Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/_cHYq4wPYiWSXCNdoRSXe3CmGEQ.roa
File: _cHYq4wPYiWSXCNdoRSXe3CmGEQ.roa (raw, json)
Hash identifier: oDAmU9vBajY33I9trhCTghBdj31rxsfz+y86NGx01eQ=
Subject key identifier: FD:C1:D8:AB:8C:0F:62:25:92:5C:23:5D:A1:14:97:7B:70:A6:18:44
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 012B
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/_cHYq4wPYiWSXCNdoRSXe3CmGEQ.roa
Signing time: Wed 24 May 2023 16:30:20 +0000
ROA not before: Wed 24 May 2023 16:30:20 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.106.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 299 (0x12b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:30:20 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=FDC1D8AB8C0F6225925C235DA114977B70A61844
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:23:31:e8:c3:98:08:81:f5:dc:b9:d9:59:fb:
c6:c0:3b:87:b2:5a:0c:e0:e9:e2:5f:cf:15:3b:a2:
e2:e9:37:61:3f:dc:13:d0:e1:9e:5f:8c:dd:bf:c9:
de:ab:a1:1a:22:19:38:8a:d1:26:cd:a3:a3:6e:4d:
fd:de:dc:6e:a9:49:76:b0:45:75:b1:e6:16:9c:47:
1c:bc:56:e3:c4:6f:ec:9f:d2:af:6d:04:1e:00:d0:
4d:0f:97:7a:c9:0e:b9:22:96:ca:98:94:09:b2:84:
d3:5f:fb:8f:9f:86:f6:11:41:25:86:41:1f:b1:9e:
b6:5e:9a:43:6e:83:15:52:2c:a3:93:af:8f:9e:b6:
cd:c4:b8:4b:49:56:86:63:72:59:1a:54:f3:d7:26:
91:50:3f:29:f6:66:45:67:10:70:3e:78:92:1f:08:
82:06:9e:89:c6:34:0b:08:fd:df:a3:2f:e8:ed:0e:
66:f3:de:0b:17:74:25:c1:c8:45:9c:ab:dc:4c:d1:
fc:f6:11:4f:97:ae:f0:dc:2f:84:0e:7f:fb:27:9c:
45:be:22:dd:af:48:9b:0d:e9:32:b2:13:9a:24:8a:
3d:9f:2d:6d:bf:ed:0c:4d:bf:5f:c3:ad:df:40:cb:
60:fa:37:17:ab:a1:47:0c:f4:03:91:ae:ec:56:95:
71:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:C1:D8:AB:8C:0F:62:25:92:5C:23:5D:A1:14:97:7B:70:A6:18:44
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/_cHYq4wPYiWSXCNdoRSXe3CmGEQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.106.191.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:6b:87:14:f4:b6:35:88:05:95:61:f8:88:b8:3c:98:cb:24:
e5:49:bb:fd:2d:25:24:c5:2f:51:87:a4:af:54:0b:89:0d:74:
84:26:69:49:7e:39:08:bd:23:93:1a:60:e6:9c:9c:36:a1:69:
55:2c:6b:f9:62:44:20:b5:bf:08:f2:eb:80:61:39:a3:d3:a9:
fa:a8:eb:a9:bb:6c:42:80:bb:b6:79:1c:18:a8:58:ac:18:29:
39:7a:8e:9f:f4:51:18:ac:49:6d:bf:df:b2:54:af:4d:44:25:
97:4f:9c:c8:7a:c4:33:7b:c4:28:a5:9a:ab:fb:e5:0b:a6:54:
a9:e1:20:96:21:8c:54:0f:67:da:a0:d0:04:f2:ca:a3:43:df:
c2:96:27:e4:76:e9:56:17:e9:0f:72:a7:7d:95:c0:70:96:25:
0a:c2:04:7c:20:46:5c:cf:f0:52:04:73:fa:f8:2e:ab:ea:ff:
b2:9d:d6:b4:f7:44:bc:f7:ab:49:93:c9:40:e6:9c:1a:6f:ce:
b7:ab:24:89:24:10:6c:d7:a9:e6:b4:ac:fd:a6:b8:5a:54:3f:
6f:43:a8:d0:84:23:c9:36:23:46:8a:b0:51:b4:01:25:ec:3c:
59:4c:0f:9e:d8:8d:64:0e:f7:6d:10:74:11:ed:18:8c:c2:9f:
aa:f9:b1:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:02 2024 by rpki-client on console-ams.rpki-client.org