Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/w0YYCZ-uqDrm53zzzjqLLHsVeXQ.roa
File: w0YYCZ-uqDrm53zzzjqLLHsVeXQ.roa (raw, json)
Hash identifier: 6Ha9dSUUbQtT+iTBoSJF/lpZ4RCzZxSdYy0HKurnTo0=
Subject key identifier: C3:46:18:09:9F:AE:A8:3A:E6:E7:7C:F3:CE:3A:8B:2C:7B:15:79:74
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0111
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/w0YYCZ-uqDrm53zzzjqLLHsVeXQ.roa
Signing time: Wed 24 May 2023 16:10:17 +0000
ROA not before: Wed 24 May 2023 16:10:17 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.98.156.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 273 (0x111)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:10:17 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=C34618099FAEA83AE6E77CF3CE3A8B2C7B157974
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a2:9e:55:ee:c0:71:2d:58:d0:c0:64:f5:b3:
00:7e:2b:c4:11:b4:54:e4:68:b3:d3:f9:0e:83:f9:
28:62:3c:6d:c1:63:ff:ed:bf:f6:03:84:26:da:fd:
5e:30:2a:b8:3b:36:bc:0c:28:0b:13:82:c4:38:11:
84:6b:e3:6d:1c:ed:d6:d6:7f:5f:ac:88:21:fd:36:
5e:f9:04:87:fb:bc:18:d6:d8:12:3c:25:5a:a6:61:
12:88:47:55:2b:dc:20:3a:ee:b3:0b:b3:0c:c5:c5:
fa:36:b0:bf:4e:64:34:ea:0f:c0:89:9e:b2:eb:3a:
18:b2:71:12:f9:35:6f:8f:f7:b0:35:24:79:2c:79:
47:7c:18:43:2a:cc:bf:8c:4e:ce:6e:5c:8e:f8:91:
16:f9:46:78:39:a5:70:d6:00:4e:2f:18:4b:b6:2f:
92:ef:92:87:68:f3:0d:b5:5a:25:72:d4:29:06:6a:
21:66:cb:c4:b3:8b:11:b8:63:9b:73:2e:e1:e1:02:
5c:7b:50:e2:d6:dd:f7:4d:c6:45:95:92:cd:a3:cc:
73:3a:a6:ff:fd:c9:49:20:45:ee:be:9e:1c:de:2e:
e2:4a:b7:43:a6:13:19:a4:94:a7:63:4a:5b:7a:67:
5f:8c:e2:75:37:c2:65:2c:9a:14:57:20:a0:19:f0:
6f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:46:18:09:9F:AE:A8:3A:E6:E7:7C:F3:CE:3A:8B:2C:7B:15:79:74
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/w0YYCZ-uqDrm53zzzjqLLHsVeXQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.156.0/22
Signature Algorithm: sha256WithRSAEncryption
39:20:4a:d7:a3:09:00:be:38:b5:1a:60:67:7f:dc:e1:c0:cc:
2f:39:36:02:0a:25:0a:cf:60:46:23:ba:a4:f9:06:56:11:03:
9d:d0:e0:28:12:58:6e:4b:89:83:af:c4:90:d0:e0:e9:69:a0:
f2:6c:7a:aa:a8:f5:a2:fb:04:09:74:ab:ea:2a:a4:d9:03:d3:
05:d6:96:2c:8e:62:c7:ba:4a:f3:03:81:ca:7b:6d:ff:11:bb:
c7:76:7a:dd:f6:63:63:7c:9b:4a:78:07:69:8f:3b:fc:af:3c:
4d:22:99:23:d5:41:96:b3:49:d1:9c:5e:20:8e:89:cc:d1:43:
7b:90:d4:a6:8b:b6:46:90:42:d6:6a:5f:52:98:a3:4b:e1:99:
8d:8f:3f:35:68:fa:8a:92:3d:07:3e:fb:6f:94:d0:35:6b:fb:
03:e4:3b:d7:14:e5:86:94:69:8c:e3:22:b1:81:4b:4e:3d:fd:
0e:50:1d:78:1d:c5:a6:cd:e7:2c:14:10:a9:4e:b7:15:f3:cf:
e8:af:72:5c:56:b8:c8:dc:ec:47:bb:15:d7:17:a4:35:0a:35:
cc:f1:d6:9b:f2:41:24:10:21:b6:62:6a:2f:00:70:8c:a0:21:
0f:59:55:08:e8:e1:38:7b:6c:38:48:6c:6a:38:b1:93:af:44:
a6:19:fb:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:52 2024 by rpki-client on console-fra.rpki-client.org