Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/hz3m1EM1oavcgUq5DzyewQx7cxY.roa
File: hz3m1EM1oavcgUq5DzyewQx7cxY.roa (raw, json)
Hash identifier: kUc0HrBE/VD/oyaNeM7nF8vblZ7bVW3oBNTDxnO+Lr0=
Subject key identifier: 87:3D:E6:D4:43:35:A1:AB:DC:81:4A:B9:0F:3C:9E:C1:0C:7B:73:16
Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6
Certificate serial: 61
Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/hz3m1EM1oavcgUq5DzyewQx7cxY.roa
Signing time: Wed 01 Dec 2021 01:28:54 +0000
ROA not before: Wed 01 Dec 2021 01:28:54 +0000
ROA not after: Tue 15 Nov 2022 01:30:01 +0000
asID: 8220
IP address blocks: 27.110.24.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97 (0x61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6
Validity
Not Before: Dec 1 01:28:54 2021 GMT
Not After : Nov 15 01:30:01 2022 GMT
Subject: CN=873DE6D44335A1ABDC814AB90F3C9EC10C7B7316
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:9c:74:9c:2f:0a:72:b3:41:b0:a5:9a:52:e7:
f6:97:0f:b9:c5:a0:39:63:21:ab:07:05:05:76:e1:
60:3d:9a:25:de:bd:33:28:8c:3e:f5:be:42:36:be:
85:d7:2a:0f:e4:85:93:c3:c3:e0:a4:61:7e:24:b3:
1f:75:d8:34:9e:2e:d2:5f:a7:0e:8e:c7:48:eb:15:
46:54:f5:02:47:8d:c5:af:5a:8c:df:5c:e7:e6:87:
dc:48:bf:a1:e1:4b:de:b5:a4:26:9d:9c:da:f2:79:
bd:2c:ef:0a:15:1b:66:f4:bd:e0:9f:fa:5f:42:47:
1a:0d:c3:36:4c:45:fc:25:84:46:13:ab:b9:17:78:
a0:4d:d6:43:1f:15:aa:1b:f3:b7:e9:80:aa:dc:38:
56:71:53:83:56:8e:10:c3:14:00:f7:d4:0b:fa:cd:
53:d0:85:be:5c:53:50:83:e1:22:41:3b:0f:5d:4a:
18:fb:d6:2d:f3:db:01:6b:71:7b:c7:0a:4e:41:60:
25:1c:e5:fb:81:b7:b9:9c:ef:46:b3:d9:1d:eb:8b:
4e:ec:1f:fb:f7:e2:d3:89:63:3b:ea:e6:ae:b2:5c:
d4:8c:5e:cf:56:31:35:00:52:3b:f6:8a:1f:50:b1:
7d:b7:8f:71:39:fd:0f:d1:e3:e9:b5:2d:00:87:85:
ec:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:3D:E6:D4:43:35:A1:AB:DC:81:4A:B9:0F:3C:9E:C1:0C:7B:73:16
X509v3 Authority Key Identifier:
keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/hz3m1EM1oavcgUq5DzyewQx7cxY.roa
sbgp-ipAddrBlock: critical
IPv4:
27.110.24.0/21
Signature Algorithm: sha256WithRSAEncryption
03:ea:21:0f:b8:a8:a1:dd:49:3c:d0:c5:28:e8:77:eb:d9:f0:
92:d0:7e:53:fc:6b:e6:6b:ff:42:a6:1b:f2:40:53:8e:b2:6e:
50:a1:c0:40:63:68:e6:79:f6:55:40:d8:5f:90:3e:78:c2:3b:
4a:b2:5c:be:61:da:4b:59:85:84:e8:58:5b:11:c6:74:14:0d:
