Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/3bQxY5NbVXaeKBiSXWtdv9fdZ1E.roa
File: 3bQxY5NbVXaeKBiSXWtdv9fdZ1E.roa (raw, json)
Hash identifier: nx00sLbOvTTGZfnHj2dqOb1Ad+XWE4b8VEiDZS/gmfw=
Subject key identifier: DD:B4:31:63:93:5B:55:76:9E:28:18:92:5D:6B:5D:BF:D7:DD:67:51
Certificate issuer: /CN=296966DD720C30575F62D8FD4149458A90AACAA4
Certificate serial: 45
Authority key identifier: 29:69:66:DD:72:0C:30:57:5F:62:D8:FD:41:49:45:8A:90:AA:CA:A4
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KWlm3XIMMFdfYtj9QUlFipCqyqQ.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/3bQxY5NbVXaeKBiSXWtdv9fdZ1E.roa
Signing time: Sat 01 Oct 2022 01:29:12 +0000
ROA not before: Sat 01 Oct 2022 01:29:12 +0000
ROA not after: Fri 15 Sep 2023 01:30:03 +0000
asID: 2497
IP address blocks: 157.65.176.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69 (0x45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296966DD720C30575F62D8FD4149458A90AACAA4
Validity
Not Before: Oct 1 01:29:12 2022 GMT
Not After : Sep 15 01:30:03 2023 GMT
Subject: CN=DDB43163935B55769E2818925D6B5DBFD7DD6751
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:bf:af:42:1d:5b:63:1b:d6:4f:b3:cc:31:27:
ee:59:8e:88:32:9e:a8:f8:ee:73:5f:52:63:a4:62:
29:89:16:76:8f:df:20:18:a8:77:09:c5:98:05:c7:
2c:b1:bb:64:96:bb:8b:4d:96:37:d1:27:09:c6:b9:
35:02:e6:96:77:c6:51:9f:2d:d5:c9:4d:ee:90:3b:
ab:84:aa:50:8e:79:df:b3:6a:bb:5a:44:1a:04:b0:
af:cc:92:68:2a:a1:aa:9d:b1:ce:0a:a6:70:47:48:
68:ca:ee:fb:e1:95:53:b3:e2:8b:f7:21:09:50:fa:
16:09:c3:da:7a:b4:ad:ea:a0:10:40:62:67:d4:52:
17:92:99:25:4d:e6:d0:2a:cb:9a:76:54:ae:38:a5:
6b:27:96:e8:6c:84:cd:7a:b9:62:24:ed:f7:c0:3c:
f3:8b:41:96:d0:1f:d4:3e:80:f9:d6:4f:80:8a:99:
d8:69:dd:ec:4f:9c:44:26:c2:b7:b5:bd:9a:58:5a:
dc:80:4c:a1:03:77:af:92:b8:41:cb:49:a4:fc:1d:
a7:07:84:3b:45:83:a8:54:a2:fd:e1:58:4d:c7:58:
e8:72:7b:8e:b8:34:4f:ce:e1:6b:4d:40:69:b5:91:
8d:a3:ad:03:08:c7:5d:a5:ff:a1:eb:5d:b7:45:21:
44:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:B4:31:63:93:5B:55:76:9E:28:18:92:5D:6B:5D:BF:D7:DD:67:51
X509v3 Authority Key Identifier:
keyid:29:69:66:DD:72:0C:30:57:5F:62:D8:FD:41:49:45:8A:90:AA:CA:A4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KWlm3XIMMFdfYtj9QUlFipCqyqQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KWlm3XIMMFdfYtj9QUlFipCqyqQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/3bQxY5NbVXaeKBiSXWtdv9fdZ1E.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.65.176.0/21
Signature Algorithm: sha256WithRSAEncryption
52:81:a0:e3:55:e6:28:81:70:1e:a6:c4:b1:1f:2a:6a:58:ca:
8f:1a:25:f3:f3:dd:08:77:6d:de:04:63:ef:f4:86:d6:b5:ac:
