Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/I0KDo8fdiooTOQSzHBMZBwckSJQ.roa
File: I0KDo8fdiooTOQSzHBMZBwckSJQ.roa (raw, json)
Hash identifier: KOvST62N6Pb3mzTs3l9CETYIgEknwZbRN89Wxa7RNL4=
Subject key identifier: 23:42:83:A3:C7:DD:8A:8A:13:39:04:B3:1C:13:19:07:07:24:48:94
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: CF
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/I0KDo8fdiooTOQSzHBMZBwckSJQ.roa
Signing time: Wed 24 May 2023 16:02:18 +0000
ROA not before: Wed 24 May 2023 16:02:18 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.98.138.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 207 (0xcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:02:18 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=234283A3C7DD8A8A133904B31C13190707244894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a1:9a:03:8b:bc:0e:96:bd:63:a1:a8:7e:8f:
c6:bb:16:4d:58:c7:7a:3a:8a:c7:51:39:13:a7:81:
b2:c6:2c:ec:a7:d7:4e:e3:56:87:5b:b2:c8:5d:9e:
39:a5:b7:ea:cb:37:e9:9b:bf:30:75:9b:4a:e5:d8:
92:57:7e:e8:c8:3d:14:8c:7c:4c:d0:52:fa:62:2e:
02:ee:6a:af:e5:2c:73:95:13:25:61:d7:bf:64:7e:
33:d8:ac:1f:87:35:0f:dc:ff:e8:7e:e9:8e:a1:3d:
8a:dd:dd:5c:a5:00:80:3b:1d:a5:90:62:16:9f:4b:
d0:29:38:4a:e7:b6:27:4a:64:d3:b2:75:57:a5:08:
c0:a8:31:66:af:af:a8:02:4d:84:ff:58:ac:57:3f:
c0:da:a2:d0:44:c3:75:30:ff:b5:d6:7b:11:d2:b7:
c8:26:29:e5:b7:60:3d:29:2a:b2:42:cb:41:c1:d5:
cc:d9:ed:61:52:a0:92:19:35:60:39:7b:7f:55:e6:
77:fb:84:ec:97:27:09:5b:9e:76:89:9b:f9:fc:9c:
eb:db:bd:ad:95:39:1b:ca:4c:0c:72:15:be:79:ab:
cc:7d:53:ad:07:b8:c2:1c:f9:56:73:61:04:b8:6d:
f1:b1:4c:3e:ed:9b:aa:3d:03:9b:ad:1e:19:f4:37:
6f:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:42:83:A3:C7:DD:8A:8A:13:39:04:B3:1C:13:19:07:07:24:48:94
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/I0KDo8fdiooTOQSzHBMZBwckSJQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.138.0/23
Signature Algorithm: sha256WithRSAEncryption
74:d5:4f:03:7a:93:f8:09:91:f3:e6:8a:f4:32:72:8f:82:26:
cb:b8:6c:61:7f:38:22:5f:38:d9:e9:5a:46:0f:7e:c8:22:14:
31:e3:19:66:3f:c0:ef:52:cf:c3:44:9c:f0:32:52:3f:f8:41:
75:27:84:e7:e4:a4:d8:68:93:3d:23:6e:dd:fe:e0:01:f5:a3:
8f:78:0c:6c:83:93:da:33:30:68:0b:34:14:fa:dc:6f:20:a1:
ff:24:74:ca:a5:81:e0:41:ee:be:29:29:7c:5c:04:49:8c:c1:
aa:34:df:16:d1:e1:60:af:90:80:7a:69:bb:28:b7:af:a7:64:
fa:2e:7e:52:fb:5a:83:ac:45:e8:a6:d6:2a:b8:46:54:a3:86:
99:1b:c0:14:22:e5:f4:2c:5e:8b:0a:bf:da:38:29:24:69:14:
ff:6a:aa:b4:0a:21:d0:e0:02:d1:03:ae:6b:08:49:1a:d3:95:
95:3e:e9:98:44:6d:cb:14:5e:5e:7c:d4:da:1b:8a:92:c3:79:
37:a9:8c:d0:8a:8a:2c:89:bd:6e:f8:89:e4:8e:2e:9b:32:27:
dc:5e:86:2a:b3:ce:0d:ae:ed:53:19:76:54:94:f4:5a:18:c2:
82:d6:a5:55:97:96:5a:bc:ed:f6:14:24:12:24:3e:c3:bc:6b:
13:0c:7e:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:01 2024 by rpki-client on console-ams.rpki-client.org