Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/bFsDddC84sr-Z-H1C_FYhXovDfo.roa
File: bFsDddC84sr-Z-H1C_FYhXovDfo.roa (raw, json)
Hash identifier: x9fv3DK+ChUDl6Lh1SAzgybRfFYB7scGyjqwF5TM2mU=
Subject key identifier: 6C:5B:03:75:D0:BC:E2:CA:FE:67:E1:F5:0B:F1:58:85:7A:2F:0D:FA
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 041D
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/bFsDddC84sr-Z-H1C_FYhXovDfo.roa
Signing time: Tue 06 Jun 2023 16:09:02 +0000
ROA not before: Tue 06 Jun 2023 16:09:02 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.106.214.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1053 (0x41d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 6 16:09:02 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=6C5B0375D0BCE2CAFE67E1F50BF158857A2F0DFA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b4:46:fa:8b:40:0d:b1:20:02:1f:5d:21:b8:
ff:41:18:89:df:33:93:af:87:17:86:c8:5a:45:32:
e4:3e:56:7a:fe:70:ba:7c:56:14:a4:3e:72:08:93:
c5:67:2d:5d:bc:c0:34:b4:a5:7e:a7:20:f3:14:7c:
5e:ae:da:d9:5e:c9:3a:f2:f0:3b:a8:be:a1:93:b0:
62:f2:4d:dc:f9:46:68:d0:6e:8c:bc:9d:de:47:8c:
5b:42:82:49:a4:f1:95:02:a1:30:bd:da:93:a0:f9:
61:f1:5d:23:fb:9e:df:71:58:2c:7b:a5:74:1d:cd:
bb:88:dd:b0:67:f5:1c:26:c3:a6:6a:b6:5b:ef:a9:
31:09:36:92:7d:4c:ae:07:c1:1a:cf:15:ca:59:6f:
0d:4c:82:df:60:1f:c1:ab:91:00:5c:8c:b5:30:8f:
15:9c:67:a8:2e:9d:a1:70:b8:00:27:d4:65:75:54:
27:aa:b6:cc:36:44:3a:ca:61:ea:43:de:72:68:82:
5a:ac:37:17:e7:f2:70:ce:e8:59:12:d4:ac:13:5c:
85:ff:06:36:93:ff:e6:c2:14:58:4a:e1:d9:c6:46:
7d:6c:73:00:22:16:d6:18:8b:b3:42:a6:cc:e1:f5:
55:5c:74:20:5e:43:a1:c6:01:28:73:8a:4e:af:c2:
40:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:5B:03:75:D0:BC:E2:CA:FE:67:E1:F5:0B:F1:58:85:7A:2F:0D:FA
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/bFsDddC84sr-Z-H1C_FYhXovDfo.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.106.214.0/23
Signature Algorithm: sha256WithRSAEncryption
b3:75:8c:e6:c5:c1:df:e4:68:18:e1:1b:4b:38:03:e8:f1:98:
20:ea:03:31:25:b7:d6:4e:e5:c9:2f:dd:38:4a:96:3d:79:d4:
4e:a6:b8:15:44:43:af:13:63:2d:ed:08:9e:3d:f1:e1:5d:d8:
86:c7:12:7c:24:cf:d9:ef:49:e4:0c:02:61:30:50:88:4c:51:
f1:12:2b:ff:47:0d:25:d0:66:51:8d:d1:d8:6a:bd:ad:93:64:
fe:20:df:b2:cd:41:a7:0d:5f:66:e5:26:f3:f4:69:39:d2:25:
65:05:07:e6:5e:4e:77:07:11:69:72:33:31:0b:86:de:fa:7e:
c1:bc:79:0e:03:7e:fd:38:da:5a:7c:48:9e:80:07:9a:39:cb:
ad:43:81:c4:94:55:91:9b:29:5a:35:97:3e:fe:cc:87:ad:f4:
88:58:e0:45:39:85:44:1c:8f:cd:8f:39:5a:fe:da:1a:0b:54:
fc:51:c4:5c:25:93:80:18:f6:ca:33:7d:e6:07:d1:2f:b5:41:
dd:11:5b:c5:54:76:6d:ae:7f:46:38:d7:55:57:5a:de:e2:4c:
d4:f9:7b:3a:5a:0f:7d:4f:50:eb:9f:c9:f0:f9:f5:8c:6d:a6:
86:6e:23:9f:5a:28:f2:81:01:c6:d8:7b:c8:30:4a:17:b8:ef:
b9:33:d9:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:52 2024 by rpki-client on console-fra.rpki-client.org