f3:67:83:5d:45:a6:75:c4:13:26:b9:e5:81:cf:53:58:90:9e:
ab:08:ca:b2:0d:63:1b:16:4a:d5:3a:80:86:b9:cb:cf:f3:88:
62:e9:19:17:3b:8f:11:1f:ee:00:72:c9:8e:14:d9:20:ab:a1:
99:e4:90:85:7e:13:6b:b6:82:7c:9a:9b:56:4b:04:5c:dd:3d:
6b:81:79:21:31:54:5a:cd:88:98:fc:34:fb:06:44:b6:53:6c:
07:6b:71:51:d3:38:8c:c5:7c:db:93:df:a6:c0:12:39:90:34:
8f:66:bf:6f:3c:57:98:20:99:5a:6a:d9:84:95:0a:b5:f2:35:
95:67:9a:ba:8f:81:c9:2b:37:98:80:49:eb:15:15:8e:97:b1:
d6:ae:a1:17:ab:a0:37:57:4d:6a:7d:76:c2:dd:da:8d:de:d6:
9b:3d:c4:28:ee:c4:2f:01:6c:ad:cf:01:59:b0:57:2b:87:c9:
cb:20:20:fd
-----BEGIN CERTIFICATE-----
MIIEvDCCA6SgAwIBAgIBYTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0MDYx
MERBNjhFOTNFRDUzOEE0OEE0NkM1MjE0MDI0RUQ1NEQwN0Y2MB4XDTIxMTIwMTAx
Mjg1NFoXDTIyMTExNTAxMzAwMVowMzExMC8GA1UEAxMoODczREU2RDQ0MzM1QTFB
QkRDODE0QUI5MEYzQzlFQzEwQzdCNzMxNjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAKycdJwvCnKzQbClmlLn9pcPucWgOWMhqwcFBXbhYD2aJd69MyiM
PvW+Qja+hdcqD+SFk8PD4KRhfiSzH3XYNJ4u0l+nDo7HSOsVRlT1AkeNxa9ajN9c
5+aH3Ei/oeFL3rWkJp2c2vJ5vSzvChUbZvS94J/6X0JHGg3DNkxF/CWERhOruRd4
oE3WQx8Vqhvzt+mAqtw4VnFTg1aOEMMUAPfUC/rNU9CFvlxTUIPhIkE7D11KGPvW
LfPbAWtxe8cKTkFgJRzl+4G3uZzvRrPZHeuLTuwf+/fi04ljO+rmrrJc1Ixez1Yx
NQBSO/aKH1CxfbePcTn9D9Hj6bUtAIeF7KcCAwEAAaOCAdkwggHVMB0GA1UdDgQW
BBSHPebUQzWhq9yBSrkPPJ7BDHtzFjAfBgNVHSMEGDAWgBRAYQ2mjpPtU4pIpGxS
FAJO1U0H9jAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvNDY5L1FHRU5wbzZUN1ZPS1NLUnNVaFFDVHRWTkJfWS5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1FHRU5wbzZUN1ZPS1NLUnNVaFFDVHRW
TkJfWS5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF
BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3
MzgxMDAwMC80NjkvaHozbTFFTTFvYXZjZ1VxNUR6eWV3UXg3Y3hZLnJvYTAfBggr
BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAxtuGDANBgkqhkiG9w0BAQsFAAOCAQEA
A+ohD7iood1JPNDFKOh369nwktB+U/xr5mv/QqYb8kBTjrJuUKHAQGNo5nn2VUDY
X5A+eMI7SrJcvmHaS1mFhOhYWxHGdBQN82eDXUWmdcQTJrnlgc9TWJCeqwjKsg1j
GxZK1TqAhrnLz/OIYukZFzuPER/uAHLJjhTZIKuhmeSQhX4Ta7aCfJqbVksEXN09
a4F5ITFUWs2ImPw0+wZEtlNsB2txUdM4jMV825PfpsASOZA0j2a/bzxXmCCZWmrZ
hJUKtfI1lWeauo+BySs3mIBJ6xUVjpex1q6hF6ugN1dNan12wt3ajd7Wmz3EKO7E
LwFsrc8BWbBXK4fJyyAg/Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:54 2024 by rpki-client on console-fra.rpki-client.org