Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/a2R7B3MaQKdqO6yXuKSTTwI5o4w.roa
File: a2R7B3MaQKdqO6yXuKSTTwI5o4w.roa (raw, json)
Hash identifier: OHJxNo7FnX/RUlvFCfHmAWTzF0KZRm4hZOhwlNUWvs8=
Subject key identifier: 6B:64:7B:07:73:1A:40:A7:6A:3B:AC:97:B8:A4:93:4F:02:39:A3:8C
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 039F
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/a2R7B3MaQKdqO6yXuKSTTwI5o4w.roa
Signing time: Thu 01 Jun 2023 17:59:30 +0000
ROA not before: Thu 01 Jun 2023 17:59:30 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.104.224.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 927 (0x39f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 17:59:30 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=6B647B07731A40A76A3BAC97B8A4934F0239A38C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:73:e1:12:78:64:e6:92:35:ac:9c:8a:02:b6:
5d:01:e4:2e:8c:e6:f7:f2:6a:d6:a1:a7:d3:e6:9d:
9a:d4:e2:2f:a2:87:da:63:54:84:e0:44:89:a8:27:
b8:47:5c:ce:f7:c2:7c:53:ff:9c:a6:bb:06:22:09:
54:55:d7:f6:d8:4d:69:9f:1a:b1:8e:8d:1d:e0:86:
d3:72:c3:40:05:b9:b6:ee:c3:52:9f:27:52:2d:2c:
4b:c3:6f:aa:64:8f:60:3e:85:4a:31:75:ff:d5:80:
c7:30:2e:39:45:30:1a:d2:db:b0:f9:02:dc:ac:59:
37:60:dc:65:a3:34:ea:84:ae:f2:cd:ca:25:cc:4b:
cb:ca:a2:9b:ab:c0:ef:96:96:a4:07:9d:50:cc:42:
e6:1c:61:86:31:d4:7b:ed:c2:d9:a1:73:a7:e8:7a:
1d:14:81:79:5f:47:c8:2d:96:d7:b0:fe:b2:f8:ef:
86:9d:41:90:16:ec:33:37:d5:bd:95:c0:df:dd:b2:
3a:2e:4d:c9:dc:78:2d:c3:90:96:cf:ec:b3:c7:62:
18:03:f2:04:dd:d9:48:9b:44:1b:52:b4:a5:11:41:
c4:b6:c8:53:09:e5:e7:cd:81:8b:f9:68:4f:ad:fe:
b6:b2:98:3e:28:a5:91:93:34:fd:67:b5:5b:89:e0:
59:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:64:7B:07:73:1A:40:A7:6A:3B:AC:97:B8:A4:93:4F:02:39:A3:8C
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/a2R7B3MaQKdqO6yXuKSTTwI5o4w.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.104.224.0/20
Signature Algorithm: sha256WithRSAEncryption
ce:6b:51:d0:a1:38:51:17:6d:0b:08:b6:9e:67:b7:51:b1:cc:
7d:99:2b:f3:91:cc:9e:60:79:6f:68:61:0a:56:6f:2b:67:c5:
53:e2:c7:50:bd:52:26:83:9f:f5:e0:ea:c8:81:b8:8e:3f:3b:
84:27:a7:24:ad:9e:da:eb:80:60:64:d8:b3:34:71:b5:54:fd:
70:88:13:7c:6c:d3:42:57:4c:d6:82:cd:ce:3c:7e:98:76:c7:
a4:42:c1:62:2c:ca:02:25:23:a3:f4:aa:29:97:ba:ab:62:68:
a3:9c:88:55:1d:61:97:e4:78:6d:58:20:2c:be:5a:75:c1:c4:
5f:0a:f4:e8:1d:0e:86:d7:c8:ca:8b:cf:e0:b5:6a:5e:cd:f7:
72:b8:62:89:06:81:89:ca:67:19:84:b7:32:4f:75:05:36:8b:
ec:35:59:f8:d1:6b:01:9c:63:7a:64:46:2d:00:1a:72:59:ec:
67:05:9a:cd:3d:b7:c5:45:95:f2:a3:40:c2:38:77:21:67:1d:
0c:2b:64:fd:43:27:b5:50:61:4f:17:d4:24:b4:17:60:4c:0a:
6e:14:f5:39:17:89:77:61:fa:89:57:bb:6c:fd:89:b1:8d:39:
b6:03:fa:59:9e:09:e8:34:a1:09:7b:73:33:92:16:3f:fa:28:
93:8f:59:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:02 2024 by rpki-client on console-ams.rpki-client.org