Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/tkL3nnUpIi8LAx9MWsTDKjKUo0g.roa
File: tkL3nnUpIi8LAx9MWsTDKjKUo0g.roa (raw, json)
Hash identifier: Zs1aCQxdGAHMJUQ24gIRc3812TWN9zmFsCFFawJQDtM=
Subject key identifier: B6:42:F7:9E:75:29:22:2F:0B:03:1F:4C:5A:C4:C3:2A:32:94:A3:48
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 02E2
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/tkL3nnUpIi8LAx9MWsTDKjKUo0g.roa
Signing time: Thu 01 Jun 2023 16:04:32 +0000
ROA not before: Thu 01 Jun 2023 16:04:32 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.96.17.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 738 (0x2e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 16:04:32 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=B642F79E7529222F0B031F4C5AC4C32A3294A348
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:7a:e8:7d:04:04:37:7a:a2:64:98:d5:6d:f6:
ca:9c:85:ca:38:ef:50:bd:18:65:f0:96:7a:b6:ca:
8b:99:6a:c1:14:ad:7b:46:37:3b:0d:fe:59:81:1d:
0a:61:6c:3d:59:97:ce:b2:a6:be:96:a2:11:af:5f:
e5:39:18:88:e3:ce:08:b2:69:ee:29:40:55:73:66:
dc:f4:c3:a7:35:79:d2:79:df:e1:50:d2:67:63:7d:
d2:ca:57:1a:e4:bd:cd:d3:c7:24:e4:6b:7b:be:d0:
fc:e6:44:0a:74:33:e0:c9:97:ba:e2:16:04:62:44:
09:19:4b:b2:e8:25:69:05:db:6a:de:60:c5:e2:46:
15:a9:2a:22:38:e6:21:83:ad:de:1c:21:4f:91:0d:
5d:4e:66:4e:9c:fd:5f:1a:58:f0:75:1f:f2:55:3f:
44:8d:3f:a8:a1:2a:b3:fd:20:72:20:27:d8:fb:ac:
05:bd:fc:f2:3f:ec:54:b3:ad:21:4f:63:e3:f8:6e:
4f:a5:b6:3b:85:eb:e8:fe:40:9b:f2:cb:1b:8a:d2:
85:f6:82:5d:9b:d2:fb:db:d2:2e:23:e6:35:aa:0f:
c9:b2:db:b2:67:db:5a:c8:aa:6a:3e:cb:4a:3d:55:
fc:6d:ac:9e:27:c5:b7:09:b3:c9:a9:0f:6a:7f:53:
08:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:42:F7:9E:75:29:22:2F:0B:03:1F:4C:5A:C4:C3:2A:32:94:A3:48
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/tkL3nnUpIi8LAx9MWsTDKjKUo0g.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.96.17.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:1d:27:6d:bc:0c:49:d4:e9:f1:37:4c:b7:ca:63:c3:03:8a:
cc:f2:1c:c5:14:38:d1:9c:31:b6:d6:e9:cc:a2:8d:53:5a:19:
7a:cd:50:50:7a:db:42:2d:97:67:e4:67:73:d8:cb:be:10:59:
6d:d7:ca:c1:37:b5:63:cc:47:2f:64:ab:68:c2:bf:a8:9e:27:
4b:ba:24:3f:5e:55:d1:52:71:2a:77:ba:dc:2c:2e:d0:99:d0:
8b:43:37:14:18:5f:35:2d:1d:95:19:13:26:7a:84:7f:02:db:
e4:fb:8e:70:5d:79:db:45:50:f3:c2:07:15:2d:ae:6b:e3:dd:
dc:c3:dd:ad:c3:08:35:c6:23:1b:5c:d3:75:2c:b9:d8:d3:98:
f7:90:e9:97:1c:11:2d:af:12:2b:b3:0d:2e:7b:ab:9f:10:86:
4a:89:f0:7d:83:90:77:43:46:2a:8a:be:01:df:13:83:06:53:
ad:5a:2c:42:ab:08:6a:fc:3b:f5:60:45:f1:22:63:ef:9e:86:
a6:b9:39:20:5d:b4:29:f2:76:8e:78:46:87:34:d7:2e:d5:d6:
1f:b6:0c:1c:fa:01:e4:f3:db:72:a9:bb:91:e0:d3:d0:d7:dd:
74:18:ec:8f:bf:e5:aa:bd:76:57:38:1d:1e:13:af:08:c2:5d:
ec:9b:d9:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:03 2024 by rpki-client on console-ams.rpki-client.org