Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/dqrDDfDj9WtPezhFk-TE_onm12w.roa
File: dqrDDfDj9WtPezhFk-TE_onm12w.roa (raw, json)
Hash identifier: P6RJlnVKhUFYMwq06K2veC9xuwfiV2/KD8eyYnB+Zcg=
Subject key identifier: 76:AA:C3:0D:F0:E3:F5:6B:4F:7B:38:45:93:E4:C4:FE:89:E6:D7:6C
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 04BC
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/dqrDDfDj9WtPezhFk-TE_onm12w.roa
Signing time: Thu 27 Jul 2023 16:48:12 +0000
ROA not before: Thu 27 Jul 2023 16:48:12 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 49.103.24.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1212 (0x4bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:48:12 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=76AAC30DF0E3F56B4F7B384593E4C4FE89E6D76C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3f:86:5e:f9:4d:38:17:54:e1:32:12:c4:ca:
76:16:de:5e:c2:aa:0b:ef:5c:58:d0:da:d2:05:2e:
05:74:ef:0e:db:e8:3c:6f:06:9f:28:16:d0:41:c5:
ed:c9:a3:e6:5a:45:9d:c6:dc:e2:84:aa:39:af:8e:
b7:eb:bd:5f:8c:a0:da:0a:11:65:03:f2:1c:16:cb:
7a:b9:a3:64:c0:40:25:b6:f2:37:ea:03:ba:b2:87:
71:cc:6f:0d:c9:af:32:e9:dd:62:2c:f5:0d:8d:83:
1d:83:a0:a6:c2:63:70:46:2f:14:6f:07:3e:bc:b2:
5f:d9:82:27:66:56:f8:4e:23:d2:25:ac:56:5a:85:
66:63:ff:90:f4:3e:e8:e2:7f:1d:57:f4:fa:24:36:
17:6c:3a:83:fe:59:0c:60:7d:09:17:49:91:0c:5a:
10:8e:34:3a:c9:28:e8:0a:da:fa:31:87:1e:26:bc:
d2:a1:46:9d:36:61:04:1f:d3:5e:ef:3e:01:52:8c:
0a:fc:b2:ec:e2:38:2c:db:ba:18:e3:78:f4:d5:f1:
fb:a2:33:72:b9:9b:8a:d2:07:e7:d7:7b:86:dc:5b:
91:80:2e:c8:80:b3:5f:81:7e:15:a9:8d:88:8b:0f:
80:30:f1:ab:30:99:bd:64:3f:c7:be:88:0e:1b:d5:
e1:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:AA:C3:0D:F0:E3:F5:6B:4F:7B:38:45:93:E4:C4:FE:89:E6:D7:6C
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/dqrDDfDj9WtPezhFk-TE_onm12w.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.103.24.0/22
Signature Algorithm: sha256WithRSAEncryption
56:07:8f:0f:e5:61:f6:ae:f2:61:c2:e5:86:ab:80:08:a4:e1:
3b:4d:d3:aa:6d:1c:e6:fe:54:91:51:93:8b:a1:83:92:91:5d:
21:12:8d:21:bf:44:df:b9:81:28:30:fc:d6:00:78:21:bf:ea:
bd:4d:01:1f:a0:33:9e:04:86:87:84:30:7d:81:1c:0a:1e:8a:
2c:93:fc:28:2e:0e:95:b4:8f:2a:b2:f5:98:84:b6:22:9c:a5:
43:a4:7c:60:39:1b:37:80:93:1e:3a:66:f5:e5:80:28:97:97:
0b:bc:87:35:25:9e:b8:e1:d4:cb:8d:5d:fb:b6:e3:69:f3:36:
11:6c:70:df:6d:c3:80:69:69:64:29:83:92:ba:9a:29:41:7e:
56:25:39:2a:fb:70:e0:32:2e:e7:7d:dd:e5:12:28:62:1d:02:
bd:09:d0:5b:83:9c:e9:71:e4:16:3e:1b:29:4a:93:32:5c:0d:
c0:51:fb:73:51:bf:97:e2:b4:10:2a:26:56:12:91:2a:29:af:
f4:29:54:60:8a:d5:1e:d3:0d:86:b9:c3:df:fd:f8:fa:81:17:
19:20:80:10:42:56:7e:6f:be:00:9f:c7:6a:d1:04:9a:cc:26:
d5:50:0f:18:09:d0:1f:5f:d7:0c:01:6e:ad:e6:3c:3a:52:e7:
6b:39:eb:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:22:23 2025 by rpki-client