Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/hBpB_TCYpy3H3THkr7n2VmxgELY.roa
File: hBpB_TCYpy3H3THkr7n2VmxgELY.roa (raw, json)
Hash identifier: jvRCVuv3QkYRCUZlt3iD9sQt7W2c59gzXvz69On8lXc=
Subject key identifier: 84:1A:41:FD:30:98:A7:2D:C7:DD:31:E4:AF:B9:F6:56:6C:60:10:B6
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 99
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hBpB_TCYpy3H3THkr7n2VmxgELY.roa
Signing time: Wed 29 Mar 2023 16:05:03 +0000
ROA not before: Wed 29 Mar 2023 16:05:03 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.98.212.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153 (0x99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 29 16:05:03 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=841A41FD3098A72DC7DD31E4AFB9F6566C6010B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d5:6f:4b:ad:d6:b2:25:32:d9:2f:6d:55:0b:
da:d3:a0:c3:c3:c9:1a:79:4f:46:8c:5b:92:c4:b0:
7f:91:9a:08:dc:51:2b:ef:0b:f8:f3:23:47:92:23:
49:b9:dc:ab:99:8a:42:88:b4:f7:0f:c5:32:25:0f:
5e:5f:5f:05:30:bb:dc:56:78:f8:ba:57:e3:df:47:
c3:b2:c5:0d:6b:5f:64:31:6e:94:fc:f8:8a:86:39:
61:94:58:18:bc:95:0c:a1:bf:cf:90:2c:7c:1c:25:
75:03:31:44:d5:a9:8b:01:82:e2:9b:d7:9a:6f:45:
6d:b3:23:d1:da:82:90:44:a5:4a:12:8d:75:5f:5a:
49:15:f5:6b:7c:ac:f5:54:b9:56:38:4e:a8:3e:07:
84:bd:80:3f:89:29:07:ae:e1:93:9d:57:76:f0:a0:
3b:8d:cb:14:59:c4:a7:6a:0a:59:63:f4:73:ff:e4:
32:2d:e5:ab:c5:88:62:36:20:c8:ad:5f:96:d8:4b:
81:40:22:94:ad:77:6d:24:67:d2:92:a2:9d:b8:b6:
dd:32:e5:5c:b9:7b:93:7b:78:6b:3b:70:00:22:0d:
89:c4:70:85:b4:d7:a0:53:07:38:21:d6:02:b6:c8:
5a:77:e2:27:bc:8b:17:2e:5d:12:fe:c8:7a:3b:3f:
05:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:1A:41:FD:30:98:A7:2D:C7:DD:31:E4:AF:B9:F6:56:6C:60:10:B6
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hBpB_TCYpy3H3THkr7n2VmxgELY.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.212.0/22
Signature Algorithm: sha256WithRSAEncryption
16:55:99:d6:6e:d8:b9:7d:83:c6:30:07:65:d5:34:79:aa:d6:
3a:bc:cf:fe:f1:1f:fc:16:71:a8:23:33:ca:92:17:92:8c:9e:
ec:75:0d:17:83:8c:4f:05:57:a2:66:66:bf:37:83:c2:ab:b5:
9a:43:80:ec:45:35:61:c4:af:6d:4a:b1:a2:79:fd:aa:70:dd:
27:7f:29:75:d3:bc:af:55:94:65:15:20:19:92:cd:14:67:0f:
2e:ab:c4:78:4d:8e:d0:29:d9:8d:df:e8:9b:47:50:53:29:bc:
25:14:47:e5:d0:40:c1:34:5d:a9:19:5d:ea:87:43:6b:9b:2b:
f7:23:f9:46:6a:1f:7e:a6:61:e0:28:37:4d:3e:63:0b:09:7c:
da:07:30:24:3b:45:0c:de:ac:5b:65:a9:fe:e4:94:fb:6d:2a:
e8:2f:b3:9a:19:a9:ed:da:41:bb:f7:3d:71:bf:57:b5:cf:3c:
6e:8b:a3:08:97:c9:92:88:9d:90:14:c7:da:76:49:a9:ac:af:
d7:18:71:12:73:25:63:55:06:84:79:d0:92:20:78:d8:96:b0:
fd:aa:80:6e:44:c1:ec:40:18:6f:c5:e3:7c:88:aa:17:9c:4c:
ae:42:e2:00:15:da:db:88:8d:0d:18:05:f2:9c:c7:0f:de:7c:
8c:a4:66:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:52 2024 by rpki-client on console-fra.rpki-client.org