Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/RiyDCD3C7ot275pxCTZU2JT2kgg.roa
File: RiyDCD3C7ot275pxCTZU2JT2kgg.roa (raw, json)
Hash identifier: NypmFBLSM8fqzHeFhiwHz6puT0zMadZ0HRS5jZaJ07c=
Subject key identifier: 46:2C:83:08:3D:C2:EE:8B:76:EF:9A:71:09:36:54:D8:94:F6:92:08
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 03F1
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/RiyDCD3C7ot275pxCTZU2JT2kgg.roa
Signing time: Tue 06 Jun 2023 16:03:47 +0000
ROA not before: Tue 06 Jun 2023 16:03:47 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.104.192.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1009 (0x3f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 6 16:03:47 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=462C83083DC2EE8B76EF9A71093654D894F69208
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:96:2d:f5:ce:4d:69:41:cd:b0:be:a0:08:99:
dd:dd:0d:c9:26:c3:39:bf:5b:4f:35:f5:71:3f:1a:
ab:3d:ce:fa:08:81:05:06:59:75:c4:e2:d3:4d:0c:
be:3d:5e:3a:39:e3:b2:e4:15:f6:cb:fa:f9:f2:f2:
30:c3:f4:a4:3e:bc:be:4c:d9:16:8d:8f:93:f6:f8:
85:06:cc:b4:b3:86:5d:ff:92:ec:dc:d8:9a:b9:98:
1a:a4:72:e9:08:0b:f7:52:b6:20:5b:52:14:8a:ef:
2d:39:10:d2:bf:5f:88:37:2f:c6:a0:d8:a8:ea:50:
f8:10:26:0c:5b:30:33:90:9e:c3:ed:4e:a3:d6:06:
9c:a0:fb:09:43:60:20:25:c1:91:24:fe:e0:d0:9a:
4b:d5:92:5c:a2:5b:2e:69:10:e2:9b:db:0c:b9:48:
f3:71:ea:21:df:03:2e:8a:96:e5:9c:eb:b7:0a:37:
05:15:e2:cd:c2:74:28:56:c0:36:8b:1d:5d:ac:66:
71:17:50:66:0d:ac:a1:57:4d:f4:64:dc:35:6b:0e:
cb:c7:aa:d0:33:25:ca:01:b8:a9:a9:3a:70:8c:a3:
9a:d9:49:a4:ac:53:b1:09:13:f8:21:1e:12:b3:7f:
ad:5e:53:d0:98:b6:ca:3a:ad:4b:80:4e:82:5c:19:
55:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:2C:83:08:3D:C2:EE:8B:76:EF:9A:71:09:36:54:D8:94:F6:92:08
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/RiyDCD3C7ot275pxCTZU2JT2kgg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.104.192.0/19
Signature Algorithm: sha256WithRSAEncryption
bf:88:e0:88:ae:54:88:17:1a:72:de:78:a5:8c:ef:bb:d3:db:
71:0c:88:88:88:91:0c:4a:5d:60:c0:68:c1:d9:95:41:2f:b6:
f2:91:3a:fa:a3:e9:40:32:7a:1c:4d:82:3c:e9:bb:6a:a8:b8:
cb:f7:6c:98:0d:12:83:ad:68:a3:7d:dc:5d:81:4b:fc:1e:1a:
4c:ab:fa:d5:a5:fe:c2:6c:6e:0b:a3:eb:ba:28:d8:6e:55:bf:
18:4b:89:e0:a0:4e:6d:e3:6f:da:f4:60:47:ec:a8:85:25:69:
ad:ef:4b:95:e3:64:8f:c3:8b:44:c4:97:08:4a:5b:1b:82:62:
09:e4:9f:d8:fc:ff:b5:1a:cc:11:d9:24:dd:a7:3c:66:e7:1b:
d3:22:e5:27:2c:a8:95:20:e7:58:bf:0e:18:a4:23:3f:99:9d:
61:74:ec:4a:a6:58:b8:29:2f:26:c7:99:a0:a1:14:7b:ff:30:
29:b3:bb:f0:98:6a:1e:f4:30:12:42:c6:a0:10:9f:06:56:7b:
e2:71:c5:2e:c3:07:f7:48:7f:64:81:32:ee:3b:da:f3:20:16:
73:6a:7a:01:87:20:dc:dd:46:67:91:2c:28:03:a3:78:2e:10:
a5:b4:7c:16:70:b4:61:d7:8e:ef:6f:4f:d1:68:b7:7b:18:61:
6c:78:16:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:01 2024 by rpki-client on console-ams.rpki-client.org