Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Z7N5_5Sj22W7epA02ytwXcdZGS4.roa
File: Z7N5_5Sj22W7epA02ytwXcdZGS4.roa (raw, json)
Hash identifier: j4mWi0/lBFUIL8I2ej4rVYOfPRHASvmylNksLHYtM5Y=
Subject key identifier: 67:B3:79:FF:94:A3:DB:65:BB:7A:90:34:DB:2B:70:5D:C7:59:19:2E
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0329
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Z7N5_5Sj22W7epA02ytwXcdZGS4.roa
Signing time: Thu 01 Jun 2023 16:07:27 +0000
ROA not before: Thu 01 Jun 2023 16:07:27 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.98.126.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 809 (0x329)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 16:07:27 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=67B379FF94A3DB65BB7A9034DB2B705DC759192E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:fb:af:52:d9:38:78:92:e4:68:64:63:77:4b:
a0:41:9a:2e:3a:7c:0e:10:3c:ba:7e:48:9d:a9:06:
94:25:64:03:eb:b4:e9:40:48:f9:bf:30:b1:18:8f:
8b:83:6d:54:5e:59:e5:18:67:6d:e8:c6:f5:eb:3c:
3e:4e:55:9a:81:f5:11:14:e2:57:05:28:dc:63:10:
f0:44:22:78:f3:a8:aa:54:4b:92:7e:44:cf:9f:f1:
2a:53:c7:ff:47:b5:ca:76:27:5a:cf:67:72:a0:8f:
54:1c:9a:e6:e8:39:45:59:92:d9:16:35:e3:73:e5:
1a:41:76:6c:e7:d4:03:dc:8f:dc:d5:40:75:65:54:
64:36:42:1a:c1:b0:19:1e:97:00:71:ab:37:73:94:
e0:2d:cf:22:ec:51:2e:39:97:be:23:ea:14:d1:a6:
64:4a:a3:a3:4b:85:b9:4f:0a:d9:6e:96:60:f1:20:
65:b9:2b:46:96:11:f8:06:24:cf:86:e9:5e:b4:1a:
d8:f1:6e:da:c6:af:21:ad:fa:0f:f3:36:84:8c:57:
4e:03:50:18:23:90:60:b1:26:ec:1c:ee:08:9f:81:
c6:c0:b2:0e:67:ef:9b:6b:b3:e7:1f:ad:96:2f:c9:
36:87:1c:1f:be:5d:0a:cf:6f:ad:41:f8:8f:05:71:
33:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:B3:79:FF:94:A3:DB:65:BB:7A:90:34:DB:2B:70:5D:C7:59:19:2E
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Z7N5_5Sj22W7epA02ytwXcdZGS4.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.126.0/23
Signature Algorithm: sha256WithRSAEncryption
7b:39:37:2d:a8:08:20:63:c2:99:ff:eb:f6:a0:2a:d3:04:d6:
55:95:4d:ca:ad:8b:c8:c8:13:94:bb:08:9f:c0:de:9d:d5:2c:
36:4b:d0:ee:94:80:7c:2b:e9:49:c6:ee:6f:d2:ee:3f:65:60:
d1:b4:de:c6:23:64:34:91:21:0a:59:a9:73:5c:49:38:94:73:
13:65:3a:fd:99:37:58:2e:95:7f:ef:22:c5:ec:89:66:11:77:
71:e7:3c:0a:2e:eb:ab:d7:83:6f:96:c3:1e:0d:c5:cb:c7:99:
6c:c1:38:32:bb:d3:f9:00:a3:2e:53:0e:89:52:c6:e0:32:b6:
03:dc:29:58:e6:a6:bc:bf:07:0d:76:bf:18:fc:1c:2c:83:5b:
6c:5c:ed:a9:6a:ca:bd:df:ab:81:81:38:73:a4:14:26:ef:5b:
06:f5:18:83:35:4d:78:18:03:42:ec:e5:9f:95:ed:84:68:40:
29:e0:8d:c5:e7:2b:43:f1:db:48:9e:27:c6:10:3c:c1:3d:9a:
0b:df:25:b3:f8:2b:c1:87:3e:a6:2e:d9:46:3e:42:10:ab:fa:
5c:db:4a:84:94:ef:67:5b:b7:bf:04:f8:48:79:8a:93:2e:e0:
67:a4:c0:89:9d:32:6c:4d:f3:47:a0:5b:70:23:8e:62:94:3f:
d6:98:da:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:02 2024 by rpki-client on console-ams.rpki-client.org