Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/dXzPIehltemYosRfFBJCrhxfR7I.roa
File: dXzPIehltemYosRfFBJCrhxfR7I.roa (raw, json)
Hash identifier: LACIQU80TofHjGz0Sd6H4WpWZPa35Jg+9e6jcL0aAyg=
Subject key identifier: 75:7C:CF:21:E8:65:B5:E9:98:A2:C4:5F:14:12:42:AE:1C:5F:47:B2
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: D3
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/dXzPIehltemYosRfFBJCrhxfR7I.roa
Signing time: Wed 24 May 2023 16:02:19 +0000
ROA not before: Wed 24 May 2023 16:02:19 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.98.204.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 211 (0xd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:02:19 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=757CCF21E865B5E998A2C45F141242AE1C5F47B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b2:44:a3:a8:ad:14:64:5d:31:ba:8e:35:de:
3d:7e:d5:23:ca:00:7c:ee:f8:01:51:f2:62:6e:4a:
d3:34:1c:a1:6f:2c:8b:92:0a:da:a4:c7:0a:ac:8e:
14:6e:8d:09:16:7e:65:17:8b:2d:c1:ba:50:2f:fa:
91:19:69:f5:85:56:ea:35:91:c6:f5:a9:3b:92:c9:
cd:95:26:d1:7a:c4:24:26:4c:c3:8c:de:b7:23:43:
c4:7c:52:8b:c2:c4:cf:37:97:24:46:17:9f:3b:9e:
35:22:ae:92:e1:b5:33:c4:8c:8e:0f:a4:cb:25:22:
07:9a:20:30:9b:68:de:c3:52:ed:a0:f6:8c:f7:74:
d9:be:73:fe:d4:b3:1e:b9:cf:61:d6:84:96:34:82:
6d:6c:08:67:04:59:2c:69:35:7e:29:4a:3e:6e:a0:
71:6a:17:25:79:a1:23:8f:06:c9:96:9f:62:75:3d:
f1:d2:c0:74:b7:61:f9:cc:e0:50:83:9f:de:58:bd:
85:f7:5b:ce:2d:92:38:b2:78:01:98:6e:3b:0e:d6:
61:25:59:1e:c7:ab:f2:b1:38:f4:30:de:81:cf:6f:
c3:3b:0d:55:d6:b0:3e:f0:04:53:9b:cc:d7:11:09:
75:bf:5a:85:06:c2:5e:3b:e0:8e:75:92:d7:70:cf:
df:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:7C:CF:21:E8:65:B5:E9:98:A2:C4:5F:14:12:42:AE:1C:5F:47:B2
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/dXzPIehltemYosRfFBJCrhxfR7I.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.204.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:e4:32:7e:18:87:34:4f:1c:06:e7:32:6d:33:8d:a5:10:ea:
59:48:70:5c:5e:cf:6c:11:1e:68:9c:00:be:06:de:a1:a3:5a:
a8:ab:23:c0:32:5d:17:3c:44:0e:b4:55:b7:1a:af:84:88:91:
b0:78:c4:f9:77:4d:83:64:9f:7a:0b:6a:61:69:3b:89:5c:3b:
bb:cc:30:0c:f1:cd:e2:af:5f:ff:15:03:1b:92:a8:b2:1f:24:
07:9c:d2:4c:64:a9:c2:2f:ea:d4:a6:db:ab:a1:7f:ba:83:e8:
4c:bb:91:40:35:39:8b:76:49:86:67:b0:ba:a4:b8:91:7c:26:
ee:63:3a:ba:1d:95:33:b5:e7:06:29:24:c7:78:21:78:6b:14:
f6:ba:ab:98:c2:3e:0b:a8:03:f8:30:81:cf:84:06:ab:63:32:
1f:78:b1:a2:5e:8d:58:c4:99:6d:2b:e7:d8:ce:9b:37:d7:ac:
4f:10:f8:8e:b0:5a:f7:a6:49:d7:cb:18:a5:56:bd:2c:bd:98:
b6:e0:54:b8:2e:9b:36:44:38:12:b6:06:03:90:b9:aa:17:ee:
10:63:fc:5d:7b:3c:70:25:65:13:b7:8f:52:62:3f:a5:a3:53:
96:77:55:c7:38:2f:41:b1:82:10:0d:00:8a:8a:bb:fe:67:e5:
7b:8a:96:3d
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICANMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MjQx
NjAyMTlaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDc1N0NDRjIxRTg2NUI1
RTk5OEEyQzQ1RjE0MTI0MkFFMUM1RjQ3QjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCwskSjqK0UZF0xuo413j1+1SPKAHzu+AFR8mJuStM0HKFvLIuS
CtqkxwqsjhRujQkWfmUXiy3BulAv+pEZafWFVuo1kcb1qTuSyc2VJtF6xCQmTMOM
3rcjQ8R8UovCxM83lyRGF587njUirpLhtTPEjI4PpMslIgeaIDCbaN7DUu2g9oz3
dNm+c/7Usx65z2HWhJY0gm1sCGcEWSxpNX4pSj5uoHFqFyV5oSOPBsmWn2J1PfHS
wHS3YfnM4FCDn95YvYX3W84tkjiyeAGYbjsO1mElWR7Hq/KxOPQw3oHPb8M7DVXW
sD7wBFObzNcRCXW/WoUGwl474I51ktdwz99DAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUdXzPIehltemYosRfFBJCrhxfR7IwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L2RYelBJZWhsdGVtWW9zUmZGQkpDcmh4ZlI3SS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAIxYswwDQYJKoZIhvcNAQELBQADggEBAHzkMn4YhzRPHAbnMm0zjaUQ6llI
cFxez2wRHmicAL4G3qGjWqirI8AyXRc8RA60Vbcar4SIkbB4xPl3TYNkn3oLamFp
O4lcO7vMMAzxzeKvX/8VAxuSqLIfJAec0kxkqcIv6tSm26uhf7qD6Ey7kUA1OYt2
SYZnsLqkuJF8Ju5jOrodlTO15wYpJMd4IXhrFPa6q5jCPguoA/gwgc+EBqtjMh94
saJejVjEmW0r59jOmzfXrE8Q+I6wWvemSdfLGKVWvSy9mLbgVLgumzZEOBK2BgOQ
uaoX7hBj/F17PHAlZRO3j1JiP6WjU5Z3Vcc4L0GxghANAIqKu/5n5XuKlj0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:02 2024 by rpki-client on console-ams.rpki-client.org