Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/KJCkd0dl-yanvAWAgqzT7f0eIfk.roa
File: KJCkd0dl-yanvAWAgqzT7f0eIfk.roa (raw, json)
Hash identifier: C8YqDKdNR/19O9My8SNbJ2fHDGmqSSJ/0/0dVycWUVs=
Subject key identifier: 28:90:A4:77:47:65:FB:26:A7:BC:05:80:82:AC:D3:ED:FD:1E:21:F9
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0108
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KJCkd0dl-yanvAWAgqzT7f0eIfk.roa
Signing time: Wed 24 May 2023 16:10:14 +0000
ROA not before: Wed 24 May 2023 16:10:14 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.98.128.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 264 (0x108)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:10:14 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=2890A4774765FB26A7BC058082ACD3EDFD1E21F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:14:03:58:f6:48:ec:dc:22:13:c8:75:ca:68:
06:a7:3c:49:70:51:6d:89:a3:7d:74:7d:68:8f:3e:
37:74:93:f4:d7:f7:e5:e2:f6:1d:a8:b3:ef:cd:bb:
7c:09:8d:a9:f6:b9:4a:60:b5:64:12:0c:d9:07:d8:
af:35:65:df:ee:58:a1:07:01:96:a6:ba:cb:ea:75:
05:a6:59:05:79:17:11:3f:30:53:51:4b:8d:33:40:
85:eb:57:5d:fd:b5:47:41:10:f8:b1:a5:fd:48:87:
47:bd:ca:2d:2b:b4:9e:9f:f9:1d:1d:97:a0:e7:58:
a6:34:92:aa:7a:c4:92:8f:6d:b5:5e:2f:9c:cf:00:
ac:79:5c:db:41:17:b2:ae:11:05:e2:78:71:22:f2:
5a:aa:e0:05:95:da:7c:7d:d9:14:9b:52:5d:56:2a:
4e:12:db:84:f7:2f:68:a0:9c:62:40:1a:a7:ff:df:
ad:01:98:08:91:e4:03:c1:69:ed:ed:ae:3f:44:73:
f5:3c:10:72:5d:84:d2:7b:e2:67:bc:21:02:a3:b1:
20:b5:db:70:44:6f:49:fd:a0:6d:41:7b:03:26:45:
ae:e8:ca:b3:1d:72:86:8e:52:8c:06:ff:62:91:63:
fe:e5:83:8f:32:5e:68:1d:b6:2f:82:21:e3:73:69:
34:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:90:A4:77:47:65:FB:26:A7:BC:05:80:82:AC:D3:ED:FD:1E:21:F9
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KJCkd0dl-yanvAWAgqzT7f0eIfk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.128.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:f0:a0:a7:13:57:08:fc:6f:8f:af:79:22:55:8a:e6:ba:d6:
4c:ff:53:c3:1e:69:a6:24:7c:72:91:85:2b:b7:14:46:d2:ab:
ce:28:ab:ce:78:c6:08:39:7e:9f:ff:4e:ab:ff:20:bc:53:77:
86:94:59:c7:11:bc:ac:67:3c:60:d9:5d:d4:8b:03:04:1a:e6:
c8:d3:25:92:c6:7e:58:2c:ee:58:7c:34:7d:65:2c:72:a2:80:
e7:8c:9b:10:0f:d3:a0:6f:ec:22:17:a9:68:df:51:30:db:4d:
a8:a7:06:f1:7c:1e:fc:1d:67:1a:82:31:8a:bd:e4:c5:91:f2:
8c:27:81:47:8f:9f:73:f9:2b:b8:db:20:78:1c:c4:66:0e:89:
28:fb:df:e7:f4:21:d7:0d:b2:f4:6f:1e:6f:3f:13:47:f5:43:
b0:05:1d:54:e9:a3:33:21:b1:75:18:a5:d4:b5:04:00:4c:f9:
bf:e7:aa:c3:4a:91:7f:99:60:dd:df:7b:4e:8b:c2:18:a5:5d:
45:dd:48:f7:77:bc:74:a9:67:85:8d:75:1d:c3:77:08:65:71:
6b:58:05:59:26:39:e9:2c:80:c7:ce:65:6a:38:9e:db:63:52:
78:16:55:f5:42:16:24:39:8e:be:23:6a:6c:67:59:be:23:20:
bb:01:ba:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:22:42 2025 by rpki-client