Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/cBkaG5Tfkac3iEwo4qz9-PHsn1U.roa
File: cBkaG5Tfkac3iEwo4qz9-PHsn1U.roa (raw, json)
Hash identifier: Sw7oiHrH7wj7l5azTGaKaBMdhUtK8MGWUFJWRPQwGT4=
Subject key identifier: 70:19:1A:1B:94:DF:91:A7:37:88:4C:28:E2:AC:FD:F8:F1:EC:9F:55
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 03A7
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cBkaG5Tfkac3iEwo4qz9-PHsn1U.roa
Signing time: Thu 01 Jun 2023 17:59:33 +0000
ROA not before: Thu 01 Jun 2023 17:59:33 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.106.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 935 (0x3a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 17:59:33 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=70191A1B94DF91A737884C28E2ACFDF8F1EC9F55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:c3:6d:2b:6d:2b:ad:45:44:41:53:fb:73:26:
31:63:b9:73:79:d6:fc:75:09:ef:d4:b3:53:8f:11:
90:12:f5:ed:23:8a:0a:24:5f:bd:0e:14:b9:7e:3c:
46:83:3b:49:25:16:c9:60:29:8d:5e:f1:51:97:4b:
a1:b7:24:a4:ab:3a:30:60:8c:08:d4:ae:2d:19:f3:
6f:59:ac:15:6d:7a:06:2c:24:c9:bd:9a:ae:38:77:
f8:d1:97:a9:5a:25:e1:0b:ac:ae:e8:b3:5d:cf:3c:
20:b0:17:7a:2f:32:1f:48:b2:29:f3:8a:a1:7f:cc:
be:05:65:60:85:92:2e:4b:d3:0f:30:da:c7:3e:24:
10:88:d7:f8:07:72:cb:55:8c:f6:6e:f5:cf:16:55:
b2:cd:f0:56:5c:f6:d8:87:d6:85:68:87:91:4e:fd:
e4:45:1c:56:79:80:44:b5:b0:db:e6:8c:e6:62:20:
42:e4:99:a8:19:d4:d2:39:d7:f6:bd:7f:75:96:59:
cd:5d:c4:cb:59:f8:d4:2c:26:83:38:58:79:69:8f:
0a:6a:53:3b:cc:9f:4b:a9:76:6c:f1:68:6e:36:33:
e9:08:e8:2f:62:b3:a6:25:36:9f:66:bb:55:5e:07:
3c:17:fd:59:8a:d3:88:fa:84:a8:eb:f0:00:99:d5:
34:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:19:1A:1B:94:DF:91:A7:37:88:4C:28:E2:AC:FD:F8:F1:EC:9F:55
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cBkaG5Tfkac3iEwo4qz9-PHsn1U.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.106.208.0/24
Signature Algorithm: sha256WithRSAEncryption
36:60:9c:9e:20:59:ed:62:41:17:e4:9d:f7:0a:a0:ee:b3:b3:
8a:3f:d4:c2:48:bd:b4:d0:61:dc:b9:0b:4f:83:a7:49:49:85:
bc:6c:fa:55:27:9d:63:51:f9:fc:f6:68:df:88:85:00:7d:54:
86:f1:c0:a8:6d:8b:b6:21:28:f8:1a:9b:d6:1e:69:a2:e9:bb:
d4:29:a0:2a:03:02:40:bf:0a:ac:d3:6e:03:7a:52:0d:e8:f2:
c9:93:d9:58:0e:e4:96:78:f1:91:01:cc:16:53:4c:5c:e9:07:
b6:2e:9b:b3:48:f3:f0:f9:e6:a3:fd:cc:15:77:0a:cd:08:31:
66:41:91:f1:ca:c2:e9:cf:b0:1a:b9:08:09:92:5e:21:53:66:
ef:71:b3:67:12:73:29:f6:00:2a:21:cf:1e:be:06:cb:9b:7c:
0d:f6:42:15:cb:5d:23:cb:7b:17:ea:76:bd:30:eb:23:2b:df:
85:43:62:8a:10:f3:ae:71:73:f3:31:c1:3a:da:90:bb:f7:fd:
53:03:3f:89:b0:0f:4a:55:40:43:ba:2e:93:e8:7c:6f:de:73:
78:3a:8a:5e:7e:b1:07:12:f9:9c:ca:9b:04:f6:35:19:4c:7c:
03:ad:83:85:4a:d3:9f:0b:13:d4:7b:af:d5:ef:78:59:b5:2a:
9e:94:67:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:52 2024 by rpki-client on console-fra.rpki-client.org