Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/_kit4CA7jO6Ha7PZoPLBJbnjzOs.roa
File: _kit4CA7jO6Ha7PZoPLBJbnjzOs.roa (raw, json)
Hash identifier: 5UZUKNUSF5Mqn4mV8kq2finhuu2gHOytXLJ+1RkSiJ0=
Subject key identifier: FE:48:AD:E0:20:3B:8C:EE:87:6B:B3:D9:A0:F2:C1:25:B9:E3:CC:EB
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 74
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/_kit4CA7jO6Ha7PZoPLBJbnjzOs.roa
Signing time: Mon 27 Mar 2023 16:11:58 +0000
ROA not before: Mon 27 Mar 2023 16:11:58 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.72.0.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116 (0x74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 27 16:11:58 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=FE48ADE0203B8CEE876BB3D9A0F2C125B9E3CCEB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b6:04:3e:90:75:d9:79:61:fe:ee:06:b1:a3:
4e:2c:18:a9:47:ee:c2:0d:4d:0f:6a:55:07:1e:83:
79:47:56:da:c7:26:cb:7a:10:4b:39:75:81:76:ec:
c0:2c:66:c6:40:73:55:6b:8a:da:48:d4:c4:ac:a0:
8f:8f:03:b2:51:43:05:76:1f:f1:62:28:41:a4:3a:
c3:f8:cc:ae:8f:ea:23:71:a2:04:96:4d:fd:52:6f:
20:b4:5a:f3:f1:c0:9b:b2:51:a2:f2:1c:7b:fe:06:
65:c2:49:7a:d9:2b:e0:19:df:02:61:93:df:39:a3:
ec:77:f7:b5:6c:76:20:75:5b:1e:50:60:c4:b5:3c:
08:18:1b:47:f7:36:20:c1:a8:80:2b:69:14:4f:66:
49:e0:77:73:28:ff:a3:aa:ee:16:64:0f:9d:86:4f:
b4:d0:53:f8:0a:e6:41:4c:fd:00:67:b3:36:c1:4e:
27:dc:69:8f:a3:ca:a1:44:f4:86:46:02:67:b5:5b:
52:70:3c:de:57:e8:69:d5:2d:c1:bd:ec:c6:66:c9:
3d:98:82:ea:ea:2d:a7:44:c0:99:76:ad:cf:26:84:
23:dd:d2:c1:7d:77:90:cb:53:d4:e7:1a:1e:7f:ae:
1f:7f:4b:c1:bb:ec:74:d4:31:6e:cb:6c:6c:76:f4:
3b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:48:AD:E0:20:3B:8C:EE:87:6B:B3:D9:A0:F2:C1:25:B9:E3:CC:EB
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/_kit4CA7jO6Ha7PZoPLBJbnjzOs.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.72.0.0/22
Signature Algorithm: sha256WithRSAEncryption
8d:1e:a4:1f:56:35:9a:55:9e:96:ed:16:86:9f:bd:e7:cb:2b:
d2:d8:31:e1:de:0d:90:2c:09:d0:00:e3:d0:29:41:32:c9:35:
1d:e7:8a:3f:2c:a1:30:61:fc:5b:94:94:2e:b1:16:70:61:0f:
fd:8b:ad:b9:89:6c:11:86:8e:a3:37:11:99:dc:55:b6:69:2d:
03:49:4c:48:ba:69:9d:f5:66:15:69:cb:41:c7:eb:82:12:8f:
0c:fa:51:b9:c6:c1:6c:c5:38:83:db:c8:88:82:a5:5b:2b:90:
6f:a0:8b:1b:81:f6:2c:1a:a5:62:ab:a6:3d:53:a2:c8:b5:8a:
c2:7f:18:ac:3b:20:68:f3:9f:e9:e3:36:de:fd:6e:09:9f:43:
7d:73:a7:15:2e:0e:d1:c7:a4:75:32:1a:f3:50:7d:ff:61:16:
55:f5:5a:cd:d9:84:77:ab:8f:f9:07:ac:95:bf:d0:00:03:1b:
d7:eb:fc:a9:02:ac:c1:90:b6:46:6f:2a:4c:0b:52:da:d6:63:
b6:24:d6:77:25:8b:3f:2a:5f:80:37:e8:96:66:8e:28:35:5e:
09:2b:b5:dc:4d:88:c4:00:bf:85:4f:bd:8a:0c:53:e2:d4:70:
b1:28:7e:74:b2:c1:55:77:ce:2f:59:26:4d:b5:87:ba:2a:97:
6d:57:c5:83
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBdDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2OTY1
QjBCMjBEREUwN0E0Qzk3OEUyNDA3M0VBMEUxMTE3QjM3NDczMB4XDTIzMDMyNzE2
MTE1OFoXDTI0MDMxNDAxMzAwMlowMzExMC8GA1UEAxMoRkU0OEFERTAyMDNCOENF
RTg3NkJCM0Q5QTBGMkMxMjVCOUUzQ0NFQjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALu2BD6Qddl5Yf7uBrGjTiwYqUfuwg1ND2pVBx6DeUdW2scmy3oQ
Szl1gXbswCxmxkBzVWuK2kjUxKygj48DslFDBXYf8WIoQaQ6w/jMro/qI3GiBJZN
/VJvILRa8/HAm7JRovIce/4GZcJJetkr4BnfAmGT3zmj7Hf3tWx2IHVbHlBgxLU8
CBgbR/c2IMGogCtpFE9mSeB3cyj/o6ruFmQPnYZPtNBT+ArmQUz9AGezNsFOJ9xp
j6PKoUT0hkYCZ7VbUnA83lfoadUtwb3sxmbJPZiC6uotp0TAmXatzyaEI93SwX13
kMtT1OcaHn+uH39LwbvsdNQxbstsbHb0O1MCAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBT+SK3gIDuM7odrs9mg8sEluePM6zAfBgNVHSMEGDAWgBRpZbCyDd4HpMl44kBz
6g4RF7N0czAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMzA5L2FXV3dzZzNlQjZUSmVPSkFjLW9PRVJlemRITS5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2FXV3dzZzNlQjZUSmVPSkFjLW9PRVJl
emRITS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC8zMDkvX2tpdDRDQTdqTzZIYTdQWm9QTEJKYm5qek9zLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAgFIADANBgkqhkiG9w0BAQsFAAOCAQEAjR6kH1Y1mlWelu0Whp+958sr0tgx
4d4NkCwJ0ADj0ClBMsk1HeeKPyyhMGH8W5SULrEWcGEP/YutuYlsEYaOozcRmdxV
tmktA0lMSLppnfVmFWnLQcfrghKPDPpRucbBbMU4g9vIiIKlWyuQb6CLG4H2LBql
YqumPVOiyLWKwn8YrDsgaPOf6eM23v1uCZ9DfXOnFS4O0cekdTIa81B9/2EWVfVa
zdmEd6uP+Qeslb/QAAMb1+v8qQKswZC2Rm8qTAtS2tZjtiTWdyWLPypfgDfolmaO
KDVeCSu13E2IxAC/hU+9igxT4tRwsSh+dLLBVXfOL1kmTbWHuiqXbVfFgw==
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:30:58 2025 by rpki-client