Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30156/Mta7hd10l1zOUbwy7K4Vm6zC5l0.roa
File: Mta7hd10l1zOUbwy7K4Vm6zC5l0.roa (raw, json)
Hash identifier: OanBqS7M1RYLcA92APbdaZYgLVkg1WwyGeCIXgVLPkU=
Subject key identifier: 32:D6:BB:85:DD:74:97:5C:CE:51:BC:32:EC:AE:15:9B:AC:C2:E6:5D
Certificate issuer: /CN=66BB158F422A7BC0ADAE187EE4858F3A1DA91312
Certificate serial: 4B
Authority key identifier: 66:BB:15:8F:42:2A:7B:C0:AD:AE:18:7E:E4:85:8F:3A:1D:A9:13:12
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZrsVj0Iqe8Ctrhh-5IWPOh2pExI.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30156/Mta7hd10l1zOUbwy7K4Vm6zC5l0.roa
Signing time: Thu 29 Feb 2024 01:29:28 +0000
ROA not before: Thu 29 Feb 2024 01:29:28 +0000
ROA not after: Fri 14 Feb 2025 01:30:03 +0000
asID: 55392
IP address blocks: 2404:8e01::/32 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75 (0x4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66BB158F422A7BC0ADAE187EE4858F3A1DA91312
Validity
Not Before: Feb 29 01:29:28 2024 GMT
Not After : Feb 14 01:30:03 2025 GMT
Subject: CN=32D6BB85DD74975CCE51BC32ECAE159BACC2E65D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:d9:ad:11:7c:59:98:17:3e:82:25:b7:9c:1b:
48:b4:ff:3d:17:8f:e5:73:c3:89:57:62:d9:ca:65:
01:2d:3a:6d:48:e3:f9:33:7c:54:a9:4b:22:33:fd:
38:da:a0:64:80:c0:98:46:7c:b3:01:87:e7:99:56:
82:2d:0e:0f:58:18:5e:02:25:98:e6:44:0a:a9:bd:
c9:0b:a4:29:27:a7:74:55:8a:f9:c2:12:68:36:b0:
ac:00:7f:0c:2c:84:f7:4d:b8:a2:2e:86:e7:a2:71:
f0:6d:65:67:92:a7:b1:ea:c3:89:e6:e8:21:b3:9a:
18:ce:83:8a:a4:fd:39:79:09:20:05:14:30:a9:69:
e7:67:fc:ac:0d:bb:ec:e7:85:20:97:d3:73:4b:ba:
87:03:28:27:b2:11:ae:d8:fe:f3:21:0f:17:45:76:
5c:f4:81:b4:22:88:c2:2f:14:76:7c:4d:08:cd:01:
67:25:4f:d9:49:dd:2c:0f:03:96:2e:46:9f:05:d1:
36:9b:46:2b:55:4a:cc:15:11:72:07:7e:43:01:4e:
07:c3:aa:07:fc:80:83:96:5a:21:34:fd:44:b8:d8:
d9:fe:e5:71:07:ef:95:4d:5f:20:00:e8:e3:10:c8:
ad:e4:29:b8:30:6c:6a:e4:84:5e:1d:fb:45:7a:60:
74:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:D6:BB:85:DD:74:97:5C:CE:51:BC:32:EC:AE:15:9B:AC:C2:E6:5D
X509v3 Authority Key Identifier:
keyid:66:BB:15:8F:42:2A:7B:C0:AD:AE:18:7E:E4:85:8F:3A:1D:A9:13:12
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30156/ZrsVj0Iqe8Ctrhh-5IWPOh2pExI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZrsVj0Iqe8Ctrhh-5IWPOh2pExI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30156/Mta7hd10l1zOUbwy7K4Vm6zC5l0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:8e01::/32
Signature Algorithm: sha256WithRSAEncryption
9c:5c:f7:18:91:5b:b5:6a:f5:c3:3f:47:ae:30:13:ab:11:55:
