Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/iEJilnSGpT0g3ZoUgC5cQCJG1ZU.roa
File: iEJilnSGpT0g3ZoUgC5cQCJG1ZU.roa (raw, json)
Hash identifier: hQrdHmwu+oQiKNYr0vNBqobWhCxWwuvZ69cJyRW98vU=
Subject key identifier: 88:42:62:96:74:86:A5:3D:20:DD:9A:14:80:2E:5C:40:22:46:D5:95
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 02F9
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iEJilnSGpT0g3ZoUgC5cQCJG1ZU.roa
Signing time: Thu 01 Jun 2023 16:05:21 +0000
ROA not before: Thu 01 Jun 2023 16:05:21 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.96.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 761 (0x2f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 16:05:21 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=884262967486A53D20DD9A14802E5C402246D595
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:a2:5e:ad:2c:c7:1c:fd:a5:f7:c7:24:98:ca:
45:b6:ad:2b:6d:bf:58:52:9e:45:12:ca:fa:05:87:
d5:b4:ad:9e:b8:d4:15:9a:f6:30:c4:20:64:5d:a5:
9e:63:2b:db:68:3d:44:08:af:e9:91:8f:10:e6:0f:
2b:37:40:17:89:18:e2:54:bd:32:ba:db:bd:78:87:
71:95:53:25:a1:fd:19:ed:19:18:bd:26:68:63:19:
ea:54:6d:e7:f6:98:fb:da:c1:f8:93:93:7b:91:6d:
55:db:dd:f2:9a:9b:83:2b:a5:83:87:88:79:86:ee:
9a:97:fb:a6:eb:8b:ad:71:35:18:0b:65:c6:f5:e1:
bc:bb:e5:83:5c:af:fe:53:10:44:02:81:a0:18:d4:
01:fc:be:01:88:db:d0:5b:95:d7:25:17:e0:3c:61:
7b:50:13:1f:5d:f6:77:d2:80:4a:56:07:9d:8a:5b:
31:a8:20:00:86:7e:e4:ca:7d:4c:2c:c8:08:10:ca:
98:11:07:fe:b8:bf:9d:33:da:94:b4:b7:76:c4:e3:
50:b5:c6:b6:45:cc:b3:3e:e6:0f:8b:89:7d:83:4d:
d0:b2:8e:58:13:c6:9c:cd:c3:ec:cb:c6:46:3f:fe:
87:87:3d:81:d1:80:8a:23:76:86:02:6b:78:9b:6f:
11:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:42:62:96:74:86:A5:3D:20:DD:9A:14:80:2E:5C:40:22:46:D5:95
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iEJilnSGpT0g3ZoUgC5cQCJG1ZU.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.96.29.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:8d:88:20:75:c0:72:e6:de:d5:f9:98:41:61:48:29:da:12:
b7:54:3f:f4:10:60:e0:51:12:27:af:68:1c:cf:33:d5:48:0d:
e1:e2:65:0a:99:db:29:a2:f0:ae:a1:ea:76:b1:90:9e:88:99:
17:5c:ca:96:c2:83:68:b6:04:7f:08:2f:06:49:ce:cf:a7:95:
d9:67:e8:87:e8:56:0e:3a:6f:b5:b1:77:05:d4:f6:84:42:5d:
d7:d8:7b:2c:85:4b:a1:2d:5d:41:75:a2:15:84:e7:3d:64:21:
3a:41:57:cd:cb:cd:97:bd:c3:90:a9:46:36:e7:5f:b9:88:10:
cd:8b:b1:b5:1a:ca:24:25:25:89:53:b9:6b:af:d3:a2:e9:5d:
86:c0:b0:e9:46:6d:80:82:00:4f:03:d2:65:80:16:8d:94:72:
22:71:18:e4:e6:c5:1e:89:e4:1a:93:18:09:f5:e1:27:2b:d7:
32:0e:c6:64:46:84:78:b2:2b:aa:34:77:ec:2c:e8:22:0f:10:
8d:f6:36:97:3e:2e:14:24:2b:1a:70:9e:98:03:e1:ae:9b:56:
96:ab:bc:30:db:74:af:72:55:4e:d2:e6:1f:ef:25:5a:4f:36:
43:35:da:e7:fb:b8:9c:76:df:78:75:bb:82:19:e9:e8:e6:15:
44:17:10:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:52 2024 by rpki-client on console-fra.rpki-client.org