Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/s4oV0FvrdTPKUYz9Y0LnnN-d_Hw.roa
File: s4oV0FvrdTPKUYz9Y0LnnN-d_Hw.roa (raw, json)
Hash identifier: sjkoyHnTBYhPSZrQH+z4IeOyRuKUKd7lzLTDoN6TQx8=
Subject key identifier: B3:8A:15:D0:5B:EB:75:33:CA:51:8C:FD:63:42:E7:9C:DF:9D:FC:7C
Certificate issuer: /CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9
Certificate serial: 012B
Authority key identifier: 29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/s4oV0FvrdTPKUYz9Y0LnnN-d_Hw.roa
Signing time: Sun 01 Oct 2023 01:28:39 +0000
ROA not before: Sun 01 Oct 2023 01:28:39 +0000
ROA not after: Sat 14 Sep 2024 01:30:03 +0000
asID: 2497
IP address blocks: 133.238.8.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 299 (0x12b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9
Validity
Not Before: Oct 1 01:28:39 2023 GMT
Not After : Sep 14 01:30:03 2024 GMT
Subject: CN=B38A15D05BEB7533CA518CFD6342E79CDF9DFC7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:59:ff:87:57:0d:27:50:6e:46:ea:fd:6e:a4:
ef:13:e3:4a:db:7d:7c:ea:6c:97:28:97:5c:5c:a5:
52:3a:20:19:a9:45:82:89:c4:73:6b:c5:54:c2:b2:
85:06:a9:22:fd:7c:00:0c:0a:a3:a2:c3:dd:78:3a:
3c:33:bd:84:ea:d5:e5:82:74:39:9a:37:62:42:ef:
e9:f2:81:3d:8e:62:68:e5:a4:d0:70:c9:6d:a9:79:
62:d4:a8:db:2e:dd:77:aa:58:04:08:60:73:7a:77:
c9:4e:ec:6d:4a:1a:78:1c:37:dc:d8:49:c5:05:21:
b8:5f:f0:35:19:db:ab:7c:00:c4:f3:e5:11:a6:c5:
c0:18:2b:62:03:b1:06:3e:10:9b:67:31:d0:63:2e:
21:86:be:6d:97:d0:d7:ab:29:ea:45:e2:6a:35:f6:
c3:48:17:75:89:19:d1:ff:22:ed:f2:3a:54:2d:e0:
84:09:88:81:2e:7f:5d:1a:d3:bb:d2:03:49:f5:6a:
8f:b6:d5:78:c6:af:ae:f9:2b:f2:69:0d:5e:d7:fd:
f4:85:c0:ff:9d:44:8d:f7:80:ab:6e:a4:2c:97:5b:
8c:83:93:a9:95:d1:82:55:98:06:1e:3c:95:83:38:
f1:56:37:3e:6e:d3:4a:38:65:94:00:81:41:ee:56:
b0:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:8A:15:D0:5B:EB:75:33:CA:51:8C:FD:63:42:E7:9C:DF:9D:FC:7C
X509v3 Authority Key Identifier:
keyid:29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/s4oV0FvrdTPKUYz9Y0LnnN-d_Hw.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
133.238.8.0/21
Signature Algorithm: sha256WithRSAEncryption
03:81:34:77:61:9b:5f:af:62:6e:a7:fc:45:bf:98:94:42:df:
04:01:3e:0d:1b:6e:5d:fb:45:e8:47:58:1c:98:4c:64:84:4c:
b0:d8:a6:ca:ad:c1:58:8a:37:80:e4:a6:ca:ec:99:69:37:70:
98:69:09:b0:f9:7c:cf:b1:89:c9:af:6b:7f:47:21:f8:83:6a:
c0:73:c9:cc:f5:dd:a3:67:7e:12:1f:1b:99:3f:4f:94:31:22:
