Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/WF20xseHSH-4GtlZCez_SU997xE.roa
File: WF20xseHSH-4GtlZCez_SU997xE.roa (raw, json)
Hash identifier: 6MSWBaIqZKGfrfdilr6CH4FnQ+diacwrjNmi/ECi9KA=
Subject key identifier: 58:5D:B4:C6:C7:87:48:7F:B8:1A:D9:59:09:EC:FF:49:4F:7D:EF:11
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 02C7
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/WF20xseHSH-4GtlZCez_SU997xE.roa
Signing time: Tue 30 May 2023 17:17:38 +0000
ROA not before: Tue 30 May 2023 17:17:38 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.105.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 711 (0x2c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 17:17:38 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=585DB4C6C787487FB81AD95909ECFF494F7DEF11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b2:3e:9d:6d:34:4a:9e:cb:59:70:83:dd:10:
d3:79:1f:41:2a:4f:f3:f1:f1:dc:1e:10:25:b4:bf:
d6:4f:7b:a0:c3:ca:c0:f1:5e:43:a9:fb:a4:ee:93:
2b:66:b9:fc:e1:db:f4:28:5a:23:40:29:ba:53:58:
89:eb:77:89:e3:ee:e2:ce:60:ff:0a:00:4f:70:63:
91:15:f4:74:6c:ec:2c:ae:3c:96:dd:de:40:2f:07:
31:68:64:ac:5c:7e:42:42:31:66:47:1b:b0:69:78:
fe:0e:19:cb:72:fc:fc:e3:67:48:7a:41:ba:99:fa:
87:2d:19:9e:40:67:b4:7a:1d:1a:ed:65:44:c6:34:
7b:3d:6f:eb:8b:bb:03:81:0d:6e:ea:3d:e0:7c:82:
26:b3:46:98:d9:3f:9e:ae:18:45:b9:72:dd:64:a0:
39:52:7f:eb:a1:05:a8:5f:24:6e:b2:fe:de:5f:9b:
8a:23:a6:2b:9e:17:de:e0:ef:02:93:b9:1a:cd:bc:
51:34:ae:02:c5:f8:a7:e1:d5:16:8a:9a:8c:a0:39:
50:36:d1:71:41:b5:fc:75:d0:c3:99:41:73:b0:be:
fb:17:c1:58:ae:68:2a:6c:1f:66:19:33:f4:3c:3a:
b0:c5:83:42:09:99:72:e4:6e:f3:0f:b6:5a:b1:de:
2e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:5D:B4:C6:C7:87:48:7F:B8:1A:D9:59:09:EC:FF:49:4F:7D:EF:11
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/WF20xseHSH-4GtlZCez_SU997xE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.105.73.0/24
Signature Algorithm: sha256WithRSAEncryption
24:06:65:46:49:bb:0f:0c:94:f6:9e:7c:1c:fe:14:84:bc:55:
a6:be:9e:df:86:13:97:d7:68:a0:2b:c0:1b:a8:04:b3:03:bd:
68:28:78:1f:ae:af:dc:e6:f5:d7:d0:05:75:b1:6c:c1:fb:0e:
84:06:68:46:fe:ba:24:87:b0:6b:22:b0:ae:e9:95:45:9b:0c:
e6:98:e6:83:8d:09:fc:69:ac:76:b6:84:19:77:e9:22:f4:08:
88:35:d1:ea:94:c0:c7:68:8b:f9:24:a6:f6:a0:41:5a:bf:3e:
13:4c:69:10:a7:71:3e:0e:6c:92:8d:d7:7f:15:62:e1:0f:0f:
60:03:f4:a1:fd:2a:b5:40:76:2e:9f:08:60:0f:a2:f7:df:cb:
50:6d:76:a7:76:80:da:1d:c2:f0:23:62:d7:14:b4:33:be:78:
12:fc:eb:c0:0f:5e:64:7a:f4:c8:76:c9:ed:88:67:ab:3a:f3:
8e:c4:f3:50:cb:87:ad:14:4f:53:47:ed:2f:b2:dc:cf:b1:ac:
b5:66:34:9b:aa:30:a4:69:dc:b4:8a:51:9a:3c:72:f9:a4:71:
54:43:28:8d:ea:0a:13:3c:cd:6d:d4:8b:54:9e:70:b8:df:ce:
5a:86:75:80:3c:c9:d2:2d:02:4d:84:d1:26:a6:cf:71:52:5f:
13:9d:ee:5a
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAscwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MzAx
NzE3MzhaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDU4NURCNEM2Qzc4NzQ4
N0ZCODFBRDk1OTA5RUNGRjQ5NEY3REVGMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDCsj6dbTRKnstZcIPdENN5H0EqT/Px8dweECW0v9ZPe6DDysDx
XkOp+6Tukytmufzh2/QoWiNAKbpTWInrd4nj7uLOYP8KAE9wY5EV9HRs7CyuPJbd
3kAvBzFoZKxcfkJCMWZHG7BpeP4OGcty/PzjZ0h6QbqZ+octGZ5AZ7R6HRrtZUTG
NHs9b+uLuwOBDW7qPeB8giazRpjZP56uGEW5ct1koDlSf+uhBahfJG6y/t5fm4oj
piueF97g7wKTuRrNvFE0rgLF+Kfh1RaKmoygOVA20XFBtfx10MOZQXOwvvsXwViu
aCpsH2YZM/Q8OrDFg0IJmXLkbvMPtlqx3i7jAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUWF20xseHSH+4GtlZCez/SU997xEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L1dGMjB4c2VIU0gtNEd0bFpDZXpfU1U5OTd4RS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAAxaUkwDQYJKoZIhvcNAQELBQADggEBACQGZUZJuw8MlPaefBz+FIS8Vaa+
nt+GE5fXaKArwBuoBLMDvWgoeB+ur9zm9dfQBXWxbMH7DoQGaEb+uiSHsGsisK7p
lUWbDOaY5oONCfxprHa2hBl36SL0CIg10eqUwMdoi/kkpvagQVq/PhNMaRCncT4O
bJKN138VYuEPD2AD9KH9KrVAdi6fCGAPovffy1Btdqd2gNodwvAjYtcUtDO+eBL8
68APXmR69Mh2ye2IZ6s6847E81DLh60UT1NH7S+y3M+xrLVmNJuqMKRp3LSKUZo8
cvmkcVRDKI3qChM8zW3Ui1SecLjfzlqGdYA8ydItAk2E0Samz3FSXxOd7lo=
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:46:39 2025 by rpki-client