Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10247/U76wS8unYATodxbUqt1SBZ9B0uU.roa
File: U76wS8unYATodxbUqt1SBZ9B0uU.roa (raw, json)
Hash identifier: h5Giub8hiBN5JI5Ijy3L6cATabzSCmDFrLo18dG7nBo=
Subject key identifier: 53:BE:B0:4B:CB:A7:60:04:E8:77:16:D4:AA:DD:52:05:9F:41:D2:E5
Certificate issuer: /CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A
Certificate serial: 01BA
Authority key identifier: 20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/U76wS8unYATodxbUqt1SBZ9B0uU.roa
Signing time: Wed 01 Nov 2023 01:29:19 +0000
ROA not before: Wed 01 Nov 2023 01:29:19 +0000
ROA not after: Mon 14 Oct 2024 01:30:03 +0000
asID: 7684
IP address blocks: 49.212.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 442 (0x1ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A
Validity
Not Before: Nov 1 01:29:19 2023 GMT
Not After : Oct 14 01:30:03 2024 GMT
Subject: CN=53BEB04BCBA76004E87716D4AADD52059F41D2E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:74:b8:09:e7:15:db:2a:51:5a:65:22:a6:b0:
fc:c8:6f:cd:31:10:8f:27:5b:78:f9:01:80:7d:bf:
8f:df:e3:40:5b:5c:b5:61:ec:a4:e7:ac:8d:ad:c7:
1f:78:9e:f8:8e:ca:6a:09:9d:2b:86:0c:5b:6d:d0:
0f:b8:c7:c7:e0:10:04:ac:e1:82:cf:1a:54:9e:d2:
9d:cd:4c:1f:f6:e2:76:e0:7f:87:a0:ef:9f:58:dc:
0e:53:4a:0c:b2:5c:1b:5e:0e:83:db:ce:3b:52:fc:
86:57:f6:a8:8f:f6:88:8b:f3:8e:49:6c:62:86:b9:
98:f3:a3:e3:b8:24:51:a9:79:08:b7:2c:af:5a:35:
c4:17:40:c1:3b:ee:37:10:cd:13:4c:bc:06:50:a4:
9b:12:b3:d4:eb:d2:54:96:3d:52:06:bd:a0:d5:48:
3e:68:50:31:9a:54:c6:0b:d5:81:62:6f:0d:84:b4:
51:71:e5:b9:68:ff:21:ac:f9:02:56:67:d9:f4:fb:
d7:0c:d8:4b:79:5b:d8:a5:f4:57:0a:6b:88:5c:ab:
1a:9a:e6:22:84:9a:66:f8:9b:f3:e5:d6:30:3a:be:
cd:66:fb:7c:34:0d:74:e7:c8:af:c1:37:eb:c4:fd:
80:a8:d7:9d:32:c2:93:7e:65:91:9c:48:2c:56:97:
b2:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:BE:B0:4B:CB:A7:60:04:E8:77:16:D4:AA:DD:52:05:9F:41:D2:E5
X509v3 Authority Key Identifier:
keyid:20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/U76wS8unYATodxbUqt1SBZ9B0uU.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.212.70.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:1f:0f:65:ce:53:de:86:3c:e6:cd:06:a7:57:a1:9d:39:e6:
1d:ea:d8:d6:7a:05:a0:f9:d0:3c:12:14:6a:f1:84:08:6c:17:
be:9f:1f:5b:23:34:20:8c:a9:46:30:09:10:a2:7f:5d:aa:c1:
8d:62:a2:7c:8b:53:65:bf:34:54:04:45:a8:6c:fd:f4:de:d0:
f4:17:6d:a5:91:ee:16:b4:70:d0:e0:90:a7:30:d5:a1:13:cd:
