Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/TmM4n37dHpo-ZHZnQXAYbsjpItI.roa
File: TmM4n37dHpo-ZHZnQXAYbsjpItI.roa (raw, json)
Hash identifier: PsIvQnfvWdmdbgBKwFAY8X3cX690JRQAQ5YOL2JO05s=
Subject key identifier: 4E:63:38:9F:7E:DD:1E:9A:3E:64:76:67:41:70:18:6E:C8:E9:22:D2
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: B6
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/TmM4n37dHpo-ZHZnQXAYbsjpItI.roa
Signing time: Wed 29 Mar 2023 16:05:54 +0000
ROA not before: Wed 29 Mar 2023 16:05:54 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.98.200.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 182 (0xb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 29 16:05:54 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=4E63389F7EDD1E9A3E6476674170186EC8E922D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:f8:bb:52:66:05:7b:3d:66:a3:c6:57:7b:1c:
21:d1:7d:9e:6a:a3:7b:27:ad:f7:81:40:91:bb:79:
60:6d:ec:11:b8:8c:99:57:96:4f:30:74:11:f8:4a:
bb:4c:65:b1:e7:f8:35:b3:54:3b:2f:20:8d:7e:57:
21:09:53:66:25:0c:9e:98:4e:c8:f8:fa:93:03:b5:
d7:56:37:32:b7:b6:a8:38:54:af:66:6a:d4:28:a2:
d3:be:e1:5d:19:f8:38:32:a2:ac:04:ab:7f:54:68:
b9:56:95:ec:68:da:f7:5a:2b:0d:19:96:e6:0f:32:
c3:5c:e4:80:d3:80:94:02:18:a8:d9:31:01:68:7e:
fa:76:65:db:d0:d0:d0:89:a9:59:e2:af:45:5a:fd:
55:29:8b:c4:3f:d8:1f:85:49:5f:15:dd:84:51:ed:
55:99:fe:f3:12:af:be:a8:e3:7e:97:ef:78:c6:f6:
97:e8:d0:05:d9:21:5f:2c:13:d1:68:e2:1e:ce:84:
54:23:7f:53:62:68:0d:14:60:64:08:1c:b6:ca:c7:
d9:c0:18:82:f2:12:81:c7:ce:90:e0:04:a5:29:c3:
74:94:98:1e:0e:2a:80:55:98:90:ae:1b:e9:1b:01:
64:ed:c8:da:5e:26:5f:14:c4:99:98:7c:d5:6b:79:
3f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:63:38:9F:7E:DD:1E:9A:3E:64:76:67:41:70:18:6E:C8:E9:22:D2
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/TmM4n37dHpo-ZHZnQXAYbsjpItI.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.200.0/22
Signature Algorithm: sha256WithRSAEncryption
b5:e3:52:fa:9a:2d:5e:53:4c:82:10:11:81:7e:0c:4d:40:22:
e4:52:16:a4:de:3f:98:23:01:bd:3a:0c:54:e4:eb:b5:7b:f2:
a6:45:d0:06:25:50:17:83:02:46:bd:a3:18:1b:b0:69:af:4e:
02:ef:51:b8:3c:be:17:2a:62:4a:bb:3d:0b:aa:17:4b:e0:de:
5d:4d:da:4f:ea:b5:ec:4c:87:b4:e5:ac:18:4a:4e:55:9b:c8:
4e:aa:d6:71:c5:0b:dc:d2:7d:ce:dc:5b:84:42:db:bc:10:ed:
45:e5:82:98:1d:52:d1:62:c2:bc:22:6f:0f:01:b5:c3:16:05:
43:cd:50:88:53:1e:ec:e0:4f:16:99:3b:23:cf:65:64:56:d6:
31:6c:6a:c8:37:87:37:f8:65:5e:9a:42:51:b4:84:e4:22:17:
ea:ce:d8:34:2d:3d:b4:ec:67:92:9b:12:af:d6:3d:d1:68:ed:
bb:e1:8c:63:94:df:a0:47:91:2a:c8:2f:cc:36:40:db:50:05:
bd:eb:d0:1e:fc:6a:2a:11:11:c9:28:20:a6:d8:95:91:55:5b:
8c:86:2d:f1:da:c5:20:76:02:da:19:c4:68:55:4c:82:7f:a0:
fa:b7:76:4e:b4:c7:98:93:6e:d5:4b:2a:4b:b0:6e:6f:a0:73:
a5:79:5d:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:51 2024 by rpki-client on console-fra.rpki-client.org