Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/cC6pcS7RpyxondVYYNC0W_fq95I.roa
File: cC6pcS7RpyxondVYYNC0W_fq95I.roa (raw, json)
Hash identifier: 2KPfgkk09Xk4NZcTfIcFxayUDjYQzr8onZW/eePIp8o=
Subject key identifier: 70:2E:A9:71:2E:D1:A7:2C:68:9D:D5:58:60:D0:B4:5B:F7:EA:F7:92
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0414
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cC6pcS7RpyxondVYYNC0W_fq95I.roa
Signing time: Tue 06 Jun 2023 16:05:56 +0000
ROA not before: Tue 06 Jun 2023 16:05:56 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.104.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1044 (0x414)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 6 16:05:56 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=702EA9712ED1A72C689DD55860D0B45BF7EAF792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:86:35:ed:e2:f4:04:ad:bd:6c:f6:ad:ce:6b:
7e:c7:bb:9f:b0:bc:14:62:c0:c7:ba:26:e1:73:6b:
28:5f:bd:91:84:82:90:50:67:e7:45:38:c9:6c:fe:
48:06:55:34:81:ff:c9:c3:d4:26:fd:80:3c:50:b8:
26:2c:18:31:f9:44:cb:ef:93:85:66:2d:a4:3f:de:
8b:ed:f0:03:01:ee:20:cb:ff:4f:20:73:f4:3b:7c:
e2:f4:a2:0c:42:45:f6:01:4f:06:47:a2:11:1c:53:
68:4b:7d:8e:a5:65:c0:a3:f2:48:95:0d:4f:a7:c9:
bc:a6:4c:f8:a0:3b:ac:59:1f:57:ec:3a:3c:45:12:
47:d8:55:b7:5f:63:18:85:d6:d6:fa:d6:38:ab:71:
22:11:1e:e2:38:7f:30:3e:0e:1a:10:02:c1:34:be:
41:10:46:fd:49:b7:97:d4:50:df:84:62:5b:d0:9c:
45:d8:ea:84:51:f6:c2:a5:42:aa:7a:1c:59:9e:ec:
ff:49:81:64:37:73:3f:b5:2c:70:45:3d:e9:ba:22:
cd:99:24:e2:cd:dc:b1:21:c7:55:b6:de:3c:17:8f:
6d:1a:47:01:95:6d:c5:39:da:c4:ae:0d:78:fb:e0:
d3:33:28:46:bf:f4:bb:f2:54:00:07:c1:9b:0f:fc:
18:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:2E:A9:71:2E:D1:A7:2C:68:9D:D5:58:60:D0:B4:5B:F7:EA:F7:92
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cC6pcS7RpyxondVYYNC0W_fq95I.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.104.252.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:1a:63:b2:03:0a:5a:66:ed:94:83:6f:e0:01:55:e7:62:32:
59:d9:d3:59:e1:67:b8:1e:f8:37:7f:b2:53:5f:e0:bd:b6:e6:
3b:ae:62:a9:98:c4:40:bb:2a:04:b8:1c:43:61:11:f8:e9:d4:
17:0c:b3:da:46:e1:34:77:d2:4d:e6:09:a6:98:6b:3b:e0:8b:
8a:24:7d:5e:7d:70:b4:1d:4e:0c:50:7c:6d:41:87:e4:0e:14:
ea:82:5b:58:87:f9:7b:5a:be:fd:3e:a4:da:12:21:ea:ce:f8:
b9:99:eb:a9:e4:0f:50:65:f6:30:46:28:cb:f6:95:19:5f:2d:
4c:3a:9a:75:ec:24:fb:b4:19:76:34:08:95:59:a5:5b:83:c5:
63:3d:6d:f2:d8:3e:c5:29:2f:74:38:e0:c9:90:b7:4d:ad:c5:
2c:5b:e9:db:b1:30:12:f7:b7:8a:d6:0c:0b:37:49:97:88:39:
0b:8f:ee:19:f0:8c:dd:47:cc:43:aa:5c:9a:69:25:56:c8:1f:
64:d9:87:9a:a1:20:fd:b2:2c:18:b4:b6:9c:96:15:a1:19:5e:
44:82:58:3a:45:ce:d1:95:a7:6d:6c:1e:5b:8f:d2:c1:50:81:
69:5a:ed:d1:63:74:5b:b8:f6:89:ed:6d:6a:d6:0d:42:db:4a:
4f:b9:9c:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:02 2024 by rpki-client on console-ams.rpki-client.org