29:85:ff:a6:06:c8:8e:43:57:40:10:0e:10:68:39:01:f1:50:
b0:76:34:b5:ad:fb:f3:9d:ae:7b:a6:07:a1:52:dd:0f:2d:bb:
30:7b:fa:d0:be:72:d5:de:9a:f5:e2:a4:3c:b5:3c:ab:d2:33:
d4:f3:0d:8e:14:7e:42:44:fa:74:21:96:03:2a:4a:4e:2f:bf:
20:b8:49:65:bd:ac:dd:7c:c7:5d:90:ce:7b:65:2d:69:33:ff:
50:53:ac:f2:6d:bc:58:78:35:c9:c5:19:e6:3a:74:1b:58:b1:
f5:c4:46:d5:b3:a3:69:a8:0a:22:b5:f8:d3:ef:ec:ae:18:69:
c0:b0:9d:a6:47:e9:c2:ae:00:9b:5b:6a:b9:14:c0:5c:12:44:
4a:4d:fd:9e:a9:d6:cb:9c:16:3e:d5:00:ca:89:6d:6d:37:27:
10:82:23:cb
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgICASswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk4
M0NGRDVGOENBRkEwMDY4RDJFQkEyNUVEMEY3MDEyNDRCMTJGOTAeFw0yMzEwMDEw
MTI4MzlaFw0yNDA5MTQwMTMwMDNaMDMxMTAvBgNVBAMTKEIzOEExNUQwNUJFQjc1
MzNDQTUxOENGRDYzNDJFNzlDREY5REZDN0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDCWf+HVw0nUG5G6v1upO8T40rbfXzqbJcol1xcpVI6IBmpRYKJ
xHNrxVTCsoUGqSL9fAAMCqOiw914OjwzvYTq1eWCdDmaN2JC7+nygT2OYmjlpNBw
yW2peWLUqNsu3XeqWAQIYHN6d8lO7G1KGngcN9zYScUFIbhf8DUZ26t8AMTz5RGm
xcAYK2IDsQY+EJtnMdBjLiGGvm2X0NerKepF4mo19sNIF3WJGdH/Iu3yOlQt4IQJ
iIEuf10a07vSA0n1ao+21XjGr675K/JpDV7X/fSFwP+dRI33gKtupCyXW4yDk6mV
0YJVmAYePJWDOPFWNz5u00o4ZZQAgUHuVrC1AgMBAAGjggIgMIICHDAdBgNVHQ4E
FgQUs4oV0FvrdTPKUYz9Y0LnnN+d/HwwHwYDVR0jBBgwFoAUKYPP1fjK+gBo0uui
XtD3ASRLEvkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBkBgNVHR8EXTBbMFmg
V6BVhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzYvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JMRXZrLmNybDBtBggrBgEF
BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p
Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JM
RXZrLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgbkGCCsGAQUFBwELBIGsMIGpMF8GCCsG
AQUFBzALhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx
QTczODEwMDAwLzYvczRvVjBGdnJkVFBLVVl6OVkwTG5uTi1kX0h3LnJvYTBGBggr
BgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3JyZHAv
YXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
A4XuCDANBgkqhkiG9w0BAQsFAAOCAQEAA4E0d2GbX69ibqf8Rb+YlELfBAE+DRtu
XftF6EdYHJhMZIRMsNimyq3BWIo3gOSmyuyZaTdwmGkJsPl8z7GJya9rf0ch+INq
wHPJzPXdo2d+Eh8bmT9PlDEiKYX/pgbIjkNXQBAOEGg5AfFQsHY0ta37852ue6YH
oVLdDy27MHv60L5y1d6a9eKkPLU8q9Iz1PMNjhR+QkT6dCGWAypKTi+/ILhJZb2s
3XzHXZDOe2UtaTP/UFOs8m28WHg1ycUZ5jp0G1ix9cRG1bOjaagKIrX40+/srhhp
wLCdpkfpwq4Am1tquRTAXBJESk39nqnWy5wWPtUAyoltbTcnEIIjyw==
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:39:51 2025 by rpki-client