Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/NO39mRl-2zkQ1mBXdxwBH_2RwEk.roa
File: NO39mRl-2zkQ1mBXdxwBH_2RwEk.roa (raw, json)
Hash identifier: 0ZllmznTBAAf2N/HgLb6mWlSAQh9L+fGnD/y+4phJ5Q=
Subject key identifier: 34:ED:FD:99:19:7E:DB:39:10:D6:60:57:77:1C:01:1F:FD:91:C0:49
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: E6
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NO39mRl-2zkQ1mBXdxwBH_2RwEk.roa
Signing time: Wed 24 May 2023 16:03:05 +0000
ROA not before: Wed 24 May 2023 16:03:05 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.98.174.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 230 (0xe6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:03:05 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=34EDFD99197EDB3910D66057771C011FFD91C049
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:05:ae:5a:09:fe:56:d6:c1:f6:50:9c:c8:8b:
ae:e3:e4:ff:25:01:0d:a6:92:00:71:a1:97:7c:33:
95:8c:16:8f:5a:f0:0f:3b:ff:c9:f9:71:95:4a:e6:
3f:2c:da:98:61:7d:1e:89:7c:90:64:8d:1f:be:24:
e4:27:41:d7:6f:bb:9c:58:55:48:3b:19:a4:8f:5b:
44:42:27:08:a6:97:9b:e5:93:8d:54:78:5f:fd:d6:
30:5b:20:8b:70:ec:93:b9:0e:8e:7c:0b:6e:d5:3e:
6f:3f:ca:1d:37:c4:54:f4:0f:d3:3e:78:ca:dd:59:
33:3d:13:5a:e3:b4:cc:f8:22:78:8b:6b:e7:55:a4:
3d:18:fe:2a:b8:73:b2:4c:5f:b4:f8:cf:3c:cc:63:
56:21:f9:ce:1f:53:f1:cd:af:33:0d:22:46:2e:8d:
4a:15:f5:ef:be:61:8b:c0:6a:26:70:bc:44:b3:5b:
00:09:1c:df:a3:08:dc:f7:63:fd:0e:3e:70:65:c8:
5b:b3:ea:65:13:5f:92:88:0e:87:57:a6:ed:03:d6:
30:2e:34:8c:ed:29:d0:3d:0d:1f:d5:48:03:3f:f6:
c9:7c:64:71:37:bd:c4:3d:a6:34:96:a6:d6:01:ac:
49:7d:85:9f:2e:43:dd:0d:a7:31:54:98:22:4b:f9:
d5:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:ED:FD:99:19:7E:DB:39:10:D6:60:57:77:1C:01:1F:FD:91:C0:49
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NO39mRl-2zkQ1mBXdxwBH_2RwEk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.174.0/23
Signature Algorithm: sha256WithRSAEncryption
b2:91:f7:1c:26:a4:7a:b8:6a:1f:13:e6:06:05:2a:10:23:ad:
e8:7a:3e:bd:1e:cc:f6:d1:96:40:a3:33:45:4a:83:44:e6:a6:
8d:5f:61:3c:a4:7b:42:d2:b5:80:bd:d6:b6:0a:fa:32:19:db:
03:74:12:9f:32:fc:c5:0d:39:5c:24:46:ad:93:f4:81:e3:89:
62:22:bd:f4:d7:1e:86:f7:6e:53:12:b2:20:56:5d:99:ad:0b:
07:dc:64:d3:ed:39:e5:75:aa:df:95:d9:7f:e3:b9:1e:37:29:
e6:56:6a:c7:cc:d3:c5:2c:b6:40:0e:f7:6a:84:f1:d4:d9:9e:
81:d4:31:a9:ca:aa:3e:f5:8c:9b:fe:20:01:f8:dc:9e:01:51:
1a:4d:bd:b2:d9:69:79:09:ad:93:ec:c2:9a:45:02:8a:f4:d7:
56:83:04:9c:4f:b9:9e:97:91:2b:77:b3:48:e0:8e:37:26:9d:
60:18:c4:80:22:39:ba:48:a9:ab:03:9a:8e:ef:f6:60:67:e0:
84:36:25:2d:21:9b:27:f4:c6:92:14:92:3c:db:51:ec:62:a0:
ee:9e:f4:7f:e5:3e:1e:ba:6d:cc:e2:40:1f:9c:00:ab:85:41:
72:9d:09:a2:cf:0e:0d:57:08:65:51:9f:5b:84:6c:7a:0d:82:
77:e1:8a:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:09:50 2025 by rpki-client