Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/aY7XKDLQMFAtg51A95YP6PW0qfg.roa
File: aY7XKDLQMFAtg51A95YP6PW0qfg.roa (raw, json)
Hash identifier: SB2pvWZPQguotm3ieJkNNAFnI+KLQIKGgHcxnEjwje8=
Subject key identifier: 69:8E:D7:28:32:D0:30:50:2D:83:9D:40:F7:96:0F:E8:F5:B4:A9:F8
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0344
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aY7XKDLQMFAtg51A95YP6PW0qfg.roa
Signing time: Thu 01 Jun 2023 16:10:46 +0000
ROA not before: Thu 01 Jun 2023 16:10:46 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.96.36.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 836 (0x344)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 16:10:46 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=698ED72832D030502D839D40F7960FE8F5B4A9F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a0:95:80:d4:ee:27:ed:d1:93:fe:ae:17:e5:
36:c2:d8:83:b1:05:37:b7:7f:fe:40:b4:40:4d:fa:
14:81:82:68:ae:32:71:3a:bc:60:0d:6e:62:9b:6d:
13:4e:bc:39:f6:78:30:66:3a:17:96:ce:b4:bc:7c:
63:82:26:81:63:6e:fe:2e:2a:0c:54:8c:3c:dd:af:
33:d8:03:a9:63:88:76:0c:9b:9b:b2:95:84:1c:0e:
89:2e:b2:f5:29:11:77:cf:77:de:81:63:e0:43:de:
61:a9:20:4d:d6:d0:72:d3:d9:0b:d5:4e:d9:26:ea:
0b:6d:1f:45:b6:f5:2f:71:13:b9:27:07:57:a1:e3:
c2:ce:b6:88:ac:25:06:2b:66:c6:65:81:99:d8:56:
14:40:8c:e5:85:b9:8d:56:4e:bb:a4:02:80:2d:dc:
e2:4e:8f:23:1a:83:97:bb:c3:b4:f0:61:91:bc:f5:
aa:59:43:1a:15:67:06:5b:3e:b6:e5:c1:57:b6:86:
22:26:e0:46:4c:d4:f2:a7:ef:25:55:1b:5e:f7:fb:
00:28:0d:28:8e:da:04:fb:ec:ba:2d:64:27:16:ae:
f0:6b:06:4e:98:ec:4c:7d:a3:9b:55:34:d6:08:ea:
84:2c:52:7a:4a:e7:89:6a:79:b4:ed:12:71:62:a0:
3a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:8E:D7:28:32:D0:30:50:2D:83:9D:40:F7:96:0F:E8:F5:B4:A9:F8
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aY7XKDLQMFAtg51A95YP6PW0qfg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.96.36.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:5a:b0:b1:c9:2e:5d:23:8f:87:a0:e6:a2:c7:bd:ea:61:f4:
29:9f:63:5a:cf:01:9a:3c:3e:28:a6:85:bc:20:e0:39:bd:cf:
4e:ad:dd:a4:75:cf:2f:bd:8b:33:db:10:5e:b3:22:ce:20:b0:
61:bd:7d:55:f7:e0:df:2b:7b:b6:1e:64:a0:65:aa:67:68:e8:
4e:bc:19:25:00:da:ad:7d:dc:8b:d9:b3:1b:03:a3:49:d2:53:
5c:07:2f:6e:35:22:ab:e9:fd:b7:02:81:3f:e1:73:e5:1d:19:
45:81:1f:22:e0:37:1e:56:6c:8e:cf:8b:c9:f3:b1:eb:ac:f4:
87:04:fe:94:f1:ff:fa:05:55:02:3c:22:b6:8b:64:6b:11:2b:
85:62:9b:41:53:a3:ee:38:82:99:98:91:f1:40:09:9f:a8:eb:
a7:9b:34:69:78:f2:2a:74:68:9e:bc:05:d4:d8:6e:8b:12:12:
e0:82:3c:62:6b:26:b5:91:d4:fc:17:e4:c2:84:42:bd:ce:a8:
17:10:bd:c4:ec:79:b8:fe:ca:61:a5:c3:99:f0:41:6a:44:a1:
12:a0:cb:0b:a8:f9:e6:63:1a:e5:63:c5:ce:99:e2:c4:26:0b:
96:e7:9d:7c:d2:fb:8d:2c:c9:66:28:84:3b:5c:2f:c8:37:02:
13:b2:b6:7d
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICA0QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA2MDEx
NjEwNDZaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDY5OEVENzI4MzJEMDMw
NTAyRDgzOUQ0MEY3OTYwRkU4RjVCNEE5RjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDFoJWA1O4n7dGT/q4X5TbC2IOxBTe3f/5AtEBN+hSBgmiuMnE6
vGANbmKbbRNOvDn2eDBmOheWzrS8fGOCJoFjbv4uKgxUjDzdrzPYA6ljiHYMm5uy
lYQcDokusvUpEXfPd96BY+BD3mGpIE3W0HLT2QvVTtkm6gttH0W29S9xE7knB1eh
48LOtoisJQYrZsZlgZnYVhRAjOWFuY1WTrukAoAt3OJOjyMag5e7w7TwYZG89apZ
QxoVZwZbPrblwVe2hiIm4EZM1PKn7yVVG173+wAoDSiO2gT77LotZCcWrvBrBk6Y
7Ex9o5tVNNYI6oQsUnpK54lqebTtEnFioDoLAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUaY7XKDLQMFAtg51A95YP6PW0qfgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L2FZN1hLRExRTUZBdGc1MUE5NVlQNlBXMHFmZy5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAIxYCQwDQYJKoZIhvcNAQELBQADggEBAKtasLHJLl0jj4eg5qLHveph9Cmf
Y1rPAZo8Piimhbwg4Dm9z06t3aR1zy+9izPbEF6zIs4gsGG9fVX34N8re7YeZKBl
qmdo6E68GSUA2q193IvZsxsDo0nSU1wHL241Iqvp/bcCgT/hc+UdGUWBHyLgNx5W
bI7Pi8nzseus9IcE/pTx//oFVQI8IraLZGsRK4Vim0FTo+44gpmYkfFACZ+o66eb
NGl48ip0aJ68BdTYbosSEuCCPGJrJrWR1PwX5MKEQr3OqBcQvcTsebj+ymGlw5nw
QWpEoRKgywuo+eZjGuVjxc6Z4sQmC5bnnXzS+40syWYohDtcL8g3AhOytn0=
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:25:40 2025 by rpki-client