Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/247/2N1RSqDQGCRRU6K97TdnJOlFbIM.roa
File: 2N1RSqDQGCRRU6K97TdnJOlFbIM.roa (raw, json)
Hash identifier: IDBuqvdU4sVk8tODJ+tIZic3vNx5Tzn+NmKlB/7Gs3U=
Subject key identifier: D8:DD:51:4A:A0:D0:18:24:51:53:A2:BD:ED:37:67:24:E9:45:6C:83
Certificate issuer: /CN=9A21BDFF2DCAFCC138F5BFD6C0330D0219E0F532
Certificate serial: BD
Authority key identifier: 9A:21:BD:FF:2D:CA:FC:C1:38:F5:BF:D6:C0:33:0D:02:19:E0:F5:32
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/miG9_y3K_ME49b_WwDMNAhng9TI.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/2N1RSqDQGCRRU6K97TdnJOlFbIM.roa
Signing time: Sat 01 Jul 2023 01:31:18 +0000
ROA not before: Sat 01 Jul 2023 01:31:18 +0000
ROA not after: Fri 14 Jun 2024 01:30:02 +0000
asID: 9370
IP address blocks: 36.53.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 189 (0xbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9A21BDFF2DCAFCC138F5BFD6C0330D0219E0F532
Validity
Not Before: Jul 1 01:31:18 2023 GMT
Not After : Jun 14 01:30:02 2024 GMT
Subject: CN=D8DD514AA0D018245153A2BDED376724E9456C83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:9b:92:26:0f:e3:a4:9d:27:d1:c1:7d:f6:f7:
c8:45:1c:ae:1c:13:36:61:df:cd:ab:e5:88:f7:e9:
f5:df:fa:1b:f9:97:5c:8f:56:ac:b9:71:2c:0f:b4:
15:4f:31:32:36:69:33:f4:52:d4:07:fd:bb:e6:fa:
6e:ae:79:5f:ba:21:bd:70:65:64:45:dc:69:6f:8e:
dc:fa:a8:ae:c4:c5:81:3b:f9:ab:76:22:2a:c7:fb:
a3:41:f6:b6:7f:09:bd:0e:f5:48:5b:b7:60:b9:1e:
e8:94:9e:2e:97:42:fb:8a:78:86:31:11:b9:e8:09:
01:18:14:40:be:92:06:8c:9c:8e:9e:b0:fd:8e:fe:
c2:8e:41:60:03:98:ec:14:22:42:7b:22:46:ec:44:
f1:66:bb:e9:40:2f:b0:08:99:c3:9f:f1:38:de:97:
c8:9e:e2:54:ee:57:ec:31:3a:e4:37:12:7d:0c:75:
12:ed:37:fa:28:e3:e6:fa:e7:f4:a9:7f:b4:12:d8:
d0:2e:c3:67:59:f1:1d:8a:ce:35:b7:fa:8b:bd:12:
06:f6:5c:da:82:58:6d:ac:78:63:af:08:3d:e9:5a:
18:10:7d:91:46:1a:c1:0e:34:8e:50:8e:6c:4d:90:
06:3f:c2:4b:cd:8c:45:1d:73:35:43:b6:9a:50:a5:
8c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:DD:51:4A:A0:D0:18:24:51:53:A2:BD:ED:37:67:24:E9:45:6C:83
X509v3 Authority Key Identifier:
keyid:9A:21:BD:FF:2D:CA:FC:C1:38:F5:BF:D6:C0:33:0D:02:19:E0:F5:32
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/miG9_y3K_ME49b_WwDMNAhng9TI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/miG9_y3K_ME49b_WwDMNAhng9TI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/2N1RSqDQGCRRU6K97TdnJOlFbIM.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
