Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/iHglkwDvRejkK-eFR2hG2gYw4GQ.roa
File: iHglkwDvRejkK-eFR2hG2gYw4GQ.roa (raw, json)
Hash identifier: cxctBVtASiQ0JV+XduHApYR6K4HU/iCuHyfzN+2CKAA=
Subject key identifier: 88:78:25:93:00:EF:45:E8:E4:2B:E7:85:47:68:46:DA:06:30:E0:64
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 035C
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iHglkwDvRejkK-eFR2hG2gYw4GQ.roa
Signing time: Thu 01 Jun 2023 17:56:35 +0000
ROA not before: Thu 01 Jun 2023 17:56:35 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.104.88.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 860 (0x35c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 17:56:35 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=8878259300EF45E8E42BE785476846DA0630E064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:c3:c0:22:03:63:ad:3d:b5:46:a6:e5:db:22:
ea:77:7b:0f:f4:e3:fc:d8:66:cc:c2:15:86:8d:0c:
61:d4:83:9a:40:7b:58:46:0d:0d:df:ab:86:0c:4f:
79:9a:01:f2:c1:5d:be:b7:4a:9d:7d:48:67:05:a7:
5d:8a:f2:10:72:7a:a4:d5:7a:6b:51:eb:a4:af:ad:
12:56:8d:62:53:15:b9:be:74:61:71:c8:b1:66:df:
0b:86:78:e2:79:76:d7:86:58:29:cf:ad:81:8d:33:
65:2f:6a:53:f9:05:e6:72:98:e6:fc:9d:96:b7:dd:
f8:9a:f2:28:23:a3:b6:6d:09:e6:35:29:4c:9a:ea:
da:93:5c:de:16:e5:87:50:48:6b:58:7c:07:db:0c:
d3:25:73:8e:89:8f:3b:42:4c:0e:5e:07:db:49:68:
81:95:aa:22:95:a9:16:34:f4:df:1e:45:72:46:93:
15:e2:d2:4e:eb:30:7c:6c:0a:4f:24:30:66:cb:40:
14:42:af:70:71:94:8e:8e:f5:d0:ae:9d:11:7c:e0:
97:43:94:af:51:43:66:51:88:36:8e:ec:71:b1:5f:
83:43:51:90:42:d8:e3:e2:c2:4d:73:d3:a2:18:54:
0a:86:7c:80:cd:cd:6a:f4:b5:67:22:4f:5b:c1:87:
f0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:78:25:93:00:EF:45:E8:E4:2B:E7:85:47:68:46:DA:06:30:E0:64
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iHglkwDvRejkK-eFR2hG2gYw4GQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.104.88.0/21
Signature Algorithm: sha256WithRSAEncryption
28:b5:0a:dd:3f:47:c9:75:44:96:aa:17:24:7c:3c:c4:82:ef:
5c:44:b0:2c:70:4e:80:89:71:73:db:66:05:07:59:ee:36:8e:
ab:f9:59:60:58:54:88:f2:19:1e:a0:c3:16:1f:81:72:b3:27:
cc:c2:c9:a2:d9:d4:6f:64:19:dc:2e:5f:ad:31:af:64:4f:f5:
e8:dd:17:96:81:5f:c7:0c:fd:53:e9:52:96:11:ad:6c:5a:fe:
44:ed:5f:46:60:04:5c:d8:81:36:87:5d:c5:ae:d7:c3:e8:b7:
a1:5e:6a:18:7c:d6:04:c5:36:2d:ea:ff:56:f9:69:90:8c:6e:
b3:dd:dc:29:4a:e3:29:1a:cc:7d:b4:71:c5:c3:e4:b6:39:a7:
76:38:52:fa:40:16:b1:ed:18:91:b9:59:93:0b:77:65:59:6d:
14:dc:96:2b:20:7d:37:ba:07:29:d6:ac:45:c5:01:48:a7:f1:
11:21:54:cc:21:ef:bf:8a:cc:34:ac:5d:8e:20:a1:e4:d4:12:
df:2b:6a:ad:e2:ff:ef:a0:76:b8:1e:0d:0c:67:9e:f8:a0:d7:
bc:26:bd:3d:eb:9b:b9:d9:39:af:f0:20:4c:d5:83:eb:b4:c4:
13:e0:95:d6:cb:d6:c4:9a:80:fd:cd:92:86:ef:6d:96:58:05:
93:7d:35:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:02 2024 by rpki-client on console-ams.rpki-client.org