Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/YyUUeyxRsEJpILNd_8umVczAAl8.roa
File: YyUUeyxRsEJpILNd_8umVczAAl8.roa (raw, json)
Hash identifier: 02tl48N9PEnYXQGxvwOuMW/JvX8sxGfAnq2DC9mowfc=
Subject key identifier: 63:25:14:7B:2C:51:B0:42:69:20:B3:5D:FF:CB:A6:55:CC:C0:02:5F
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0378
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YyUUeyxRsEJpILNd_8umVczAAl8.roa
Signing time: Thu 01 Jun 2023 17:57:32 +0000
ROA not before: Thu 01 Jun 2023 17:57:32 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.106.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 888 (0x378)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 17:57:32 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=6325147B2C51B0426920B35DFFCBA655CCC0025F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:22:09:29:d3:46:3f:a9:54:a9:67:f8:f1:24:
5b:a9:5e:ed:98:ac:7f:f5:91:9b:a1:15:7b:a3:ef:
09:e7:a0:b7:bb:c5:ef:18:1c:1d:a5:20:37:47:5e:
79:58:3a:5f:a8:32:2f:c3:89:51:4f:20:81:eb:74:
e9:7f:4e:fa:cf:13:43:dd:84:a5:2f:4f:64:93:10:
c2:9e:11:da:07:7d:49:c4:68:e1:50:3a:82:b3:76:
0c:e0:36:7f:9f:fd:d2:e9:91:45:1b:28:0a:c0:f6:
fb:92:1f:b2:f8:51:8b:6b:96:6c:b3:58:39:ff:e7:
54:a6:82:7e:89:05:62:b5:12:f5:9b:3f:4d:38:ee:
0d:80:a6:f0:0e:06:b7:8e:f4:da:13:f9:c0:de:e9:
20:66:d7:7c:a0:27:e5:57:da:33:68:6a:82:94:8e:
dc:9a:74:72:19:4f:8d:b8:4e:9d:d7:f7:59:90:8b:
6a:50:af:20:0f:02:d4:f5:81:60:b4:8c:6c:42:07:
e4:30:b7:62:94:3f:1d:69:5b:11:ca:25:41:74:64:
48:a1:d6:96:c3:88:8a:75:e2:24:87:e1:53:a9:c5:
11:1c:34:90:c7:e9:23:5c:68:9a:76:c2:55:80:18:
43:85:c6:1c:5c:5f:75:43:6c:45:37:65:05:b5:2a:
a9:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:25:14:7B:2C:51:B0:42:69:20:B3:5D:FF:CB:A6:55:CC:C0:02:5F
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YyUUeyxRsEJpILNd_8umVczAAl8.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.106.171.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:83:39:b5:03:6f:13:5b:7a:a4:fa:3f:7d:c8:8b:a0:b7:2d:
1d:38:bd:c7:84:e0:8c:06:36:43:9b:6f:ee:fd:51:7f:da:ce:
21:f5:58:46:c4:cf:88:96:1e:b8:13:7b:9a:b5:2b:b1:ac:4a:
c9:7e:77:f5:4d:53:97:f3:2c:1d:7d:d5:b8:9a:7c:cc:5b:29:
a6:6d:0e:09:9b:02:75:4c:dc:12:16:cc:31:16:1b:cc:c0:b3:
8d:dd:9d:38:5a:e3:2a:b5:79:7f:65:d8:c9:b7:06:11:8f:d0:
0b:c5:78:1a:c7:ee:1b:e1:20:bd:ea:29:7d:a8:80:36:c5:d5:
2b:08:e3:05:6f:71:f2:f1:f1:9c:dc:f6:f6:2b:de:72:f9:0c:
b9:8d:90:80:ad:e1:64:dd:5a:99:eb:18:2f:4a:01:eb:56:9c:
21:db:bd:4c:e6:7d:23:2b:6d:78:45:f4:db:e1:b2:16:d4:28:
e5:35:55:e4:9a:10:5a:12:9b:ee:a2:89:a9:db:c9:2a:5e:4c:
39:95:70:97:b3:f3:e8:e7:b5:f8:e7:12:21:25:28:a4:53:cb:
e6:6b:34:26:b8:f8:ed:71:53:0b:b4:3a:9b:0a:f7:b9:b7:aa:
96:16:83:f7:3b:14:fc:26:ce:21:5f:da:29:0d:61:50:85:f6:
e5:cf:a6:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:12:37 2025 by rpki-client