36.53.0.0/17
Signature Algorithm: sha256WithRSAEncryption
34:ae:85:33:12:9f:25:2c:c5:38:71:d1:b4:a2:eb:a0:31:03:
a2:66:e5:d9:aa:13:c7:22:96:ae:21:81:11:00:e3:f5:2d:43:
58:15:2e:e2:a6:c8:21:af:3c:94:49:7b:29:d1:3b:64:ea:b5:
8b:d7:63:0a:3d:23:b9:d0:2f:f1:16:47:58:95:35:ab:b8:84:
0e:ed:52:58:df:5f:82:c0:38:b3:1d:d1:da:8d:42:78:bc:11:
37:2f:96:43:c1:6d:d6:8b:1f:fe:f8:f7:a5:43:a0:c7:ec:ff:
44:f5:c1:06:e5:ea:f2:bb:d5:da:94:f0:ee:9f:c0:74:bf:78:
fb:32:0c:4e:db:1b:36:f9:94:ff:15:16:bb:f5:66:88:2d:6b:
91:01:7e:6e:7b:83:46:4b:1b:64:8e:d8:a0:ad:11:69:65:1a:
65:49:60:17:6f:f1:08:c3:24:a7:52:7b:5a:d2:26:c1:f5:d7:
48:fc:51:5c:9f:31:91:b6:ac:b8:4f:49:9d:3e:88:d5:1c:84:
58:ef:d8:85:ee:f7:65:96:76:f5:89:ff:6d:96:55:93:00:98:
06:c1:50:8a:2c:d8:d8:be:0d:27:fc:85:c0:93:bc:ce:2b:a0:
34:98:30:e1:98:a6:a5:13:c7:60:05:55:fb:aa:2b:0b:20:5c:
8d:df:a9:23
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUEy
MUJERkYyRENBRkNDMTM4RjVCRkQ2QzAzMzBEMDIxOUUwRjUzMjAeFw0yMzA3MDEw
MTMxMThaFw0yNDA2MTQwMTMwMDJaMDMxMTAvBgNVBAMTKEQ4REQ1MTRBQTBEMDE4
MjQ1MTUzQTJCREVEMzc2NzI0RTk0NTZDODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQD1m5ImD+OknSfRwX3298hFHK4cEzZh382r5Yj36fXf+hv5l1yP
Vqy5cSwPtBVPMTI2aTP0UtQH/bvm+m6ueV+6Ib1wZWRF3Glvjtz6qK7ExYE7+at2
IirH+6NB9rZ/Cb0O9Uhbt2C5HuiUni6XQvuKeIYxEbnoCQEYFEC+kgaMnI6esP2O
/sKOQWADmOwUIkJ7IkbsRPFmu+lAL7AImcOf8Tjel8ie4lTuV+wxOuQ3En0MdRLt
N/oo4+b65/Spf7QS2NAuw2dZ8R2KzjW3+ou9Egb2XNqCWG2seGOvCD3pWhgQfZFG
GsEONI5QjmxNkAY/wkvNjEUdczVDtppQpYwdAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQU2N1RSqDQGCRRU6K97TdnJOlFbIMwHwYDVR0jBBgwFoAUmiG9/y3K/ME49b/W
wDMNAhng9TIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzI0Ny9taUc5X3kzS19NRTQ5Yl9Xd0RNTkFobmc5VEkuY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9taUc5X3kzS19NRTQ5Yl9Xd0RNTkFo
bmc5VEkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMjQ3LzJOMVJTcURRR0NSUlU2Szk3VGRuSk9sRmJJTS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAckNQAwDQYJKoZIhvcNAQELBQADggEBADSuhTMSnyUsxThx0bSi66AxA6Jm
5dmqE8cilq4hgREA4/UtQ1gVLuKmyCGvPJRJeynRO2TqtYvXYwo9I7nQL/EWR1iV
Nau4hA7tUljfX4LAOLMd0dqNQni8ETcvlkPBbdaLH/7496VDoMfs/0T1wQbl6vK7
1dqU8O6fwHS/ePsyDE7bGzb5lP8VFrv1Zogta5EBfm57g0ZLG2SO2KCtEWllGmVJ
YBdv8QjDJKdSe1rSJsH110j8UVyfMZG2rLhPSZ0+iNUchFjv2IXu92WWdvWJ/22W
VZMAmAbBUIos2Ni+DSf8hcCTvM4roDSYMOGYpqUTx2AFVfuqKwsgXI3fqSM=
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:25:03 2025 by rpki-client