Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZJoM99G6U5Lo9w-PwYCOnoVDPCg.roa
File: ZJoM99G6U5Lo9w-PwYCOnoVDPCg.roa (raw, json)
Hash identifier: 9zfxRVkCsJPUFO37Gc6WNAvijb4BYpNQmpYjFDowjh0=
Subject key identifier: 64:9A:0C:F7:D1:BA:53:92:E8:F7:0F:8F:C1:80:8E:9E:85:43:3C:28
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: A6
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZJoM99G6U5Lo9w-PwYCOnoVDPCg.roa
Signing time: Wed 29 Mar 2023 16:05:48 +0000
ROA not before: Wed 29 Mar 2023 16:05:48 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.98.136.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166 (0xa6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 29 16:05:48 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=649A0CF7D1BA5392E8F70F8FC1808E9E85433C28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:cd:f9:fe:e0:aa:1a:89:bc:8e:2c:72:16:b2:
d1:cf:aa:6b:82:1b:73:b8:d6:34:d6:c7:5e:03:4f:
c2:54:be:a2:ea:9f:8e:71:8e:10:62:ac:78:61:6f:
1e:0d:11:05:b0:64:72:bd:2e:0b:f2:4f:78:14:e8:
6b:f9:4f:8c:47:40:22:32:71:e8:07:f7:9a:bf:e6:
c3:61:de:10:d4:c0:83:1f:0e:c7:1f:10:5e:e2:66:
90:82:1a:66:53:fc:5d:9c:81:0c:7d:62:77:e4:56:
27:d0:76:53:c6:44:bc:82:33:7b:6a:0e:2e:f6:2d:
a7:bb:ba:aa:ed:b8:d5:2b:19:74:e8:1e:c6:88:e7:
0c:ed:cb:0e:df:d5:7e:77:c6:99:84:1e:24:d2:d1:
c9:e2:d9:41:a7:39:d4:21:12:75:32:ea:9c:25:1a:
b6:e6:c8:23:37:f7:8a:f1:90:c7:bf:8e:1e:49:6d:
d5:17:e7:78:d1:c9:ab:63:14:ef:e8:41:23:8e:37:
bd:58:d9:23:0e:75:00:bf:01:77:9d:86:51:24:52:
87:89:62:82:df:d4:b5:33:31:79:d0:4b:84:bd:0f:
ad:fd:36:04:b5:a5:33:87:57:d1:15:e5:a9:b4:ed:
5e:d2:1c:12:13:40:98:04:65:5c:f5:88:eb:8a:d3:
e7:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:9A:0C:F7:D1:BA:53:92:E8:F7:0F:8F:C1:80:8E:9E:85:43:3C:28
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZJoM99G6U5Lo9w-PwYCOnoVDPCg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.136.0/23
Signature Algorithm: sha256WithRSAEncryption
44:14:e2:fb:4e:4e:95:67:43:f7:b0:a2:6e:70:de:f0:8c:35:
0b:a7:98:8d:9b:f2:96:0a:fd:69:0e:c6:bb:e0:68:4c:e1:eb:
5a:48:c5:f5:27:01:ea:04:04:94:75:f1:71:47:08:aa:e6:02:
d4:d3:52:9c:84:6e:24:4f:3a:40:f9:9f:0e:7f:18:91:27:22:
df:b7:2f:89:7f:74:6d:c2:a8:44:bd:33:61:55:cf:94:20:a0:
1b:0c:66:74:ca:59:03:34:c4:dc:85:ba:3d:6a:90:45:87:20:
c5:95:e3:1f:b3:aa:13:1f:e3:44:fe:ea:a5:e1:48:16:77:d2:
cc:27:77:bd:bc:5d:71:8f:86:48:d6:8d:a9:1c:b9:f6:ad:82:
63:40:f7:3a:d7:57:94:ef:c0:d0:29:e3:08:09:e5:55:26:26:
ce:c2:b9:ba:9c:b6:f9:cf:c8:0c:ca:d5:f8:2e:2d:8c:56:52:
45:3f:76:4b:59:47:ef:73:68:62:76:8d:23:52:55:7b:3a:31:
a5:9b:a3:46:4e:cd:f8:f8:d2:81:b0:8f:c3:7b:11:7e:48:0f:
41:40:d1:4b:d9:1f:68:fd:fa:ed:af:3d:2c:b3:bd:13:a0:58:
0d:92:76:e0:36:9a:ed:f6:b7:f6:41:75:78:a0:a6:a0:eb:0b:
96:ac:48:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:02 2024 by rpki-client on console-ams.rpki-client.org