Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/qxrfI_77JTCRlsdwozD61v1cvGs.roa
File: qxrfI_77JTCRlsdwozD61v1cvGs.roa (raw, json)
Hash identifier: BRH5RRmz8mqWMsKxuWzx2Hqt0xuyQyMplgBgxA6C1Pg=
Subject key identifier: AB:1A:DF:23:FE:FB:25:30:91:96:C7:70:A3:30:FA:D6:FD:5C:BC:6B
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0251
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/qxrfI_77JTCRlsdwozD61v1cvGs.roa
Signing time: Tue 30 May 2023 16:32:30 +0000
ROA not before: Tue 30 May 2023 16:32:30 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.66.112.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 593 (0x251)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:32:30 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=AB1ADF23FEFB25309196C770A330FAD6FD5CBC6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:44:f4:66:0b:25:4a:d1:b9:97:a7:50:01:f1:
2d:68:6f:74:b3:be:2d:06:9d:d0:8e:88:39:36:29:
34:5e:50:b5:64:f1:09:e4:73:fc:1d:1c:98:6e:51:
0a:e5:ed:38:98:45:59:32:aa:a3:46:55:1e:12:48:
7c:2a:97:ad:d8:bf:64:5d:c3:9e:a5:fe:0c:89:0f:
45:25:da:be:58:94:d3:24:81:fc:a4:33:00:3b:15:
e7:98:e2:2f:8c:04:6a:83:48:5e:38:1c:45:0c:4b:
d0:75:b6:23:0c:a9:d2:a2:e0:88:70:af:dc:ff:f7:
b1:61:73:c2:38:53:9d:e9:94:63:06:eb:24:a1:6c:
c4:e7:d0:ca:b4:6c:ff:73:06:4e:86:c6:d3:1e:1e:
0a:1b:b1:96:1b:f0:30:83:6f:96:83:eb:62:52:6a:
5f:08:30:66:c7:87:cc:1c:76:08:2c:cf:b2:60:d9:
73:77:65:a1:88:8f:ab:a5:e3:0b:44:fa:f8:b1:4b:
79:db:6e:d2:1b:d1:97:c5:05:cc:2f:17:9a:d1:9d:
02:7a:4f:b8:07:73:59:42:e2:50:b8:c0:5c:e4:a0:
b4:0f:75:ae:64:19:61:b9:c2:98:0c:08:38:e9:e3:
d2:d8:73:a4:fb:ea:27:31:25:fb:7d:61:da:1c:be:
eb:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:1A:DF:23:FE:FB:25:30:91:96:C7:70:A3:30:FA:D6:FD:5C:BC:6B
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/qxrfI_77JTCRlsdwozD61v1cvGs.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.66.112.0/20
Signature Algorithm: sha256WithRSAEncryption
7d:dd:a3:b9:55:7a:ea:5f:ac:89:f0:4d:3e:72:6a:63:d2:ca:
ce:9f:a3:b7:85:7b:3c:07:f4:24:32:9c:c8:5b:20:fe:86:d1:
83:69:bf:9a:96:0c:52:74:49:4d:32:7a:c3:6b:c4:4c:15:fd:
2a:dd:ab:60:8c:f7:14:8a:fc:f3:6f:6e:53:78:9d:c5:06:88:
f6:ab:f7:68:f5:a6:76:7b:02:bc:89:2b:cc:a5:d4:b3:e9:d6:
4b:f9:25:0c:5f:8c:c8:b6:0e:64:84:77:03:ad:7d:18:74:56:
b9:c2:4b:f7:f3:65:8b:e4:3f:cd:df:9e:1b:77:4b:1d:30:90:
87:4a:e6:4b:28:5a:20:c0:45:4f:f0:d3:65:e9:11:87:5b:7f:
d4:2d:04:54:77:c1:61:6f:16:7e:47:39:79:52:d4:fb:a4:24:
4a:c0:f4:df:63:eb:85:a3:61:52:89:ae:de:dd:6b:84:b2:91:
d9:67:29:92:1d:86:9f:31:2c:3b:68:40:e7:ec:c9:c4:c7:0c:
ec:70:1d:4e:4a:4f:a1:ca:9f:f0:85:12:2a:b8:85:de:e3:7c:
74:c0:7a:ee:c9:a6:bb:3f:1c:c7:1d:2d:58:dd:51:89:52:88:
6a:5a:2a:a0:cf:c8:66:8a:d1:f5:64:3a:0b:1a:13:d4:bd:65:
9c:b4:43:c6
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAlEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MzAx
NjMyMzBaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKEFCMUFERjIzRkVGQjI1
MzA5MTk2Qzc3MEEzMzBGQUQ2RkQ1Q0JDNkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCcRPRmCyVK0bmXp1AB8S1ob3Szvi0GndCOiDk2KTReULVk8Qnk
c/wdHJhuUQrl7TiYRVkyqqNGVR4SSHwql63Yv2Rdw56l/gyJD0Ul2r5YlNMkgfyk
MwA7FeeY4i+MBGqDSF44HEUMS9B1tiMMqdKi4Ihwr9z/97Fhc8I4U53plGMG6ySh
bMTn0Mq0bP9zBk6GxtMeHgobsZYb8DCDb5aD62JSal8IMGbHh8wcdggsz7Jg2XN3
ZaGIj6ul4wtE+vixS3nbbtIb0ZfFBcwvF5rRnQJ6T7gHc1lC4lC4wFzkoLQPda5k
GWG5wpgMCDjp49LYc6T76icxJft9YdocvuvhAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUqxrfI/77JTCRlsdwozD61v1cvGswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L3F4cmZJXzc3SlRDUmxzZHdvekQ2MXYxY3ZHcy5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAQBQnAwDQYJKoZIhvcNAQELBQADggEBAH3do7lVeupfrInwTT5yamPSys6f
o7eFezwH9CQynMhbIP6G0YNpv5qWDFJ0SU0yesNrxEwV/Srdq2CM9xSK/PNvblN4
ncUGiPar92j1pnZ7AryJK8yl1LPp1kv5JQxfjMi2DmSEdwOtfRh0VrnCS/fzZYvk
P83fnht3Sx0wkIdK5ksoWiDARU/w02XpEYdbf9QtBFR3wWFvFn5HOXlS1PukJErA
9N9j64WjYVKJrt7da4SykdlnKZIdhp8xLDtoQOfsycTHDOxwHU5KT6HKn/CFEiq4
hd7jfHTAeu7Jprs/HMcdLVjdUYlSiGpaKqDPyGaK0fVkOgsaE9S9ZZy0Q8Y=
-----END CERTIFICATE-----
Generated at Sat Apr 5 19:55:47 2025 by rpki-client