Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/454/WCvkOSnJgrBv5at61tbY6VWgsT0.roa
File: WCvkOSnJgrBv5at61tbY6VWgsT0.roa (raw, json)
Hash identifier: 71qSKnFnbsCkRp5YMKDVrq81DN0ugdCZMsn5WyAW/HU=
Subject key identifier: 58:2B:E4:39:29:C9:82:B0:6F:E5:AB:7A:D6:D6:D8:E9:55:A0:B1:3D
Certificate issuer: /CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0
Certificate serial: 21
Authority key identifier: AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/WCvkOSnJgrBv5at61tbY6VWgsT0.roa
Signing time: Fri 29 Sep 2023 06:36:46 +0000
ROA not before: Fri 29 Sep 2023 06:36:46 +0000
ROA not after: Sat 14 Sep 2024 01:30:03 +0000
asID: 10000
IP address blocks: 14.1.8.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33 (0x21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0
Validity
Not Before: Sep 29 06:36:46 2023 GMT
Not After : Sep 14 01:30:03 2024 GMT
Subject: CN=582BE43929C982B06FE5AB7AD6D6D8E955A0B13D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:26:11:c1:dc:a2:86:8c:b6:e3:83:8f:87:43:
70:80:44:10:1e:f3:11:ae:cb:53:8b:ae:37:8f:71:
f8:f9:71:d4:fd:18:23:de:13:c5:7a:d8:d1:83:5b:
2b:78:cb:78:a4:de:cf:9e:6f:37:aa:76:e2:3a:83:
37:17:36:83:82:95:9c:4d:c2:41:21:12:02:8b:87:
ef:b0:ce:53:48:0a:a8:f7:89:b8:06:38:e8:c3:89:
30:36:f0:1d:6f:b4:e1:0f:64:ba:87:42:38:1b:f3:
d4:1b:c0:d4:9d:79:0a:b2:f0:15:19:aa:bf:70:cf:
0d:84:66:37:37:12:e9:6b:ea:fe:94:ae:3d:23:35:
3c:97:c1:f4:45:dc:f2:4a:04:e1:46:cd:b1:fa:5e:
4f:ab:2c:4c:c9:bb:9f:0a:3d:45:99:45:26:db:d7:
00:8b:b7:03:43:7e:69:cf:8e:a9:6e:70:ae:d7:d5:
10:69:1c:72:0a:49:64:77:61:e7:85:04:07:9c:0e:
45:7c:65:26:bb:d2:8f:10:49:73:ca:4e:40:9c:02:
da:3d:0c:50:1a:86:7e:21:7c:1f:ba:cc:65:11:61:
e8:4d:c8:e2:05:e1:75:43:90:9a:aa:c4:4e:8f:c3:
aa:61:a0:fb:56:46:40:cf:ca:1a:54:2f:f8:85:c3:
2f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:2B:E4:39:29:C9:82:B0:6F:E5:AB:7A:D6:D6:D8:E9:55:A0:B1:3D
X509v3 Authority Key Identifier:
keyid:AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/WCvkOSnJgrBv5at61tbY6VWgsT0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.1.8.0/21
Signature Algorithm: sha256WithRSAEncryption
bf:de:36:6e:49:96:9d:b2:02:44:67:4e:e3:3d:00:2b:de:ae:
40:9e:b6:b7:50:ea:4f:3d:5a:b0:17:a2:2f:76:ea:87:ea:d4:
a1:de:7d:a3:71:98:82:64:be:ec:fc:f2:6e:ae:02:87:7f:9c:
e2:42:24:58:26:19:07:9c:ca:02:d6:cc:fb:eb:4e:dd:c0:1e:
88:dd:ed:a0:b1:4c:03:4f:a2:77:4b:53:09:7b:31:93:fc:d3:
a5:47:e8:3c:df:11:59:78:3d:e3:79:47:59:5d:31:ee:55:30:
15:d6:20:a9:6d:6f:d1:b7:16:c1:9a:b3:e4:dd:fa:b7:0a:d0:
fe:fb:ab:54:19:33:cd:c6:5d:36:36:6e:6e:db:f0:50:68:43:
5b:96:96:7c:3f:19:83:90:d1:7f:45:63:b3:98:ea:ce:50:9c:
33:10:ea:34:61:b3:a5:55:cb:ba:5a:61:30:0b:4e:cb:0e:e4:
5e:5a:1c:2d:8c:f9:64:a6:53:74:bc:d4:19:f3:c8:61:d0:ac:
47:8c:da:10:1e:33:43:ca:2a:84:68:72:d0:1e:4b:3f:64:05:
73:af:d1:f0:92:18:c8:c4:26:c5:1a:1a:a9:29:02:ce:3a:4a:
ef:0a:99:4d:bd:bb:da:9e:74:e3:fa:1e:8b:1c:3b:d9:6b:99:
32:ca:ac:6b
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBITANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBRDQ3
NDFGMDM0OUZCQzE1QTcwOEUyOEEyQ0UzMDc5MDZDQUM1REUwMB4XDTIzMDkyOTA2
MzY0NloXDTI0MDkxNDAxMzAwM1owMzExMC8GA1UEAxMoNTgyQkU0MzkyOUM5ODJC
MDZGRTVBQjdBRDZENkQ4RTk1NUEwQjEzRDCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAL4mEcHcooaMtuODj4dDcIBEEB7zEa7LU4uuN49x+Plx1P0YI94T
xXrY0YNbK3jLeKTez55vN6p24jqDNxc2g4KVnE3CQSESAouH77DOU0gKqPeJuAY4
6MOJMDbwHW+04Q9kuodCOBvz1BvA1J15CrLwFRmqv3DPDYRmNzcS6Wvq/pSuPSM1
PJfB9EXc8koE4UbNsfpeT6ssTMm7nwo9RZlFJtvXAIu3A0N+ac+OqW5wrtfVEGkc
cgpJZHdh54UEB5wORXxlJrvSjxBJc8pOQJwC2j0MUBqGfiF8H7rMZRFh6E3I4gXh
dUOQmqrETo/DqmGg+1ZGQM/KGlQv+IXDL+cCAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBRYK+Q5KcmCsG/lq3rW1tjpVaCxPTAfBgNVHSMEGDAWgBStR0HwNJ+8FacI4oos
4weQbKxd4DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvNDU0L3JVZEI4RFNmdkJXbkNPS0tMT01Ia0d5c1hlQS5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3JVZEI4RFNmdkJXbkNPS0tMT01Ia0d5
c1hlQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC80NTQvV0N2a09TbkpnckJ2NWF0NjF0Ylk2Vldnc1QwLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAw4BCDANBgkqhkiG9w0BAQsFAAOCAQEAv942bkmWnbICRGdO4z0AK96uQJ62
t1DqTz1asBeiL3bqh+rUod59o3GYgmS+7Pzybq4Ch3+c4kIkWCYZB5zKAtbM++tO
3cAeiN3toLFMA0+id0tTCXsxk/zTpUfoPN8RWXg943lHWV0x7lUwFdYgqW1v0bcW
wZqz5N36twrQ/vurVBkzzcZdNjZubtvwUGhDW5aWfD8Zg5DRf0Vjs5jqzlCcMxDq
NGGzpVXLulphMAtOyw7kXlocLYz5ZKZTdLzUGfPIYdCsR4zaEB4zQ8oqhGhy0B5L
P2QFc6/R8JIYyMQmxRoaqSkCzjpK7wqZTb272p504/oeixw72WuZMsqsaw==
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:33:09 2025 by rpki-client