Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/NRuGnN78hNBVMP-6VHuKXGkwioQ.roa
File: NRuGnN78hNBVMP-6VHuKXGkwioQ.roa (raw, json)
Hash identifier: dR236v8vsIidvj7lhffn7AXUZkkACZ2dtn4KFhNAwkE=
Subject key identifier: 35:1B:86:9C:DE:FC:84:D0:55:30:FF:BA:54:7B:8A:5C:69:30:8A:84
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0402
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NRuGnN78hNBVMP-6VHuKXGkwioQ.roa
Signing time: Tue 06 Jun 2023 16:05:48 +0000
ROA not before: Tue 06 Jun 2023 16:05:48 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.104.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1026 (0x402)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 6 16:05:48 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=351B869CDEFC84D05530FFBA547B8A5C69308A84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:04:81:cf:ba:e0:ad:32:ce:21:ea:d4:8e:dd:
c6:e0:77:97:84:b9:4e:84:69:2f:26:35:5f:63:37:
91:9c:30:88:a9:71:e6:b4:02:83:b3:5f:ba:f3:55:
53:3e:b7:57:9e:4e:5b:1e:e4:ba:3b:c6:e0:d3:17:
0d:5e:02:da:40:ae:51:28:74:44:bc:17:3d:6c:02:
f8:ea:25:e2:b3:6f:c8:dc:3e:df:11:e2:fa:4e:1a:
28:0b:19:b5:21:5b:4b:95:5e:f8:6d:04:e1:57:87:
97:01:70:ff:b7:bb:83:94:4b:fe:c0:12:99:f7:ab:
78:44:85:9b:79:bd:e9:9d:84:2f:46:be:fe:cf:60:
c8:08:a7:69:7a:5b:7d:14:eb:ba:79:56:ad:09:16:
60:f8:3c:62:fb:05:c0:f2:56:d9:e5:9d:1c:b2:44:
f5:f7:c1:fd:82:24:f2:36:87:26:19:5c:20:18:dc:
53:1a:97:80:51:ad:53:59:1b:d9:2a:e3:54:d7:9e:
34:4f:af:6e:07:f8:35:18:bf:76:3e:1d:28:2f:df:
92:10:3b:63:bf:74:88:91:99:f7:c9:49:d7:4c:03:
8d:7f:53:66:87:e7:eb:77:a8:82:87:02:3a:5b:27:
35:72:0e:a6:f3:12:75:eb:47:a6:6e:5c:8b:ce:a9:
50:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:1B:86:9C:DE:FC:84:D0:55:30:FF:BA:54:7B:8A:5C:69:30:8A:84
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NRuGnN78hNBVMP-6VHuKXGkwioQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.104.23.0/24
Signature Algorithm: sha256WithRSAEncryption
42:21:c9:b0:30:16:ff:17:2c:05:27:53:7a:1d:ad:8c:7b:cf:
ac:8d:fb:fe:1e:8b:67:32:46:4c:66:6d:41:01:11:e3:f8:d6:
2f:59:54:54:98:58:4a:f8:37:59:1f:0e:f7:db:7f:d0:27:95:
c9:ed:90:0e:79:20:2f:7b:fc:93:19:d1:4c:3e:53:88:13:d9:
8b:f9:a6:de:84:fa:90:4c:e2:45:bb:39:01:61:8a:4c:18:ac:
73:2d:48:ce:00:c2:69:40:86:69:af:57:05:4b:83:f7:b4:5f:
f1:84:7e:33:20:50:f3:ca:21:17:94:6e:c2:3f:59:9a:3a:6a:
e0:44:ef:4d:18:cc:f6:88:08:a2:61:f3:39:84:73:88:2a:a3:
55:96:57:02:d9:8d:12:14:04:61:74:20:b2:c3:96:1f:9c:09:
f2:6a:a6:39:1f:90:fe:e6:6e:cf:00:b5:6b:fc:63:ea:c0:a5:
a5:12:be:f9:2d:69:0a:65:08:d8:15:2c:22:58:09:f3:71:8b:
ba:ff:9f:38:67:b3:c4:44:aa:ab:c8:6c:5d:40:43:5e:f2:f6:
25:cb:ff:dc:b9:a3:42:05:ef:f7:08:ba:f3:c0:32:7a:4c:de:
6a:77:32:c0:b6:04:c6:c4:1b:f5:2b:5f:fb:81:39:71:2b:53:
f3:4f:91:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:19:06 2025 by rpki-client