Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Oi65gfeDbRQoV-t7gj3dVmH2K3U.roa
File: Oi65gfeDbRQoV-t7gj3dVmH2K3U.roa (raw, json)
Hash identifier: 3uXVhCVZgxoFIZZTOpRUWQeDMj9NqHU0H47A+4esgQ8=
Subject key identifier: 3A:2E:B9:81:F7:83:6D:14:28:57:EB:7B:82:3D:DD:56:61:F6:2B:75
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 22
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Oi65gfeDbRQoV-t7gj3dVmH2K3U.roa
Signing time: Mon 27 Mar 2023 16:02:00 +0000
ROA not before: Mon 27 Mar 2023 16:02:00 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.98.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34 (0x22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 27 16:02:00 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=3A2EB981F7836D142857EB7B823DDD5661F62B75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:50:b0:89:62:5a:03:66:e1:0e:20:2c:bf:63:
bc:78:39:02:24:2b:f0:19:52:74:05:9f:61:46:7b:
a8:4e:bb:a7:d6:55:51:cc:f8:0d:e0:4d:7a:3d:0d:
ba:f8:20:dd:42:23:61:d2:4a:3f:7e:ec:ea:f9:86:
e2:0d:2b:18:66:8c:ec:72:59:ab:ec:67:8e:86:e5:
72:fa:d0:14:6a:53:2d:1e:e4:39:9a:42:8a:8a:67:
d7:52:8f:61:8e:6d:6d:f1:0c:77:45:05:9a:2d:c2:
aa:fa:59:68:9c:d7:b0:a0:96:d5:12:2f:89:1d:83:
5e:5f:fb:14:a2:e7:ef:b4:1a:c5:cf:2b:41:db:d9:
01:0b:28:21:56:7e:78:b5:c9:9c:bb:18:1f:be:28:
fb:2b:af:c3:05:d3:d7:1c:20:d5:f0:95:a7:6a:dd:
c6:9f:e9:e5:bc:4f:01:7b:0a:58:34:58:61:07:47:
22:3d:93:99:a0:af:4f:87:a5:0f:1f:fc:6b:88:89:
d3:41:78:35:47:92:b8:3b:6d:ec:71:ba:79:16:1d:
1a:b1:5f:f4:25:5f:29:79:1a:57:09:9e:64:fc:94:
de:ef:c4:fb:6d:6a:c1:aa:63:94:9c:61:16:e2:31:
ab:82:b7:64:b5:d2:c0:44:5d:46:c7:35:0e:6b:ad:
c1:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:2E:B9:81:F7:83:6D:14:28:57:EB:7B:82:3D:DD:56:61:F6:2B:75
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Oi65gfeDbRQoV-t7gj3dVmH2K3U.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.24.0/24
Signature Algorithm: sha256WithRSAEncryption
98:e8:d4:80:f1:6c:31:ef:6a:32:b5:f9:76:59:f8:ab:11:22:
bd:07:d5:58:23:84:e4:02:68:0b:48:b7:11:6e:65:1a:66:f0:
10:8c:0c:02:39:4b:85:c1:7e:da:c1:48:30:9d:58:26:fd:7a:
d1:92:39:78:cd:0d:76:5a:a3:43:8d:9a:9c:36:bc:35:28:22:
53:6b:fb:a8:00:2c:f8:d0:66:8a:b2:22:92:a5:e4:ad:f6:9f:
70:6f:fb:d3:d3:3f:59:87:fb:0f:73:01:ce:69:7a:3b:90:b1:
3c:1a:a5:09:82:00:31:7b:44:f7:9b:f6:14:22:79:7a:76:c2:
be:76:1e:5e:e4:99:10:a9:bd:e4:61:c4:78:c3:6b:7b:04:04:
b2:ae:1f:c6:4e:09:32:d5:2a:b2:c5:6a:96:10:7d:85:9a:de:
54:41:5d:9e:cd:15:d1:a2:92:27:50:68:48:5b:e8:a1:af:a8:
b6:6c:b2:4f:d4:e9:21:15:5f:5a:5c:8c:c1:64:7e:d4:86:43:
35:7d:45:fc:ed:02:30:4f:44:e6:d6:e9:de:c0:f7:13:45:63:
ef:82:55:2c:7b:3b:38:9c:d5:0a:35:99:3c:75:4c:85:5e:5b:
b4:78:8c:e6:38:12:3c:f4:a1:ff:3f:13:f4:28:c3:3e:f5:0b:
95:39:f8:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:01 2024 by rpki-client on console-ams.rpki-client.org