Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ku5C2ihpIb8eRUOfiYikl7DWcrc.roa
File: Ku5C2ihpIb8eRUOfiYikl7DWcrc.roa (raw, json)
Hash identifier: aCUixYhwjqBeGp6IcGZ1dBPs8Faqas5NvyO7KKspTUQ=
Subject key identifier: 2A:EE:42:DA:28:69:21:BF:1E:45:43:9F:89:88:A4:97:B0:D6:72:B7
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 03F0
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ku5C2ihpIb8eRUOfiYikl7DWcrc.roa
Signing time: Tue 06 Jun 2023 16:03:47 +0000
ROA not before: Tue 06 Jun 2023 16:03:47 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.104.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1008 (0x3f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 6 16:03:47 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=2AEE42DA286921BF1E45439F8988A497B0D672B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b3:03:f4:33:82:99:0f:0c:f3:c7:3a:cb:de:
ed:e0:ae:1a:10:68:49:b6:f9:63:ae:a1:0e:fb:2e:
5b:4c:74:20:ea:de:89:5b:d4:4d:0d:3b:81:56:57:
24:f9:a2:c3:84:10:f4:6b:1a:d3:63:cd:3d:20:69:
c5:a7:e7:63:97:ec:e1:f8:7c:0b:e8:42:07:99:ab:
69:b6:5d:3a:4a:d0:27:0a:49:62:16:82:fc:be:75:
2c:1b:04:d3:56:24:e5:1b:29:d0:04:8f:31:15:2c:
a2:8d:f4:50:cd:57:22:fb:4d:ae:0e:99:86:b4:d6:
a4:bd:64:78:9b:3f:98:5d:43:53:21:02:27:29:42:
92:11:5a:37:63:45:db:39:df:c1:44:70:f3:3a:94:
88:27:6f:ed:47:11:c1:80:0c:22:41:ab:57:8c:2b:
a6:32:ce:fb:6c:d0:6b:d2:da:2b:40:dd:2c:b3:52:
c5:fe:18:98:ad:db:79:24:a5:6e:63:31:85:58:7a:
76:8e:f5:a3:d7:80:2d:71:af:a8:35:d0:5b:73:29:
06:96:06:e6:a1:ea:a2:2a:2e:d2:a8:8b:1c:96:cb:
6c:66:77:21:b6:4e:65:08:04:8f:19:fa:31:d4:e0:
96:08:3a:36:fa:53:20:13:e1:e7:65:08:88:f7:46:
9a:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:EE:42:DA:28:69:21:BF:1E:45:43:9F:89:88:A4:97:B0:D6:72:B7
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ku5C2ihpIb8eRUOfiYikl7DWcrc.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.104.34.0/24
Signature Algorithm: sha256WithRSAEncryption
59:43:28:9d:b8:cb:c4:75:85:73:1a:92:95:b4:91:b1:76:d9:
09:07:d0:81:d0:8f:fb:4d:cf:75:98:81:29:1e:22:1c:93:cf:
5f:14:57:14:df:08:b3:73:c9:3e:5c:f8:34:99:39:f8:a1:de:
9d:f4:a0:8b:3d:26:c3:3c:89:2d:6b:b0:18:0b:e1:3b:0e:7f:
8c:a7:04:c5:5e:0a:26:f5:e0:ae:ba:b9:fa:14:8b:b4:47:b3:
b2:e5:b3:77:85:5f:1d:02:27:12:ff:17:ed:50:4c:f0:ce:c0:
40:de:41:be:e5:4d:98:39:c6:ba:a1:71:50:2c:3b:83:7e:6a:
f7:2f:74:4d:5b:4f:24:c2:33:52:53:d4:73:4b:95:d6:0a:ca:
27:87:8d:f7:51:f4:e8:91:a2:bd:5d:eb:c0:12:88:35:7f:72:
8f:ea:ae:ff:25:60:46:8f:4a:d7:b2:76:9b:c7:59:50:9f:dd:
7e:1c:4f:f7:f0:28:ac:d2:64:b0:f4:eb:5e:66:0d:ed:6c:e6:
df:51:ce:07:41:f2:26:fa:c8:05:df:17:95:0f:69:f2:17:f5:
2d:36:ad:fe:59:c0:bd:16:fe:44:27:f1:8c:90:42:65:03:f8:
36:81:e4:7f:36:41:cb:5e:7c:bf:16:1b:5c:a8:17:1e:5f:dd:
2b:3c:ec:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:01 2024 by rpki-client on console-ams.rpki-client.org