bc:c5:7c:42:dc:97:4f:9c:78:cf:27:b5:b6:1f:ee:91:d4:b2:
f2:80:87:71:1d:43:1d:f9:b4:b5:6e:ae:b8:77:0b:ed:54:48:
f8:4b:90:3c:13:49:81:91:6c:4a:33:63:10:4e:6d:9f:03:0c:
8a:20:2f:2c:36:ba:96:4f:7b:66:a7:e1:4a:76:22:b4:23:82:
d5:b1:3f:78:cc:22:9b:1e:d9:00:f5:c4:e3:03:9b:f0:4e:73:
41:19:73:21:54:b6:95:92:80:30:ad:57:85:66:95:d6:bd:ba:
87:96:cc:5e:fd:ea:c3:06:9a:08:35:71:22:14:a4:9c:4d:82:
49:98:fc:9a:e5:03:1b:85:74:cd:ae:4a:4e:ae:4e:45:73:bd:
b3:30:f5:a3:11:1e:08:fd:89:4d:28:fb:55:a1:90:a2:45:77:
fb:d3:05:64:c9:c8:99:5e:4b:d4:a7:e8:0f:d7:ee:6d:b5:bb:
97:f7:ac:73:f6:39:1e:a5:9f:7e:d9:5c:3f:ad:6f:db:ac:a9:
61:54:9a:80:cd:c6:be:0b:5c:ca:3e:66:ba:c6:c2:eb:50:6e:
dc:4e:be:5c:1b:ea:12:12:f4:02:12:6b:1e:00:0e:d5:5d:73:
5a:88:fd:2f
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgIBSzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2NkJC
MTU4RjQyMkE3QkMwQURBRTE4N0VFNDg1OEYzQTFEQTkxMzEyMB4XDTI0MDIyOTAx
MjkyOFoXDTI1MDIxNDAxMzAwM1owMzExMC8GA1UEAxMoMzJENkJCODVERDc0OTc1
Q0NFNTFCQzMyRUNBRTE1OUJBQ0MyRTY1RDCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAOPZrRF8WZgXPoIlt5wbSLT/PReP5XPDiVdi2cplAS06bUjj+TN8
VKlLIjP9ONqgZIDAmEZ8swGH55lWgi0OD1gYXgIlmOZECqm9yQukKSendFWK+cIS
aDawrAB/DCyE9024oi6G56Jx8G1lZ5KnserDieboIbOaGM6DiqT9OXkJIAUUMKlp
52f8rA277OeFIJfTc0u6hwMoJ7IRrtj+8yEPF0V2XPSBtCKIwi8UdnxNCM0BZyVP
2UndLA8Dli5GnwXRNptGK1VKzBURcgd+QwFOB8OqB/yAg5ZaITT9RLjY2f7lcQfv
lU1fIADo4xDIreQpuDBsauSEXh37RXpgdE0CAwEAAaOCAikwggIlMB0GA1UdDgQW
BBQy1ruF3XSXXM5RvDLsrhWbrMLmXTAfBgNVHSMEGDAWgBRmuxWPQip7wK2uGH7k
hY86HakTEjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb
oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMzAxNTYvWnJzVmowSXFlOEN0cmhoLTVJV1BPaDJwRXhJLmNybDBtBggr
BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5
Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvWnJzVmowSXFlOEN0cmhoLTVJV1BP
aDJwRXhJLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG
CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv
QTkxQTczODEwMDAwLzMwMTU2L010YTdoZDEwbDF6T1Vid3k3SzRWbTZ6QzVsMC5y
b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q
cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E
AgACMAcDBQAkBI4BMA0GCSqGSIb3DQEBCwUAA4IBAQCcXPcYkVu1avXDP0euMBOr
EVW8xXxC3JdPnHjPJ7W2H+6R1LLygIdxHUMd+bS1bq64dwvtVEj4S5A8E0mBkWxK
M2MQTm2fAwyKIC8sNrqWT3tmp+FKdiK0I4LVsT94zCKbHtkA9cTjA5vwTnNBGXMh
VLaVkoAwrVeFZpXWvbqHlsxe/erDBpoINXEiFKScTYJJmPya5QMbhXTNrkpOrk5F
c72zMPWjER4I/YlNKPtVoZCiRXf70wVkyciZXkvUp+gP1+5ttbuX96xz9jkepZ9+
2Vw/rW/brKlhVJqAzca+C1zKPma6xsLrUG7cTr5cG+oSEvQCEmseAA7VXXNaiP0v
-----END CERTIFICATE-----
Generated at Sat Apr 5 20:06:46 2025 by rpki-client