Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/UoQa-c91p9F9YePiX5oNZhDrNKs.roa
File: UoQa-c91p9F9YePiX5oNZhDrNKs.roa (raw, json)
Hash identifier: dlSBUB+wuifY5QKIVi/Btn0fUQu7w+JYbfFULo3RedA=
Subject key identifier: 52:84:1A:F9:CF:75:A7:D1:7D:61:E3:E2:5F:9A:0D:66:10:EB:34:AB
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 033B
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/UoQa-c91p9F9YePiX5oNZhDrNKs.roa
Signing time: Thu 01 Jun 2023 16:07:35 +0000
ROA not before: Thu 01 Jun 2023 16:07:35 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.98.120.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 827 (0x33b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 16:07:35 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=52841AF9CF75A7D17D61E3E25F9A0D6610EB34AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:07:30:5c:ab:35:a7:7f:b9:6f:1d:1c:23:f3:
2c:a8:a7:d6:7f:62:fc:e9:45:2f:75:d7:11:1b:35:
fa:db:64:da:97:d2:f0:25:41:af:a8:54:52:6f:59:
0b:40:4e:d8:50:f2:2c:d0:6e:44:83:e5:2a:3a:8e:
bd:3a:77:11:ab:ea:4d:54:d5:e4:28:91:a0:47:19:
ac:b8:94:d6:c5:50:b0:9b:59:42:98:bc:9f:2f:7c:
fd:5e:9f:44:8a:5d:b3:c8:09:b2:4b:84:b9:c0:1f:
36:d7:9b:5e:b4:5b:0d:08:d0:85:2b:97:17:ea:8a:
81:74:c0:ef:f5:c9:46:84:b6:c8:44:b1:67:f1:8a:
e6:2c:fd:14:b9:27:c4:f4:09:13:2d:ca:3b:97:18:
3d:e3:cd:a1:05:2e:37:0a:40:60:19:ef:c9:3d:90:
4d:bf:5c:0e:64:d6:e6:ef:41:26:cd:0f:3c:f9:16:
f3:cf:24:e9:0d:9a:a7:6c:6d:d1:8d:53:fd:bb:e2:
d3:4c:43:5e:cb:95:9b:18:5f:03:da:fb:10:63:f4:
c8:a1:39:54:98:99:19:4c:8e:c0:ae:da:fd:52:37:
7d:4b:8e:a1:0e:67:8a:9e:22:81:45:54:b0:fe:21:
46:3d:c8:b7:d3:87:b7:ad:dd:c4:b6:0c:35:f9:c5:
16:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:84:1A:F9:CF:75:A7:D1:7D:61:E3:E2:5F:9A:0D:66:10:EB:34:AB
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/UoQa-c91p9F9YePiX5oNZhDrNKs.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.120.0/23
Signature Algorithm: sha256WithRSAEncryption
a6:f7:0a:5a:0e:bf:40:51:cc:f9:29:24:7f:c4:93:3b:97:3d:
64:e8:fa:7b:32:e9:9b:74:2d:8f:24:3e:f7:2a:c1:10:69:c1:
9d:61:f0:b3:4d:5d:d0:e0:4c:03:6a:74:87:ff:2c:77:fa:c2:
c0:a5:86:65:42:80:a5:04:6c:de:25:ce:d6:a5:af:14:6a:c1:
01:09:3f:dc:32:f3:cf:12:82:56:28:7a:1e:1e:af:f7:3a:dc:
bb:5a:bd:07:3f:27:05:a6:1d:1a:f7:d7:23:ed:39:f1:41:a5:
1e:e5:4e:5f:97:e4:09:2c:54:18:f7:48:54:ee:e4:72:8d:42:
0e:d2:d7:fb:c3:8f:08:95:47:17:8d:97:c4:39:eb:36:0a:4b:
89:a1:18:ab:38:9b:04:f9:a9:d6:37:3e:02:fa:06:b6:90:1f:
4c:df:35:a0:04:a3:d4:f7:61:01:d5:f1:58:44:7a:e6:ea:fa:
db:62:a3:1a:ee:51:97:bd:3c:20:c7:5b:27:52:1d:8c:3e:88:
10:07:f3:fa:5a:62:ee:3e:f3:40:07:1d:ee:31:ee:de:dc:02:
e1:ea:ec:51:8f:a1:45:69:f8:0b:7c:e4:88:5c:3f:a1:a8:7f:
b5:31:2b:68:f5:c3:89:1e:16:af:ec:ca:01:0c:41:b4:12:a1:
dc:43:02:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:01 2024 by rpki-client on console-ams.rpki-client.org