Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/g8pR3kALQUOO4V2DQf4Wi9umuhQ.roa
File: g8pR3kALQUOO4V2DQf4Wi9umuhQ.roa (raw, json)
Hash identifier: 56wX4rZMCja1+ScCmNPs8XmVu1skhe70bRb8PtfIUqg=
Subject key identifier: 83:CA:51:DE:40:0B:41:43:8E:E1:5D:83:41:FE:16:8B:DB:A6:BA:14
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 02EF
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/g8pR3kALQUOO4V2DQf4Wi9umuhQ.roa
Signing time: Thu 01 Jun 2023 16:04:36 +0000
ROA not before: Thu 01 Jun 2023 16:04:36 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.97.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 751 (0x2ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 16:04:36 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=83CA51DE400B41438EE15D8341FE168BDBA6BA14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:0c:b0:1d:ff:57:71:14:f0:f3:24:c7:5c:66:
7c:6e:41:d5:5a:60:90:28:ae:42:e9:18:39:4b:95:
aa:b0:40:68:5f:d1:99:8a:e1:22:f7:c1:7b:35:c7:
82:72:20:16:98:33:f0:7d:3f:c5:4c:32:3c:cb:50:
82:88:16:53:ec:88:2c:9d:05:3b:7d:ff:a9:49:40:
59:0a:a5:e0:1a:8f:44:53:fa:0e:e7:0e:5f:d8:4f:
91:20:1c:b0:cc:50:6d:c6:2d:43:64:8a:d7:d1:4c:
0f:03:c9:ff:06:d5:ec:3c:8e:e3:f7:31:8c:00:c5:
2b:85:62:d6:a1:e0:c2:19:51:73:df:0e:d7:ec:ad:
27:41:fd:70:2f:bb:01:69:14:9d:fa:8a:f6:36:14:
d5:50:dd:c1:0e:69:cf:bd:ed:2f:e1:86:e5:f8:10:
17:aa:fc:e2:c8:d9:b7:3f:ca:8d:bd:0d:cd:d2:37:
99:3c:23:ac:fd:f0:4a:ff:64:2f:32:ba:f6:4f:8d:
5c:d4:30:97:eb:31:44:67:c3:e1:b6:de:d9:a0:61:
0f:1c:05:60:db:bb:47:0c:18:bf:2b:4a:f7:5e:b5:
57:21:fc:4c:73:4c:c1:5b:73:52:d1:ad:11:75:e9:
e8:a0:5e:9f:3f:b5:a2:02:82:d6:75:e8:f2:47:4f:
bc:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:CA:51:DE:40:0B:41:43:8E:E1:5D:83:41:FE:16:8B:DB:A6:BA:14
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/g8pR3kALQUOO4V2DQf4Wi9umuhQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.97.46.0/24
Signature Algorithm: sha256WithRSAEncryption
67:5d:13:a4:b1:b8:e5:93:9d:60:e4:27:f7:6f:05:1c:a9:1e:
ac:e2:1c:e3:6f:c2:e8:24:24:7c:1d:7f:71:6c:97:98:22:d2:
ca:9b:de:0f:60:56:48:cf:02:6b:92:fd:e2:af:65:44:f5:44:
45:3f:dc:c9:dc:07:ae:7b:f0:47:aa:7f:e4:01:e6:5e:94:54:
a0:38:51:10:11:ae:ee:3b:6f:46:63:3a:74:b7:b1:f9:69:e6:
6f:ec:de:21:2d:f2:ff:6a:8b:59:10:27:e4:46:f9:92:18:4a:
44:e3:96:1a:00:3c:88:0b:0a:99:fa:d9:e1:77:48:5a:0f:81:
0a:3d:18:70:e2:68:c3:08:94:fb:36:48:2a:94:7a:a3:47:ca:
5b:42:29:01:d1:99:3d:35:96:97:3c:df:38:47:b6:c6:90:be:
57:e1:70:5c:ef:7a:f2:96:02:ae:24:4e:13:d0:9f:6a:d7:f0:
53:a7:68:93:5e:df:9f:bb:ba:a9:14:96:c5:0b:6f:55:52:56:
9b:1e:0f:53:e8:b5:42:8c:a0:61:ae:3c:04:4c:7e:4a:bc:48:
08:2e:f3:e2:3c:47:70:d4:00:4f:45:39:37:c5:d9:12:e1:14:
24:f2:6a:96:9d:c1:a8:f1:88:3e:70:6b:05:57:d5:a3:b1:31:
17:e2:a7:78
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAu8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA2MDEx
NjA0MzZaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDgzQ0E1MURFNDAwQjQx
NDM4RUUxNUQ4MzQxRkUxNjhCREJBNkJBMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDgDLAd/1dxFPDzJMdcZnxuQdVaYJAorkLpGDlLlaqwQGhf0ZmK
4SL3wXs1x4JyIBaYM/B9P8VMMjzLUIKIFlPsiCydBTt9/6lJQFkKpeAaj0RT+g7n
Dl/YT5EgHLDMUG3GLUNkitfRTA8Dyf8G1ew8juP3MYwAxSuFYtah4MIZUXPfDtfs
rSdB/XAvuwFpFJ36ivY2FNVQ3cEOac+97S/hhuX4EBeq/OLI2bc/yo29Dc3SN5k8
I6z98Er/ZC8yuvZPjVzUMJfrMURnw+G23tmgYQ8cBWDbu0cMGL8rSvdetVch/Exz
TMFbc1LRrRF16eigXp8/taICgtZ16PJHT7x3AgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUg8pR3kALQUOO4V2DQf4Wi9umuhQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L2c4cFIza0FMUVVPTzRWMkRRZjRXaTl1bXVoUS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAAxYS4wDQYJKoZIhvcNAQELBQADggEBAGddE6SxuOWTnWDkJ/dvBRypHqzi
HONvwugkJHwdf3Fsl5gi0sqb3g9gVkjPAmuS/eKvZUT1REU/3MncB6578Eeqf+QB
5l6UVKA4URARru47b0ZjOnS3sflp5m/s3iEt8v9qi1kQJ+RG+ZIYSkTjlhoAPIgL
Cpn62eF3SFoPgQo9GHDiaMMIlPs2SCqUeqNHyltCKQHRmT01lpc83zhHtsaQvlfh
cFzvevKWAq4kThPQn2rX8FOnaJNe35+7uqkUlsULb1VSVpseD1PotUKMoGGuPARM
fkq8SAgu8+I8R3DUAE9FOTfF2RLhFCTyapadwajxiD5wawVX1aOxMRfip3g=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:52 2024 by rpki-client on console-fra.rpki-client.org