59:89:9c:32:1f:77:13:4f:49:7e:6a:64:57:dc:36:80:ec:a5:
f9:1e:88:f2:b3:06:48:a4:be:9d:8d:19:fd:f0:28:e4:eb:94:
2d:5d:8b:71:7d:87:c1:63:19:dd:76:d3:d5:f0:a5:92:53:a1:
8b:4b:70:be:78:6e:c4:e8:47:fd:6c:ce:bd:2f:02:f6:f8:72:
e9:3d:06:60:70:45:20:70:7c:cd:b6:3a:c4:d9:c7:38:75:5c:
74:79:c7:27:8c:60:1d:f7:0c:b7:b1:7c:91:f6:e1:46:a6:7b:
9f:30:6d:4f:82:e4:c1:3f:81:89:a2:dc:f5:39:63:c3:5f:51:
dc:85:dd:4e:5e:78:4d:1b:2f:5d:ea:20:0a:ff:e3:8b:e4:96:
fc:93:cc:b5:d7:8b:5a:00:8b:48:c7:a6:9e:6e:c1:0f:80:0c:
3f:fc:ba:c4
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgICAbowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjAz
MjBGNkQwOURCMThDMEY3MEIzNTRBM0Q4NzQ1MEY3MEU2RDcxQTAeFw0yMzExMDEw
MTI5MTlaFw0yNDEwMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDUzQkVCMDRCQ0JBNzYw
MDRFODc3MTZENEFBREQ1MjA1OUY0MUQyRTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQChdLgJ5xXbKlFaZSKmsPzIb80xEI8nW3j5AYB9v4/f40BbXLVh
7KTnrI2txx94nviOymoJnSuGDFtt0A+4x8fgEASs4YLPGlSe0p3NTB/24nbgf4eg
759Y3A5TSgyyXBteDoPbzjtS/IZX9qiP9oiL845JbGKGuZjzo+O4JFGpeQi3LK9a
NcQXQME77jcQzRNMvAZQpJsSs9Tr0lSWPVIGvaDVSD5oUDGaVMYL1YFibw2EtFFx
5blo/yGs+QJWZ9n0+9cM2Et5W9il9FcKa4hcqxqa5iKEmmb4m/Pl1jA6vs1m+3w0
DXTnyK/BN+vE/YCo150ywpN+ZZGcSCxWl7KDAgMBAAGjggIoMIICJDAdBgNVHQ4E
FgQUU76wS8unYATodxbUqt1SBZ9B0uUwHwYDVR0jBBgwFoAUIDIPbQnbGMD3CzVK
PYdFD3Dm1xowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g
W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzEwMjQ3L0lESVBiUW5iR01EM0N6VktQWWRGRDNEbTF4by5jcmwwbQYI
KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y
eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lESVBiUW5iR01EM0N6VktQWWRG
RDNEbTF4by5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj
BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw
L0E5MUE3MzgxMDAwMC8xMDI0Ny9VNzZ3Uzh1bllBVG9keGJVcXQxU0JaOUIwdVUu
cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu
anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM
BAIAATAGAwQAMdRGMA0GCSqGSIb3DQEBCwUAA4IBAQA9Hw9lzlPehjzmzQanV6Gd
OeYd6tjWegWg+dA8EhRq8YQIbBe+nx9bIzQgjKlGMAkQon9dqsGNYqJ8i1NlvzRU
BEWobP303tD0F22lke4WtHDQ4JCnMNWhE81ZiZwyH3cTT0l+amRX3DaA7KX5Hojy
swZIpL6djRn98Cjk65QtXYtxfYfBYxnddtPV8KWSU6GLS3C+eG7E6Ef9bM69LwL2
+HLpPQZgcEUgcHzNtjrE2cc4dVx0eccnjGAd9wy3sXyR9uFGpnufMG1PguTBP4GJ
otz1OWPDX1Hchd1OXnhNGy9d6iAK/+OL5Jb8k8y114taAItIx6aebsEPgAw//LrE
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:48:18 2025 by rpki-client