Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/cO17t11YUv-MT4eEtr95tAV94uI.roa
File: cO17t11YUv-MT4eEtr95tAV94uI.roa (raw, json)
Hash identifier: 5VdBU/27mNRkmz9VXHVOChWCh+vL57xczgG/f6qj2ow=
Subject key identifier: 70:ED:7B:B7:5D:58:52:FF:8C:4F:87:84:B6:BF:79:B4:05:7D:E2:E2
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: DB
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cO17t11YUv-MT4eEtr95tAV94uI.roa
Signing time: Wed 24 May 2023 16:02:22 +0000
ROA not before: Wed 24 May 2023 16:02:22 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.98.146.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 219 (0xdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:02:22 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=70ED7BB75D5852FF8C4F8784B6BF79B4057DE2E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:96:2b:a3:d5:03:49:04:0a:7e:24:3e:e9:d5:
ed:0a:34:d6:c7:81:84:35:d3:80:30:75:a3:bf:1f:
10:1e:7d:ea:5d:b2:f2:1a:f3:d6:20:df:b9:d9:99:
78:61:74:e4:84:e3:c0:ff:34:49:87:63:24:5d:3c:
0b:7f:1c:2f:a0:81:aa:c8:2a:4a:e6:7c:53:4a:42:
da:e8:c1:05:3d:d7:70:c0:2c:aa:61:da:f0:09:72:
8c:4d:54:ef:70:f4:be:b9:13:a5:2b:06:f0:d6:c6:
77:4b:81:74:ba:e1:ec:6a:7b:4e:c1:a1:d9:0e:1c:
9b:d8:4a:39:a4:3c:3a:97:65:0c:9c:72:97:01:94:
a9:b5:21:7f:3f:99:79:56:50:6b:3d:5b:b2:de:56:
ba:a4:e0:ae:38:ce:64:a0:48:cc:4b:26:8b:4a:4e:
0f:47:b4:8a:cb:24:e7:76:98:36:80:d1:3b:b6:21:
1e:dd:a2:43:02:1a:c0:dc:f4:6a:f8:da:47:ba:c0:
82:70:c5:29:a9:38:5c:02:d8:3b:67:7c:b1:49:7b:
69:72:57:cb:cf:4c:e9:9b:5f:16:5f:6c:a4:28:dc:
34:ce:73:98:1d:f1:0f:4c:75:06:c1:64:45:9e:89:
e2:6a:91:e8:5d:95:26:60:b2:b6:8d:cb:82:0f:eb:
d1:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:ED:7B:B7:5D:58:52:FF:8C:4F:87:84:B6:BF:79:B4:05:7D:E2:E2
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cO17t11YUv-MT4eEtr95tAV94uI.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.146.0/23
Signature Algorithm: sha256WithRSAEncryption
c9:7e:d5:3c:f6:c0:26:f8:af:06:4f:8a:26:99:00:37:f6:07:
95:57:38:f2:7a:bc:ad:0a:32:2d:10:d4:a6:c0:5a:62:91:db:
06:9d:5e:ac:be:5a:b7:fb:f6:28:89:87:1d:e4:29:65:17:a6:
07:e9:7e:02:2e:a0:ec:f3:13:52:55:97:26:3c:e0:2a:ca:84:
12:6d:74:0c:25:e0:b8:66:f4:14:47:9d:ba:7a:2f:93:ca:8e:
15:21:45:30:9e:53:b5:76:d8:11:be:c9:6b:66:e5:5e:13:c4:
82:82:3b:ea:72:03:68:29:56:2a:68:aa:bf:33:27:44:e8:a4:
cf:e8:3e:ed:dc:0e:48:be:44:56:17:9e:38:8f:b2:3d:b9:fe:
44:15:aa:f2:41:cf:71:ce:2e:2c:b4:79:50:96:07:d7:c8:6b:
14:e6:53:72:11:d0:99:ee:44:47:be:8b:ec:e4:f6:60:62:70:
11:33:f0:df:7a:75:3d:2a:55:eb:61:7a:68:33:fe:fe:04:cb:
3e:4a:b1:70:de:0e:cd:ee:2b:d8:7a:68:9f:21:68:c6:7c:c5:
ef:6a:63:a8:02:46:94:bd:2e:92:cc:cd:3f:a6:4d:a4:34:33:
e5:77:6b:76:ab:b6:ee:1f:ca:ec:08:a3:7a:f4:a8:1d:a0:80:
9a:2b:16:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:52 2024 by rpki-client on console-fra.rpki-client.org