Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/JjR6i4hP7nFJ2RKnlkpCXnCpgEg.roa
File: JjR6i4hP7nFJ2RKnlkpCXnCpgEg.roa (raw, json)
Hash identifier: OnF1nc5nHOf2wwWMN/BhVMcVHxpbsL0sayl9Xsxwt8E=
Subject key identifier: 26:34:7A:8B:88:4F:EE:71:49:D9:12:A7:96:4A:42:5E:70:A9:80:48
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0586
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/JjR6i4hP7nFJ2RKnlkpCXnCpgEg.roa
Signing time: Thu 27 Jul 2023 16:58:13 +0000
ROA not before: Thu 27 Jul 2023 16:58:13 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 49.103.28.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1414 (0x586)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:58:13 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=26347A8B884FEE7149D912A7964A425E70A98048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:69:bf:91:66:8e:93:1e:f3:6b:26:df:ae:66:
d0:44:f4:88:00:1f:b5:f3:21:c1:5a:b1:0d:e1:d4:
e8:32:32:33:b4:e7:78:3f:61:cd:5a:b7:38:f3:49:
a5:8c:5a:d8:67:9b:a8:74:f9:9d:da:6c:6b:8e:5c:
80:4b:78:61:b5:12:0b:97:f0:50:c7:a0:da:dc:07:
f7:3d:22:cc:58:8a:02:b1:4e:5b:75:d5:90:94:d2:
ac:73:23:eb:61:a1:07:b7:80:55:65:9a:16:40:e6:
be:c8:09:22:7b:be:10:5a:39:64:0a:07:50:94:c7:
ff:ef:80:74:92:d0:98:de:53:e7:74:ca:9c:8b:2f:
ce:14:4a:c4:74:a6:b7:30:ee:a3:f7:75:97:42:cb:
05:c3:2c:ec:2a:6f:1c:69:8b:36:81:bb:8c:ba:dc:
00:eb:10:95:8b:0c:27:20:97:80:43:c2:36:c5:30:
04:e7:67:54:8f:61:87:d5:c6:85:ee:dc:a6:7d:09:
a0:aa:06:f9:89:3a:57:92:fc:88:8d:49:78:3f:4d:
41:7a:ac:7e:88:c4:77:2d:62:2d:3d:d0:05:ca:d4:
85:91:16:20:3a:ff:35:52:3a:36:39:cc:0f:39:1d:
44:d9:29:c1:a8:99:39:19:6b:e6:23:61:f2:d4:00:
e8:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:34:7A:8B:88:4F:EE:71:49:D9:12:A7:96:4A:42:5E:70:A9:80:48
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/JjR6i4hP7nFJ2RKnlkpCXnCpgEg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.103.28.0/22
Signature Algorithm: sha256WithRSAEncryption
d2:eb:ea:8a:4f:62:27:a3:0e:3a:ff:47:52:bd:5d:5c:73:6a:
8a:36:8e:34:90:4a:18:d2:5e:84:13:ea:0e:34:ac:e8:53:9d:
24:29:85:16:ef:5a:07:6a:d1:a5:c2:48:a9:17:c6:47:40:f8:
d6:ab:5a:3b:84:7f:54:46:86:21:ab:83:c4:9b:76:d4:35:a6:
fa:e4:e1:8b:ed:14:17:d0:1e:fc:11:70:71:57:a1:f5:a6:60:
9e:3d:88:6f:84:f0:17:92:f5:e7:d7:b4:2c:0c:27:20:b9:d7:
da:f0:46:bc:d7:ef:fb:27:57:d0:b7:cb:96:42:ae:a6:e2:48:
c9:23:a3:ef:c2:98:56:d5:7a:a0:ca:85:23:19:49:c6:90:e4:
1b:de:12:ad:59:cb:18:e8:c4:aa:2f:f1:7b:29:0b:5a:37:d7:
94:02:cf:91:34:cf:8f:2f:04:e7:83:80:c1:cf:d7:d9:5b:b4:
14:c6:32:32:eb:3b:83:65:e3:f0:92:45:62:8a:ec:d2:70:d6:
c1:6b:82:e7:1c:a2:0a:b5:96:42:d1:c4:40:45:c6:df:93:43:
b2:bb:38:e5:51:ae:0f:d0:86:00:25:23:7e:2f:d5:7d:22:bd:
be:7c:e1:bd:e1:9f:b6:f3:a2:c2:1b:e8:c6:88:17:a1:8a:86:
d5:72:3e:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:33:12 2025 by rpki-client