Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/LylvSo5fQqpfWevNP1ADidkSEbw.roa
File: LylvSo5fQqpfWevNP1ADidkSEbw.roa (raw, json)
Hash identifier: gnDQFZSnzTZavQBnnwJPeoY4vxUkzhqamDXYum3kM6s=
Subject key identifier: 2F:29:6F:4A:8E:5F:42:AA:5F:59:EB:CD:3F:50:03:89:D9:12:11:BC
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: FD
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LylvSo5fQqpfWevNP1ADidkSEbw.roa
Signing time: Wed 24 May 2023 16:03:16 +0000
ROA not before: Wed 24 May 2023 16:03:16 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.96.250.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 253 (0xfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:03:16 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=2F296F4A8E5F42AA5F59EBCD3F500389D91211BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:8a:21:94:af:c5:24:54:c0:be:10:a1:e7:25:
f8:28:17:93:02:a4:d2:aa:92:a6:ac:40:04:c8:36:
96:89:4a:b0:60:b3:d0:b6:84:2b:33:7e:04:2b:5f:
35:91:eb:02:0a:23:cb:4a:19:86:af:d3:c1:8e:1f:
94:35:c7:b8:0e:c5:3a:ca:44:9d:48:dc:e2:7d:2c:
7a:e2:da:91:51:3b:6b:18:d3:78:b2:06:d1:ba:68:
2a:bd:9c:a1:f2:7a:c2:ff:5e:43:6e:b4:b6:0e:91:
01:98:86:5f:71:bb:fb:d7:69:a3:69:6b:65:e6:d9:
32:d1:3f:c0:5e:71:44:de:c3:eb:ea:41:e6:cb:6a:
76:9a:bd:31:2b:81:e6:3c:07:3a:8e:16:67:7d:40:
e0:31:f4:bf:3b:c6:9f:16:f2:e5:ef:ab:bb:8e:b3:
54:c9:98:51:de:a5:bc:79:a7:ef:c9:81:d3:52:d5:
dd:00:7e:5c:d5:d2:b2:a2:dd:8b:07:42:29:90:f1:
aa:0a:a9:6c:ca:76:48:31:94:44:79:20:8e:a5:1d:
86:2d:d6:d2:f8:7c:b3:69:60:dd:2e:0f:87:9e:1c:
56:68:20:a3:a9:94:db:50:ae:16:a5:6a:a2:f5:93:
46:df:b4:ee:29:35:ba:00:25:83:ba:5e:4d:5a:3f:
57:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:29:6F:4A:8E:5F:42:AA:5F:59:EB:CD:3F:50:03:89:D9:12:11:BC
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LylvSo5fQqpfWevNP1ADidkSEbw.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.96.250.0/23
Signature Algorithm: sha256WithRSAEncryption
95:9b:8f:6b:b4:19:7f:6e:a8:c2:d3:87:44:e3:2e:69:de:b4:
c1:ba:1d:6d:55:ce:42:60:06:1f:d4:12:b6:85:e1:06:9e:44:
87:df:ff:d7:e2:17:0d:9e:0f:31:c6:02:d1:83:c9:88:fc:9b:
24:74:b1:04:7c:27:96:0c:bf:cd:b0:c3:8c:73:0b:12:0b:14:
6c:4c:d0:d1:e6:c7:78:db:d1:b8:f5:29:4e:31:4b:54:01:35:
2f:42:79:5d:38:cc:b3:90:85:ed:bf:2a:25:d3:50:0e:09:9d:
e0:b0:38:bf:cf:5e:bd:d3:9c:73:55:97:18:d4:b4:be:3c:36:
31:17:b4:f3:54:15:1d:76:11:5d:a9:be:04:e7:72:65:92:70:
9b:e9:96:4e:20:9c:a1:3b:44:58:ff:09:d8:40:88:54:05:55:
b4:d6:fa:91:3b:24:15:4b:2f:d0:73:fc:6f:68:b0:11:31:7c:
c8:09:0c:4e:51:a3:49:23:8b:da:f4:f8:d3:78:06:17:8a:7d:
10:9e:14:c6:6c:ec:b0:0c:ed:fa:61:ae:b6:7d:53:44:2e:fc:
5b:9b:99:df:7f:6d:45:52:d9:c8:7c:02:49:8d:a1:7b:71:c5:
63:05:b2:de:0c:a5:f8:a7:ca:f3:61:35:ee:d1:cb:f5:fb:36:
e0:d9:60:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:51 2024 by rpki-client on console-fra.rpki-client.org