:8d:96:7a:1c:5a:d7:86:
71:10:b0:18:fb:fa:e1:5d:75:85:56:df:2f:01:49:
a4:c9:04:c3:7c:13:be:c1:6f:19:32:91:0f:1b:74:
9f:3b:e8:fc:50:34:ef:93:f2:d2:e9:c1:45:82:85:
c8:8b:40:83:73:db:9c:01:4c:82:4f:84:1d:1c:f8:
f3:82:50:d7:84:e9:2b:c2:bf:ff:4e:90:77:22:3c:
85:c3:af:33:88:a3:8e:30:aa:19:28:1a:b5:e0:f6:
19:12:50:af:2a:74:c7:9d:0d:73:33:26:3d:69:c1:
e6:e8:b2:46:6c:0e:e7:95:05:7f:f9:e1:ec:98:61:
9f:93:ed:39:24:23:df:10:e3:cf:93:ed:f0:c9:dd:
6b:dc:88:ea:8a:50:5c:66:f9:46:ac:f2:d6:08:84:
75:84:1f:c2:99:3b:ec:c7:29:1d:1c:bd:80:35:1e:
7b:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:18:FC:72:EA:D5:25:86:7A:98:55:88:52:0B:E5:E9:E7:DC:21:77
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Hhj8curVJYZ6mFWIUgvl6efcIXc.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.104.20.0/24
Signature Algorithm: sha256WithRSAEncryption
15:ba:52:15:e5:7c:ff:e1:42:ef:26:81:6c:89:d7:d9:4a:87:
96:bb:b6:ab:be:90:23:71:fb:58:7d:48:99:d0:1f:57:e5:c2:
e9:2c:c5:dc:dd:4f:1a:c7:7a:25:64:d6:7e:c5:0b:45:c1:49:
63:de:6c:65:be:35:eb:40:af:a6:2a:2e:3f:c9:a5:60:3b:d1:
e6:12:f6:6a:71:24:91:45:d3:58:e1:5c:b9:c2:46:00:43:a4:
a3:3f:b2:4e:2c:c2:8b:5b:cf:10:47:54:e8:d8:18:6f:98:40:
ea:30:2d:8d:90:83:67:28:66:b3:e8:28:72:8d:49:fd:88:23:
d0:07:ca:ad:c7:14:68:77:a5:b6:20:46:5e:c8:7e:2c:12:59:
2f:fc:48:e0:78:52:09:23:db:7d:09:b8:29:fe:bb:94:9d:5e:
94:2f:3b:7d:d2:dc:92:c2:ea:07:f3:7a:fd:30:56:fc:5d:60:
18:c3:fd:7d:bd:ca:5a:e8:c9:cc:10:aa:1b:85:54:6d:4f:cc:
11:34:a1:c7:71:19:c7:80:dd:eb:df:2a:e4:e7:c0:c7:cd:f8:
31:ff:6b:99:af:ce:02:13:7c:a1:2d:21:4c:c5:88:f2:ae:8d:
84:4c:7d:53:13:d3:22:ff:19:8d:8b:60:00:12:57:96:84:e7:
bb:c3:c6:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:51 2024 by rpki-client on console-fra.rpki-client.org