Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/QtvGM9nUpoZ70_5GIriC_TqfosU.roa
File: QtvGM9nUpoZ70_5GIriC_TqfosU.roa (raw, json)
Hash identifier: b1Y2Uk1nF18BZx17ThlCZS+TxeXQlDvBi2PLwjPS838=
Subject key identifier: 42:DB:C6:33:D9:D4:A6:86:7B:D3:FE:46:22:B8:82:FD:3A:9F:A2:C5
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0362
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QtvGM9nUpoZ70_5GIriC_TqfosU.roa
Signing time: Thu 01 Jun 2023 17:56:38 +0000
ROA not before: Thu 01 Jun 2023 17:56:38 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.104.36.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 866 (0x362)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 17:56:38 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=42DBC633D9D4A6867BD3FE4622B882FD3A9FA2C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9f:b1:9c:f2:d8:4d:87:76:45:8e:ec:92:10:
2a:f3:23:a4:5a:76:df:9d:62:fd:56:b8:5d:5a:55:
21:28:33:dd:b7:c3:24:92:c2:e0:23:04:ff:49:74:
7d:71:77:80:25:b2:36:83:c6:ee:71:49:94:88:c9:
bf:17:08:65:78:2b:47:1a:f8:9b:5a:e6:2b:85:73:
23:58:3c:13:32:83:da:c4:96:43:18:9a:01:83:d9:
4f:02:9d:52:bc:72:d4:fc:78:37:28:67:62:f5:05:
98:32:1a:80:af:77:92:d0:ef:7f:a1:5a:42:05:82:
6c:7f:8f:be:5c:ea:7d:93:ea:0a:b9:c8:82:1c:fc:
83:47:67:57:1e:63:66:5c:ca:e4:35:fb:46:d1:a6:
70:46:8e:00:63:1a:9e:8d:48:68:a8:32:0a:a9:6d:
00:6f:b9:d6:a4:5e:66:88:37:e6:56:6f:1f:3c:01:
0c:27:3a:9a:9b:d7:4e:db:ad:a1:c9:d5:49:58:e8:
32:45:7b:a0:26:4b:f3:df:c1:10:c6:4c:8d:7d:d4:
d5:03:9d:4d:a8:3c:9a:80:1c:d1:5d:73:1f:26:b2:
44:6c:c3:21:60:6b:d8:52:8a:79:f6:3f:11:c3:88:
22:b9:d4:e6:9b:78:6a:06:5c:5d:b7:c3:f4:61:9c:
32:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:DB:C6:33:D9:D4:A6:86:7B:D3:FE:46:22:B8:82:FD:3A:9F:A2:C5
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QtvGM9nUpoZ70_5GIriC_TqfosU.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.104.36.0/23
Signature Algorithm: sha256WithRSAEncryption
a9:d7:35:83:fb:c6:61:44:39:af:7c:8e:67:46:1b:e1:b5:a4:
cb:d1:d8:d0:73:83:c6:12:db:67:cb:3d:b8:28:51:53:ff:61:
95:f3:b0:42:89:6a:ad:e4:07:f0:23:4e:3c:5a:6d:f4:46:47:
a0:cf:05:f5:a3:28:ac:a9:1d:1f:a4:ae:f5:f5:c3:f7:e5:95:
a5:6d:92:35:25:43:bd:d7:fa:f4:df:56:70:36:b1:07:8b:07:
ef:91:7e:cc:48:02:3c:45:6f:17:c4:57:eb:3c:1b:56:e6:c3:
48:39:32:37:d7:66:af:8f:f1:6a:d8:e6:dd:77:29:ea:64:77:
db:f0:24:0b:d3:75:5c:dd:23:c8:b0:d1:81:9f:a0:23:13:71:
37:d6:a9:cc:a4:da:31:c4:7b:31:a7:18:c2:84:bb:31:29:37:
07:a0:c6:1f:6c:ba:02:c4:38:c4:c0:b8:b1:9a:e1:14:e6:88:
07:a8:ac:83:44:40:b8:21:b1:bd:62:3b:81:4e:dc:88:ff:07:
c7:e2:d5:15:63:bc:03:92:a3:97:69:85:37:68:1a:eb:76:b1:
b5:8e:4d:0b:2c:22:f7:ea:1c:c3:67:7d:f5:31:d2:69:aa:cd:
cc:25:dd:58:1a:f2:91:b3:bd:6c:6b:d7:bf:70:38:ea:6e:11:
8d:d9:f8:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:51 2024 by rpki-client on console-fra.rpki-client.org