Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Lfz3f6XW8KyN74vGD0FbePzSrTc.roa
File: Lfz3f6XW8KyN74vGD0FbePzSrTc.roa (raw, json)
Hash identifier: AXSCLRF7EVYcyedZ6yIEPfc8vFcRuwLq86N1iijPiaY=
Subject key identifier: 2D:FC:F7:7F:A5:D6:F0:AC:8D:EF:8B:C6:0F:41:5B:78:FC:D2:AD:37
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 02C3
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Lfz3f6XW8KyN74vGD0FbePzSrTc.roa
Signing time: Tue 30 May 2023 17:17:36 +0000
ROA not before: Tue 30 May 2023 17:17:36 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.105.86.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 707 (0x2c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 17:17:36 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=2DFCF77FA5D6F0AC8DEF8BC60F415B78FCD2AD37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6d:4d:6b:96:8f:f3:cd:a6:52:dc:35:89:53:
bd:f8:93:74:bd:0c:09:2c:5d:34:45:67:f3:57:81:
fb:1f:f8:2a:81:95:36:ce:06:25:b2:48:18:5f:ca:
ab:10:1b:5f:76:0f:64:b4:dd:1f:d0:7e:31:91:c4:
ce:6b:96:ca:7f:56:80:de:38:24:e7:08:6c:b8:ff:
f2:80:ef:0d:ba:fd:16:62:16:86:ae:db:db:33:c9:
19:b5:8e:3a:5a:af:6d:cf:52:c5:2d:a5:9a:3b:e5:
31:f4:b1:a7:5a:94:23:e8:4a:99:68:c9:8f:82:5d:
1e:e4:b9:2f:78:ab:73:53:fd:8d:cf:85:84:68:32:
52:e9:54:e2:3b:ef:e8:75:ff:65:18:37:a3:40:30:
e0:a1:44:68:2e:64:d9:6b:42:e3:00:31:3d:d5:7b:
42:c6:08:4e:cc:34:49:a5:39:2e:72:dc:1d:19:8e:
03:90:00:b8:3e:60:e7:20:77:85:86:3b:58:76:1c:
b4:64:86:8d:42:9b:cc:c7:d1:46:38:42:8c:3d:1e:
84:ee:62:e4:14:a8:4a:9a:9d:d6:8f:ef:ce:bb:e3:
19:98:e6:94:4f:3f:36:60:09:ed:4b:bb:e3:3d:72:
24:97:af:d8:d1:45:fe:4b:35:f8:38:93:eb:78:f3:
fe:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:FC:F7:7F:A5:D6:F0:AC:8D:EF:8B:C6:0F:41:5B:78:FC:D2:AD:37
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Lfz3f6XW8KyN74vGD0FbePzSrTc.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.105.86.0/23
Signature Algorithm: sha256WithRSAEncryption
99:5d:65:70:24:63:d8:1c:98:f0:9c:4c:72:3e:16:5b:5b:a9:
f7:82:a0:97:6e:62:59:92:84:9b:de:36:a5:0e:ca:c8:07:a0:
7d:c5:33:0e:fa:1f:89:3b:eb:57:17:9b:a8:d7:0f:17:74:af:
37:73:75:47:cd:cc:8f:79:66:19:d6:09:d5:4e:4a:29:9d:e7:
b8:a9:23:59:2c:2d:50:82:c8:5e:8a:d2:9d:e1:26:ab:50:c9:
76:39:02:15:b3:2d:bd:f0:41:87:5b:11:7a:d8:fd:32:f5:21:
56:a6:81:20:e1:1c:ab:6a:4e:7a:a9:24:bd:54:cf:c1:b4:e0:
03:da:57:1c:f8:ca:76:71:a8:8a:98:2c:72:9a:8b:a1:c7:cb:
99:06:ec:42:f5:91:f2:68:b4:02:b6:af:df:bf:e5:6f:f5:ae:
e1:f1:e6:bf:73:b1:25:63:5f:9f:22:07:30:53:c5:8b:57:88:
9c:58:02:8e:a1:84:1d:e8:8c:c1:da:b3:dd:55:69:79:8f:16:
6b:b5:9f:3b:f6:4b:0b:7f:12:bc:4f:89:ac:a1:22:22:a3:1c:
c7:2b:b0:4a:75:99:ee:c5:e3:7f:8c:46:8b:29:5d:68:dd:51:
c9:47:1f:ea:d3:a7:8a:d6:9a:aa:4f:a1:ce:61:5d:70:61:4c:
3b:5d:a3:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:07:04 2025 by rpki-client