Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/bj9lhjjmvCGxlW3LAW1r3ZEFxXI.roa
File: bj9lhjjmvCGxlW3LAW1r3ZEFxXI.roa (raw, json)
Hash identifier: E7v6oXm+iDFMwSSB6L2Dn5Jmh6Wh7WHwC3+DSRbm5Qc=
Subject key identifier: 6E:3F:65:86:38:E6:BC:21:B1:95:6D:CB:01:6D:6B:DD:91:05:C5:72
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 01ED
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/bj9lhjjmvCGxlW3LAW1r3ZEFxXI.roa
Signing time: Tue 30 May 2023 16:29:19 +0000
ROA not before: Tue 30 May 2023 16:29:19 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 220.159.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 493 (0x1ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:29:19 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=6E3F658638E6BC21B1956DCB016D6BDD9105C572
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:70:49:3e:d2:69:2d:f7:ef:57:b9:2f:ee:5c:
ab:7d:2f:f7:7d:14:b0:68:dc:43:82:ae:02:7d:a3:
78:f2:ae:bb:fa:77:8e:7c:d6:5c:39:a3:0c:73:a0:
af:15:4e:73:88:8c:22:1b:54:1e:2a:3d:7c:45:4c:
5b:1a:ce:f0:5b:8e:b2:b6:30:0f:ff:47:a6:b2:2f:
62:53:2e:1c:43:58:79:82:ff:f7:22:8d:22:c2:83:
1d:51:ab:3e:f1:48:23:bd:1d:25:43:2c:9f:48:e9:
16:4f:21:51:72:53:f1:15:3d:b7:72:48:56:51:dc:
3d:44:7d:87:4c:87:2c:c7:29:d2:c7:a2:85:50:9a:
54:67:41:83:b6:1a:2e:16:ac:be:ee:3f:e3:d8:02:
93:db:da:7a:33:51:d6:5a:da:08:52:c4:96:73:c0:
4f:b1:01:74:db:9e:fc:97:06:53:9d:4b:ce:57:74:
6b:96:32:fa:de:f3:9b:a1:b6:12:af:7d:18:21:1a:
83:fd:9b:48:65:d2:8e:12:a1:36:44:c2:dd:fd:3c:
1d:59:9b:31:dc:95:db:15:fc:cb:f2:d1:09:4a:0b:
4b:db:f5:8e:90:e1:d1:ca:72:e1:df:14:31:59:7e:
2c:2a:6a:4c:b5:15:92:ce:77:66:8c:b1:3e:33:bc:
fb:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:3F:65:86:38:E6:BC:21:B1:95:6D:CB:01:6D:6B:DD:91:05:C5:72
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/bj9lhjjmvCGxlW3LAW1r3ZEFxXI.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.159.21.0/24
Signature Algorithm: sha256WithRSAEncryption
35:77:86:f4:53:e3:37:28:e4:1e:10:87:2c:13:15:dd:1b:f7:
d6:9a:a5:ce:e5:39:c3:2c:45:95:a7:85:a7:00:56:68:67:e6:
73:44:55:99:5a:18:31:2d:5a:85:8b:6e:1e:4f:da:f6:7e:47:
c9:19:8c:01:05:ab:4d:c5:43:ab:53:0d:da:ee:1e:91:af:b1:
f9:f3:7f:73:8a:9b:6d:bf:63:51:4a:d8:7e:99:40:9f:a9:ad:
85:82:1c:ec:08:b8:93:be:8c:d5:e7:76:e8:31:82:64:42:a5:
81:9c:5f:ed:80:13:9d:fc:bd:fd:74:8c:bc:0a:6c:2f:4e:dd:
77:1d:e5:48:ec:4c:cf:df:22:c2:18:4a:d8:29:5e:59:c1:9a:
4d:9f:df:25:ee:19:3b:97:1b:b8:93:52:4c:ca:07:31:e4:5d:
23:f6:58:c0:e2:42:04:7f:67:85:e0:44:37:53:da:09:c2:27:
a4:93:ed:1f:1e:0a:e9:e0:60:b2:05:e1:66:b5:6c:56:45:a4:
d5:78:22:65:e4:4f:06:aa:a9:c3:26:6e:7b:cb:40:fe:3e:d6:
bb:99:fd:aa:00:ec:8c:41:f3:94:44:24:2e:64:e0:b4:a1:9e:
d8:42:22:dc:92:35:e6:66:43:24:2f:1d:02:cf:df:67:c0:82:
4d:af:50:55
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAe0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MzAx
NjI5MTlaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDZFM0Y2NTg2MzhFNkJD
MjFCMTk1NkRDQjAxNkQ2QkREOTEwNUM1NzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDRcEk+0mkt9+9XuS/uXKt9L/d9FLBo3EOCrgJ9o3jyrrv6d458
1lw5owxzoK8VTnOIjCIbVB4qPXxFTFsazvBbjrK2MA//R6ayL2JTLhxDWHmC//ci
jSLCgx1Rqz7xSCO9HSVDLJ9I6RZPIVFyU/EVPbdySFZR3D1EfYdMhyzHKdLHooVQ
mlRnQYO2Gi4WrL7uP+PYApPb2nozUdZa2ghSxJZzwE+xAXTbnvyXBlOdS85XdGuW
Mvre85uhthKvfRghGoP9m0hl0o4SoTZEwt39PB1ZmzHcldsV/Mvy0QlKC0vb9Y6Q
4dHKcuHfFDFZfiwqaky1FZLOd2aMsT4zvPsTAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUbj9lhjjmvCGxlW3LAW1r3ZEFxXIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L2JqOWxoamptdkNHeGxXM0xBVzFyM1pFRnhYSS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADcnxUwDQYJKoZIhvcNAQELBQADggEBADV3hvRT4zco5B4QhywTFd0b99aa
pc7lOcMsRZWnhacAVmhn5nNEVZlaGDEtWoWLbh5P2vZ+R8kZjAEFq03FQ6tTDdru
HpGvsfnzf3OKm22/Y1FK2H6ZQJ+prYWCHOwIuJO+jNXndugxgmRCpYGcX+2AE538
vf10jLwKbC9O3Xcd5UjsTM/fIsIYStgpXlnBmk2f3yXuGTuXG7iTUkzKBzHkXSP2
WMDiQgR/Z4XgRDdT2gnCJ6ST7R8eCungYLIF4Wa1bFZFpNV4ImXkTwaqqcMmbnvL
QP4+1ruZ/aoA7IxB85REJC5k4LShnthCItySNeZmQyQvHQLP32fAgk2vUFU=
-----END CERTIFICATE-----
Generated at Tue Apr 15 00:23:29 2025 by rpki-client