Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/dcq5K0PlsUlLBXuPYrAeNYWTn7s.roa
File: dcq5K0PlsUlLBXuPYrAeNYWTn7s.roa (raw, json)
Hash identifier: cGpIZf3jgsMRskOf342OXUBB3HR33Wk6mb2sa9ig51I=
Subject key identifier: 75:CA:B9:2B:43:E5:B1:49:4B:05:7B:8F:62:B0:1E:35:85:93:9F:BB
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 03C8
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/dcq5K0PlsUlLBXuPYrAeNYWTn7s.roa
Signing time: Tue 06 Jun 2023 16:02:59 +0000
ROA not before: Tue 06 Jun 2023 16:02:59 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.106.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 968 (0x3c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 6 16:02:59 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=75CAB92B43E5B1494B057B8F62B01E3585939FBB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:9b:96:72:d5:bb:b8:48:d7:53:fd:6c:9f:59:
6a:28:18:e5:04:f5:ec:06:6c:cf:11:1a:d0:d4:e7:
75:57:53:44:e0:c8:0b:7b:e6:ca:87:b1:83:6f:0d:
39:e4:0d:e1:3c:b6:1b:57:a1:0f:37:b9:88:46:73:
11:d3:3d:6c:69:77:d8:ee:7f:7f:1b:fb:a0:8c:d7:
28:57:5a:e3:d1:4f:33:a8:71:73:62:9f:8d:2b:bf:
3e:12:13:94:5b:90:0d:c7:b6:3a:5e:81:a2:6e:e8:
63:c5:89:66:fb:14:14:82:8e:03:7b:cb:88:33:9d:
5a:f3:7c:c2:d1:05:95:d8:fb:18:dd:0a:af:24:1e:
9b:33:21:1c:17:ed:36:dd:e5:74:3b:b0:ee:30:d4:
dd:e6:bd:99:d4:29:5d:4a:78:6f:5f:87:84:37:1f:
f8:0d:8a:f8:c0:0a:2a:b5:fd:b6:33:dd:92:fd:37:
90:12:74:03:a1:96:a7:df:b3:31:cd:60:e0:af:4e:
f2:b1:c3:84:81:71:ea:0c:e7:ec:39:7b:bb:39:74:
9f:35:35:49:16:5d:44:38:33:82:c1:b8:41:f4:aa:
ae:5f:af:37:af:ed:5d:e3:08:f2:fa:dd:1e:22:18:
e5:db:cb:ef:66:a4:0a:c4:6d:31:7b:11:f5:6d:76:
06:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:CA:B9:2B:43:E5:B1:49:4B:05:7B:8F:62:B0:1E:35:85:93:9F:BB
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/dcq5K0PlsUlLBXuPYrAeNYWTn7s.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.106.217.0/24
Signature Algorithm: sha256WithRSAEncryption
70:99:8b:d5:cc:21:69:0c:a3:23:c6:62:29:5b:44:50:a8:5d:
d1:58:f0:62:a9:91:35:0c:dd:99:34:92:cd:1e:ba:4e:08:1a:
f3:2b:1b:24:64:23:54:db:78:fb:a7:4b:c1:f3:3d:f1:3b:ff:
84:f4:33:7c:44:34:e6:1b:af:3d:c7:f9:1c:22:b9:8d:eb:00:
a5:2b:f6:ac:6a:07:31:c7:bd:ef:d0:3f:bf:f5:28:8c:70:27:
6b:60:97:8b:96:9b:ef:db:f7:a4:93:df:49:7a:af:cc:9a:43:
17:4f:87:41:ad:8e:da:f3:57:c8:ea:b4:12:a4:1b:01:60:dc:
31:aa:b1:5f:fa:e3:1e:a3:ac:4f:b6:64:75:4d:24:42:43:c6:
71:b2:57:cb:6a:af:2a:f9:97:b5:11:13:c4:7c:ea:6d:3a:00:
84:10:26:8f:38:7d:88:87:95:79:44:4f:dc:a7:6f:12:7b:87:
c9:83:8a:28:90:79:dc:6e:41:9c:f9:13:8f:75:d4:5c:be:96:
37:cb:73:05:97:c6:11:72:7c:96:59:b8:94:c3:c4:c2:0d:1a:
ff:ac:06:05:e8:6d:59:11:d9:8d:4e:a3:2b:81:35:1b:6c:cd:
dc:64:c5:42:3b:2e:1c:96:b1:7a:7c:7b:25:5e:d2:cb:ff:84:
b2:a0:2b:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:02 2024 by rpki-client on console-ams.rpki-client.org