25:ca:b4:9a:25:a3:bc:bb:e1:d2:2e:28:56:95:9d:dd:7a:38:
d2:9f:a8:9b:a7:de:41:5c:24:5d:46:ac:4f:5f:d2:15:9a:13:
16:14:73:24:72:ca:6a:4b:47:b6:f1:d5:f1:ee:a2:6f:83:f4:
df:53:25:ba:72:a2:6f:45:bf:bb:8a:75:80:ef:f3:a1:db:69:
f5:4e:ac:86:88:a5:ca:1e:99:12:88:95:f1:47:e2:3d:4d:fe:
d0:ec:7c:bd:27:fd:83:85:3d:94:6f:3a:61:d5:b5:66:12:a9:
02:fb:07:39:17:8a:7e:a3:2e:31:43:88:e3:40:8d:c0:31:ed:
0e:b6:71:af:34:2c:c4:a5:2f:85:5f:a1:29:84:fa:6e:8a:18:
05:42:5a:d6:11:95:9d:a5:23:8e:51:35:18:b8:b1:f2:5e:50:
bc:a1:c1:fc:7d:a5:e4:04:d8:74:8a:96:a0:49:63:67:8c:69:
ee:90:ff:21:df:6e:be:ca:67:fe:a3:00:16:fe:49:a3:26:d6:
da:2c:cf:cb:64:fc:07:70:b2:5b:18:3c:9e:c9:0d:c4:a9:39:
d6:ec:80:9f
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgIBRTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyOTY5
NjZERDcyMEMzMDU3NUY2MkQ4RkQ0MTQ5NDU4QTkwQUFDQUE0MB4XDTIyMTAwMTAx
MjkxMloXDTIzMDkxNTAxMzAwM1owMzExMC8GA1UEAxMoRERCNDMxNjM5MzVCNTU3
NjlFMjgxODkyNUQ2QjVEQkZEN0RENjc1MTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAL+/r0IdW2Mb1k+zzDEn7lmOiDKeqPjuc19SY6RiKYkWdo/fIBio
dwnFmAXHLLG7ZJa7i02WN9EnCca5NQLmlnfGUZ8t1clN7pA7q4SqUI5537Nqu1pE
GgSwr8ySaCqhqp2xzgqmcEdIaMru++GVU7Pii/chCVD6FgnD2nq0reqgEEBiZ9RS
F5KZJU3m0CrLmnZUrjilayeW6GyEzXq5YiTt98A884tBltAf1D6A+dZPgIqZ2Gnd
7E+cRCbCt7W9mlha3IBMoQN3r5K4QctJpPwdpweEO0WDqFSi/eFYTcdY6HJ7jrg0
T87ha01AabWRjaOtAwjHXaX/oetdt0UhREcCAwEAAaOCAiAwggIcMB0GA1UdDgQW
BBTdtDFjk1tVdp4oGJJda12/191nUTAfBgNVHSMEGDAWgBQpaWbdcgwwV19i2P1B
SUWKkKrKpDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGQGA1UdHwRdMFswWaBX
oFWGU3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvNi9LV2xtM1hJTU1GZGZZdGo5UVVsRmlwQ3F5cVEuY3JsMG0GCCsGAQUF
BwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmlj
LmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9LV2xtM1hJTU1GZGZZdGo5UVVsRmlwQ3F5
cVEuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuQYIKwYBBQUHAQsEgawwgakwXwYIKwYB
BQUHMAuGU3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB
NzM4MTAwMDAvNi8zYlF4WTVOYlZYYWVLQmlTWFd0ZHY5ZmRaMUUucm9hMEYGCCsG
AQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJkcC9h
cC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD
nUGwMA0GCSqGSIb3DQEBCwUAA4IBAQBSgaDjVeYogXAepsSxHypqWMqPGiXz890I
d23eBGPv9IbWtawlyrSaJaO8u+HSLihWlZ3dejjSn6ibp95BXCRdRqxPX9IVmhMW
FHMkcspqS0e28dXx7qJvg/TfUyW6cqJvRb+7inWA7/Oh22n1TqyGiKXKHpkSiJXx
R+I9Tf7Q7Hy9J/2DhT2Ubzph1bVmEqkC+wc5F4p+oy4xQ4jjQI3AMe0OtnGvNCzE
pS+FX6EphPpuihgFQlrWEZWdpSOOUTUYuLHyXlC8ocH8faXkBNh0ipagSWNnjGnu
kP8h326+ymf+owAW/kmjJtbaLM/LZPwHcLJbGDyeyQ3EqTnW7ICf
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:55 2024 by rpki-client on console-fra.rpki-client.org