Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/UuxW56lPwpORo7w-QsTEiSb8OGs.roa
File: UuxW56lPwpORo7w-QsTEiSb8OGs.roa (raw, json)
Hash identifier: 9e07cwUH2cJDJuvC0nJRGeHEMh0Hg1RAHsDQkdAkhlg=
Subject key identifier: 52:EC:56:E7:A9:4F:C2:93:91:A3:BC:3E:42:C4:C4:89:26:FC:38:6B
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 2B
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/UuxW56lPwpORo7w-QsTEiSb8OGs.roa
Signing time: Mon 27 Mar 2023 16:02:03 +0000
ROA not before: Mon 27 Mar 2023 16:02:03 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.97.8.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43 (0x2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 27 16:02:03 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=52EC56E7A94FC29391A3BC3E42C4C48926FC386B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:5d:e4:9d:ec:dc:bc:95:da:8d:12:d3:a1:e2:
9a:a9:b6:de:bf:62:fa:68:0b:0e:47:e9:9b:9c:d8:
0b:ff:c0:6b:b8:c4:0f:43:8f:7e:1b:a1:ee:7e:44:
c9:75:39:ba:42:ee:17:e2:d1:68:1f:ca:4a:a7:d5:
74:6b:9e:fb:38:23:ce:1f:25:dc:f4:84:eb:54:9d:
cd:23:5a:18:31:18:e8:c6:9a:4a:bd:98:3f:b1:dd:
bb:38:b7:98:bc:15:80:79:30:4e:c6:82:3d:4c:a0:
b6:bd:b2:a4:ed:f6:31:63:d2:80:b5:a5:08:16:13:
07:fa:69:50:4c:ea:65:ed:15:3b:c7:fe:a8:d6:d1:
7a:df:e6:83:23:18:64:7a:6a:ba:a2:ec:73:89:87:
2e:d0:6f:fd:de:e1:45:10:b6:81:73:81:e5:73:1f:
4f:9d:65:55:79:99:91:ba:ed:b4:ee:6b:91:3f:12:
fa:fb:54:f7:08:6c:78:5b:fd:5c:ba:8a:4c:cd:ac:
b2:43:22:32:3a:26:71:37:13:c3:c7:0e:5b:96:da:
d2:1a:6b:a1:32:9d:65:17:09:a2:36:f7:ed:e2:36:
70:b8:59:8c:e5:68:db:c7:35:13:4d:85:12:7c:69:
f4:58:ec:91:19:50:20:5d:cd:4c:a9:e2:bd:b9:bb:
06:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:EC:56:E7:A9:4F:C2:93:91:A3:BC:3E:42:C4:C4:89:26:FC:38:6B
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/UuxW56lPwpORo7w-QsTEiSb8OGs.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.97.8.0/21
Signature Algorithm: sha256WithRSAEncryption
99:b3:24:60:7e:51:c0:33:57:1b:5e:0a:b4:66:ec:51:25:90:
84:e1:da:19:7c:ae:c3:39:fa:02:ad:8a:ca:56:50:97:b5:6b:
9b:6b:2d:dc:89:51:62:86:ca:be:f2:ad:80:c8:29:0e:f4:53:
97:2a:d5:6d:b3:7b:c0:2a:b1:11:67:fc:e6:82:fb:50:cb:fa:
5f:2b:b2:e6:fd:a8:9d:b2:50:3f:e6:4a:6b:6f:f5:e8:80:db:
f1:ff:b1:62:a3:40:9b:84:b0:4e:3a:40:c7:12:07:9b:f8:d7:
94:64:5b:a3:56:8a:dd:a7:8a:1d:a4:af:ed:12:ce:7b:63:a8:
cc:0a:80:dd:95:c2:d5:eb:18:ac:66:06:9b:46:44:b5:d5:22:
f4:13:1f:44:5b:57:02:2a:3a:1b:22:45:9c:e4:13:6d:14:37:
54:a1:21:48:40:21:a8:7a:87:c4:5f:a4:51:a7:28:b6:44:23:
c5:e2:0b:cd:1e:4d:80:ec:ed:ea:92:db:58:c6:88:f3:d2:90:
38:5e:49:de:44:7c:e2:9f:3a:2f:b5:54:55:6a:a6:1d:3a:cf:
02:6a:c6:26:1c:1c:1c:9f:35:c3:7a:89:84:ed:f2:9a:96:a8:
02:d7:e7:11:97:b9:84:47:20:d6:ac:18:2a:bd:7b:3b:ac:bd:
c9:97:a4:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:02 2024 by rpki-client on console-ams.rpki-client.org