Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/mtM-n85-tfOVcBT5UG6AP2NuZVA.roa
File: mtM-n85-tfOVcBT5UG6AP2NuZVA.roa (raw, json)
Hash identifier: Svue7MG3J8kjvfB5PmXFI+Cg8HjJuOiPStnyK3+5SL8=
Subject key identifier: 9A:D3:3E:9F:CE:7E:B5:F3:95:70:14:F9:50:6E:80:3F:63:6E:65:50
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 035D
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/mtM-n85-tfOVcBT5UG6AP2NuZVA.roa
Signing time: Thu 01 Jun 2023 17:56:36 +0000
ROA not before: Thu 01 Jun 2023 17:56:36 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.106.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 861 (0x35d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 17:56:36 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=9AD33E9FCE7EB5F3957014F9506E803F636E6550
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:75:9a:d2:db:02:fe:cd:d3:69:b9:50:5a:55:
96:5f:0a:4a:fb:f7:44:47:30:be:bf:99:43:41:f0:
d2:37:f0:06:d1:56:4c:5a:9e:d3:03:c5:1b:d4:6f:
10:59:7a:c2:66:ae:09:50:b9:bc:f5:8b:09:ac:eb:
d5:87:ee:c1:df:6c:6d:7e:a5:cf:71:44:53:05:f7:
90:92:45:46:f3:19:d3:e2:0b:1c:46:98:50:67:55:
f1:af:56:1f:48:d2:18:c4:b8:57:ac:37:8f:93:c5:
64:13:bd:8d:42:6f:97:94:01:51:bd:e9:16:3c:6b:
78:cd:5b:33:cd:cc:b7:f2:94:65:c5:74:4d:03:96:
a3:5a:57:e4:5a:ef:4f:75:93:09:bd:ff:69:e7:0d:
a9:56:63:80:0d:86:29:09:1d:b9:09:e9:7c:5c:45:
26:d1:d0:8b:2a:3d:c3:7e:51:f6:f4:88:1a:4a:f8:
a6:ee:68:3f:f5:b4:eb:2f:cb:6e:f0:8f:30:9b:fc:
48:45:b8:a6:a9:2a:58:58:22:08:d6:38:ae:34:08:
c7:eb:a8:b3:a6:5a:1e:fd:d5:71:f9:a0:03:c0:9a:
02:d3:26:10:ae:07:1b:60:0a:e3:11:e0:15:23:91:
03:ff:e5:f5:8e:76:02:b3:6f:4a:23:e1:3d:29:e1:
b6:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:D3:3E:9F:CE:7E:B5:F3:95:70:14:F9:50:6E:80:3F:63:6E:65:50
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/mtM-n85-tfOVcBT5UG6AP2NuZVA.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.106.203.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:3e:71:46:bd:2b:16:68:6e:8b:26:af:fc:9d:56:10:ca:ed:
2d:cc:ab:63:db:5b:da:dc:bf:4b:0f:8f:a1:bb:7d:4d:ea:b8:
c7:42:14:1b:5d:8e:f2:4b:af:38:86:42:ae:e9:dc:56:64:30:
fc:ef:48:c7:38:7c:2b:a3:87:62:10:ee:82:9c:c1:d6:ca:89:
92:46:f1:10:ef:9b:e3:d2:ea:9d:1f:ab:bd:d5:d7:3c:a2:3d:
7e:92:2a:1c:9e:e3:43:96:2b:51:e8:86:a3:67:58:43:c3:39:
32:38:9e:a2:50:28:0b:de:80:3a:50:18:ea:d2:a5:a5:76:c5:
e3:4a:77:f3:2e:1d:10:0b:35:d0:2b:df:dd:c3:58:41:a0:39:
d7:4b:78:08:bf:38:5e:ff:3d:3b:f8:79:82:6b:d2:ff:5d:a3:
f2:31:9d:9c:a1:7c:0e:e8:b1:0b:e5:25:35:dd:b4:95:43:02:
d3:91:dc:ff:94:a9:e4:5b:5c:46:a7:2c:a4:90:3e:ff:8d:1a:
60:b3:b6:39:07:1a:30:80:2a:06:99:9b:6b:28:9e:7e:e3:48:
43:12:8b:ca:a6:52:22:3a:28:45:c6:bc:f0:b7:ce:43:da:4e:
f1:26:b2:18:74:26:e0:ff:38:71:ba:cf:dc:22:23:41:0a:34:
9c:28:f5:c3
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICA10wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA2MDEx
NzU2MzZaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDlBRDMzRTlGQ0U3RUI1
RjM5NTcwMTRGOTUwNkU4MDNGNjM2RTY1NTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDdZrS2wL+zdNpuVBaVZZfCkr790RHML6/mUNB8NI38AbRVkxa
ntMDxRvUbxBZesJmrglQubz1iwms69WH7sHfbG1+pc9xRFMF95CSRUbzGdPiCxxG
mFBnVfGvVh9I0hjEuFesN4+TxWQTvY1Cb5eUAVG96RY8a3jNWzPNzLfylGXFdE0D
lqNaV+Ra7091kwm9/2nnDalWY4ANhikJHbkJ6XxcRSbR0IsqPcN+Ufb0iBpK+Kbu
aD/1tOsvy27wjzCb/EhFuKapKlhYIgjWOK40CMfrqLOmWh791XH5oAPAmgLTJhCu
BxtgCuMR4BUjkQP/5fWOdgKzb0oj4T0p4bYFAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUmtM+n85+tfOVcBT5UG6AP2NuZVAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L210TS1uODUtdGZPVmNCVDVVRzZBUDJOdVpWQS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAAxasswDQYJKoZIhvcNAQELBQADggEBAHw+cUa9KxZobosmr/ydVhDK7S3M
q2PbW9rcv0sPj6G7fU3quMdCFBtdjvJLrziGQq7p3FZkMPzvSMc4fCujh2IQ7oKc
wdbKiZJG8RDvm+PS6p0fq73V1zyiPX6SKhye40OWK1HohqNnWEPDOTI4nqJQKAve
gDpQGOrSpaV2xeNKd/MuHRALNdAr393DWEGgOddLeAi/OF7/PTv4eYJr0v9do/Ix
nZyhfA7osQvlJTXdtJVDAtOR3P+UqeRbXEanLKSQPv+NGmCztjkHGjCAKgaZm2so
nn7jSEMSi8qmUiI6KEXGvPC3zkPaTvEmshh0JuD/OHG6z9wiI0EKNJwo9cM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:02 2024 by rpki-client on console-ams.rpki-client.org