Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/IDh-Q9np_xF670BZaES3WE3gUNY.roa
File: IDh-Q9np_xF670BZaES3WE3gUNY.roa (raw, json)
Hash identifier: WWw9euV28zTqkpABTJ5AVEji/TNqI2AJhV3DByQBnwA=
Subject key identifier: 20:38:7E:43:D9:E9:FF:11:7A:EF:40:59:68:44:B7:58:4D:E0:50:D6
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0427
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/IDh-Q9np_xF670BZaES3WE3gUNY.roa
Signing time: Tue 06 Jun 2023 16:09:08 +0000
ROA not before: Tue 06 Jun 2023 16:09:08 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.106.216.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1063 (0x427)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 6 16:09:08 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=20387E43D9E9FF117AEF40596844B7584DE050D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:d7:db:58:6e:95:34:6f:da:c6:e0:c3:df:8b:
0a:67:e2:f7:b3:72:4a:30:b4:40:09:6b:e6:b3:ac:
34:fd:51:e7:3a:92:d4:44:fc:26:73:6c:f1:a6:bf:
ed:a5:23:76:e2:0c:74:27:df:6f:f6:99:e9:da:34:
f5:79:9b:34:27:e3:e6:6c:94:b3:c6:f7:6e:6e:d3:
f9:72:8b:95:ea:04:19:11:65:5f:0e:0e:5b:d6:6d:
6d:36:82:6a:a0:21:28:e6:af:81:3c:78:48:30:1a:
4b:45:ae:6f:11:b4:ac:2f:e9:5a:2a:da:7e:0c:cc:
98:5c:19:00:82:b2:29:65:cf:d4:4c:a2:60:4c:c5:
46:8e:d6:27:63:86:25:8e:09:59:93:4b:1f:f5:c3:
24:3f:4d:82:96:5a:67:19:21:dd:49:79:22:77:72:
06:86:a9:e3:44:29:92:42:10:6b:f7:41:08:e5:72:
64:4c:4e:2d:f0:ea:48:37:f5:25:13:a5:e4:9c:19:
cc:a7:c1:b3:5e:29:2f:40:f7:e8:c8:2d:cf:02:b2:
52:27:ae:4f:42:67:c1:88:04:84:68:b1:f5:23:f0:
db:78:6a:37:c1:1b:0d:2f:85:d6:8a:d6:92:d0:92:
51:25:90:fb:d5:0a:9b:24:0f:a8:bc:d9:be:72:7f:
4c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:38:7E:43:D9:E9:FF:11:7A:EF:40:59:68:44:B7:58:4D:E0:50:D6
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/IDh-Q9np_xF670BZaES3WE3gUNY.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.106.216.0/23
Signature Algorithm: sha256WithRSAEncryption
55:19:ee:a6:77:06:ef:94:5d:e9:5f:54:d6:96:a4:15:31:8f:
51:cc:16:0a:77:9c:c6:20:4e:14:61:eb:67:74:a6:84:a2:4f:
63:9f:d3:3a:c3:0b:f4:5a:40:83:bb:ba:56:64:b0:1d:38:93:
7d:2c:88:39:c4:0d:be:78:23:3d:87:ed:e1:55:7b:4f:b3:22:
7a:af:86:90:8b:44:53:c4:4c:f1:e5:e1:ab:7b:d6:fb:e2:1d:
5a:3a:58:27:e0:a1:a3:19:01:22:fd:45:e5:d8:01:35:b4:8f:
8c:09:46:79:da:ae:cc:25:a2:4f:23:26:c2:bb:3b:1e:96:6a:
8b:08:17:1f:3e:f0:86:04:ff:88:5e:11:88:97:48:87:4f:69:
ea:8f:4d:1d:2a:3e:b6:a7:1e:f3:7e:80:1d:56:5a:cd:b0:17:
cb:6a:b8:6f:9c:2d:0d:83:4a:b0:af:37:b5:7e:79:1e:4c:64:
ec:34:14:d3:89:5a:c4:d3:35:a7:09:24:ab:bd:b8:0b:11:52:
40:8f:3b:39:b6:4c:cf:22:e9:5b:9f:4a:cc:01:b6:cb:11:cb:
70:d1:51:58:cf:93:67:51:68:8e:a8:63:11:50:67:ee:6e:fc:
43:ec:45:c5:0f:7e:21:96:f2:75:f1:11:a1:74:24:4e:32:5f:
81:48:34:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:01 2024 by rpki-client on console-ams.rpki-client.org