Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/j4zlro5m6bqOhWMOp7EMU3ctNCs.roa
File: j4zlro5m6bqOhWMOp7EMU3ctNCs.roa (raw, json)
Hash identifier: m6U14CCPc4IaXMtlyQlHWJfutJqMj9Coxzda2dQIa64=
Subject key identifier: 8F:8C:E5:AE:8E:66:E9:BA:8E:85:63:0E:A7:B1:0C:53:77:2D:34:2B
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: B4
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/j4zlro5m6bqOhWMOp7EMU3ctNCs.roa
Signing time: Wed 29 Mar 2023 16:05:54 +0000
ROA not before: Wed 29 Mar 2023 16:05:54 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.98.158.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180 (0xb4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 29 16:05:54 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=8F8CE5AE8E66E9BA8E85630EA7B10C53772D342B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:aa:f0:8e:c2:b0:94:ad:43:39:a2:78:0e:6b:
b4:ae:e9:e5:a8:13:ad:d7:16:b9:9c:0d:8e:d8:39:
03:63:cf:ee:13:4a:26:ca:ad:95:83:f2:5b:e1:8d:
55:db:87:b4:5a:6d:47:c7:4e:ab:f0:b9:fa:7a:56:
18:46:c2:a3:24:de:8b:40:9b:e2:cd:a2:43:4a:7a:
0b:d6:f3:8a:42:9a:09:24:70:13:c8:c5:bd:83:33:
be:07:39:84:39:c4:46:fc:c0:6d:2b:1f:1e:ba:96:
86:18:94:ad:92:4e:56:78:6e:e4:da:cf:55:38:ba:
ea:6a:99:f3:9d:51:e3:4b:be:3a:1c:ff:ce:17:66:
b0:db:c4:ee:7e:93:e1:18:99:4f:6b:9b:aa:c7:11:
05:11:ec:cf:9e:27:e4:df:2c:c0:33:8b:fb:6d:3b:
b1:bd:82:16:65:98:4a:91:3b:7e:9e:97:35:df:7e:
ac:46:29:2b:3f:f3:24:37:f2:29:8b:2e:23:25:63:
1e:59:c6:bd:9e:25:c8:bc:3e:9c:7b:67:36:c0:d1:
fd:36:8e:5c:f7:32:2c:2f:09:c6:44:a4:30:72:5e:
4d:d5:48:ab:ea:79:ef:36:6e:c4:9d:b1:27:7f:85:
ea:28:69:c4:90:03:4f:cf:e0:bb:9b:63:bd:56:35:
19:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:8C:E5:AE:8E:66:E9:BA:8E:85:63:0E:A7:B1:0C:53:77:2D:34:2B
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/j4zlro5m6bqOhWMOp7EMU3ctNCs.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.158.0/23
Signature Algorithm: sha256WithRSAEncryption
85:3f:6e:77:f9:5e:bd:71:98:14:4b:50:6d:65:1d:f1:df:f4:
b8:23:87:8f:0d:65:f5:76:00:70:a8:c6:5d:71:97:29:6c:25:
51:28:4c:83:67:dc:17:eb:3e:86:ed:01:93:e7:f8:6d:8a:2f:
6e:88:74:a4:3f:90:72:40:e7:a6:e8:c9:cc:80:84:30:90:50:
42:e0:e2:ad:4b:fe:47:24:5e:dd:e9:44:22:fc:8f:44:27:ba:
45:7d:61:f0:82:39:81:40:33:7e:5d:e0:1a:81:80:15:ae:1f:
38:7f:42:47:48:11:a5:9e:1a:48:4e:fa:50:cc:04:71:e1:20:
f9:6a:a0:25:19:f1:75:0b:ee:61:e0:f6:1a:57:52:af:4b:95:
76:89:ee:e3:6d:11:b3:17:6b:3a:73:b4:f8:b2:c6:96:ec:95:
7c:fd:c8:04:c2:7f:35:e8:9f:94:3d:74:11:7a:35:3a:bc:50:
8d:24:a4:e9:84:12:56:10:ea:06:b4:c5:30:1f:77:c5:db:47:
b7:b6:68:c8:15:94:cd:6a:07:be:96:e9:67:17:d5:a4:6e:37:
e6:68:08:88:48:8f:07:b1:a7:46:b5:e9:b3:7f:ff:02:22:d4:
b0:42:6c:84:e9:52:79:00:39:e1:eb:3c:50:58:07:15:f0:dd:
0f:3b:75:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:52 2024 by rpki-client on console-fra.rpki-client.org