Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/vGzxeJ-m0ahDgiMGZXSpttrHIq0.roa
File: vGzxeJ-m0ahDgiMGZXSpttrHIq0.roa (raw, json)
Hash identifier: 5JARskCrGNaJ0xJcw9NcMj88ipdtyU0bNgvAWCJGQwM=
Subject key identifier: BC:6C:F1:78:9F:A6:D1:A8:43:82:23:06:65:74:A9:B6:DA:C7:22:AD
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 02DF
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/vGzxeJ-m0ahDgiMGZXSpttrHIq0.roa
Signing time: Thu 01 Jun 2023 16:04:31 +0000
ROA not before: Thu 01 Jun 2023 16:04:31 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.97.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 735 (0x2df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 16:04:31 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=BC6CF1789FA6D1A8438223066574A9B6DAC722AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f2:0a:a0:9d:0c:f2:a2:66:5e:f1:59:f5:92:
97:18:9e:0c:6a:70:f9:55:a3:16:a8:d8:49:bc:00:
c6:a7:00:60:8d:9f:20:37:d6:cd:e0:99:94:12:9b:
1d:0f:41:ae:03:d3:eb:40:13:3f:6e:31:53:ae:c8:
d0:f9:a2:e6:5e:d3:4b:54:af:c2:67:c6:00:5d:11:
7d:08:90:40:f2:ec:e1:d1:d5:46:cf:5a:64:94:68:
32:e2:1b:a8:08:12:06:7f:3c:56:14:55:74:34:70:
77:c7:a4:f6:b8:ea:3a:be:af:5e:34:d6:09:2a:69:
d8:3c:6b:23:48:62:45:ce:2f:2f:99:7b:f7:8d:04:
af:88:b4:cb:41:c4:a6:5e:c6:65:65:3f:ff:79:2c:
b7:d5:4c:a3:ec:2c:e8:a6:6b:43:cc:f2:d6:6f:0a:
36:68:6f:f5:21:cc:64:64:80:87:75:65:21:fd:fc:
15:ac:6a:2c:35:81:e1:5d:f2:68:81:ae:1a:c5:59:
c4:b0:ef:9f:5c:9a:d6:8f:cd:02:b0:88:17:7b:24:
7f:f4:4f:e2:4f:ca:97:e6:64:a8:b0:60:c3:b9:52:
de:0d:e0:55:b9:81:ac:ba:fe:82:c0:4e:2e:26:65:
5a:47:ed:c7:2a:8e:41:66:59:d9:ea:2b:39:ad:00:
0c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:6C:F1:78:9F:A6:D1:A8:43:82:23:06:65:74:A9:B6:DA:C7:22:AD
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/vGzxeJ-m0ahDgiMGZXSpttrHIq0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.97.38.0/24
Signature Algorithm: sha256WithRSAEncryption
19:89:46:25:d3:40:9b:fc:04:fd:97:dc:4f:1c:af:ff:7a:17:
7f:ff:b3:87:26:94:d2:7d:46:d3:b5:f4:4f:dc:6b:9f:3a:c5:
74:43:f6:1c:e9:a7:17:0f:b3:c4:e7:0a:48:ae:89:c9:d9:c2:
b4:fb:da:bf:14:60:ea:70:3a:54:9a:99:be:d4:43:b5:b2:87:
b5:9f:07:8d:1a:87:62:50:62:e5:42:a7:9a:a3:1c:3a:1e:9d:
c1:bf:22:2d:9b:80:07:79:7a:64:fd:92:cf:b2:ca:a4:57:f8:
c2:e0:88:a7:bb:7f:10:8d:53:e3:21:83:a0:01:58:1c:d9:19:
96:0e:8c:3b:8a:a8:a6:53:7d:52:fc:cb:ba:ba:e4:ec:6a:e8:
f6:96:d4:25:1b:32:66:3b:9b:c0:43:a7:b2:db:b9:cd:44:3d:
a0:9e:90:2b:61:12:0b:01:0e:97:59:2e:bf:c4:de:41:e7:c5:
a4:20:33:30:2c:82:00:61:b6:32:6a:3b:77:1a:33:1d:7d:2c:
32:da:05:20:62:7d:bc:0f:7c:b7:05:0f:97:12:1b:10:de:ad:
fd:d0:21:3b:78:b6:be:83:c2:fe:2b:73:85:72:90:2b:ce:a8:
89:f5:02:29:93:2a:7c:78:ab:8b:a5:fa:38:45:6e:4d:27:e9:
af:1d:66:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:09:54 2025 by rpki-client