Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10247/1Ly6t4kFNM_gqGbuOJs2-WAX1N4.roa
File: 1Ly6t4kFNM_gqGbuOJs2-WAX1N4.roa (raw, json)
Hash identifier: OT2toQ+7MmZZefyyrNczom3uPASO79D9xaN+R8keUTo=
Subject key identifier: D4:BC:BA:B7:89:05:34:CF:E0:A8:66:EE:38:9B:36:F9:60:17:D4:DE
Certificate issuer: /CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A
Certificate serial: E7
Authority key identifier: 20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/1Ly6t4kFNM_gqGbuOJs2-WAX1N4.roa
Signing time: Wed 22 Sep 2021 06:34:02 +0000
ROA not before: Wed 22 Sep 2021 06:34:02 +0000
ROA not after: Thu 15 Sep 2022 01:30:02 +0000
asID: 131965
IP address blocks: 219.94.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 231 (0xe7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A
Validity
Not Before: Sep 22 06:34:02 2021 GMT
Not After : Sep 15 01:30:02 2022 GMT
Subject: CN=D4BCBAB7890534CFE0A866EE389B36F96017D4DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0b:64:2e:dc:6c:b0:5e:a7:33:4c:cd:49:cb:
ec:d7:62:ae:60:b3:1e:8e:78:fc:91:a7:eb:1b:3d:
9d:b7:2b:40:eb:84:17:2f:b6:10:ca:7d:c7:11:a3:
ea:d4:fa:2a:2a:9a:a5:50:92:f2:c4:17:da:b0:d5:
a1:a4:e1:a2:b5:09:18:b3:7e:f2:c7:13:c6:c5:0c:
6d:54:97:c2:b7:9f:af:47:b2:de:3b:00:c1:94:24:
63:5f:40:b8:3f:4c:df:b2:74:d5:46:3e:ee:35:2d:
c9:56:eb:22:d7:a8:01:e7:d2:c8:8d:de:15:24:f9:
bd:ee:59:24:68:18:dc:bb:f0:90:be:46:53:f6:a1:
c9:a3:8e:95:f8:23:fd:47:be:9a:ca:31:6a:f9:0a:
c5:c2:fc:88:56:21:57:14:95:0c:76:e7:63:7e:06:
ed:07:29:f3:b3:95:91:47:1c:00:a5:d1:0f:98:77:
79:7d:59:d7:67:fb:ff:fb:fc:50:4c:b0:46:fd:75:
86:c8:e3:0e:e8:f4:b7:2a:9b:31:33:89:0c:85:6e:
c1:bc:91:f5:fc:c4:dc:e4:07:13:62:7e:e4:af:f2:
c1:c8:5a:bd:27:4f:04:cc:cd:ce:80:a7:e1:a3:16:
9a:1e:b8:92:34:c1:a4:9f:c7:3e:3c:25:fd:6a:05:
c4:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:BC:BA:B7:89:05:34:CF:E0:A8:66:EE:38:9B:36:F9:60:17:D4:DE
X509v3 Authority Key Identifier:
keyid:20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/1Ly6t4kFNM_gqGbuOJs2-WAX1N4.roa
sbgp-ipAddrBlock: critical
IPv4:
219.94.203.0/24
Signature Algorithm: sha256WithRSAEncryption
15:3f:f6:8b:1a:ce:00:b6:80:b6:a0:64:2e:f7:a3:c3:a8:c3:
22:ac:6c:47:39:d3:b2:4c:77:bd:f5:15:73:56:5d:aa:2d:94:
10:f1:22:8d:ac:e0:e6:d5:25:a3:65:f4:8f:40:70:eb:a7:86:
c1:4f:9a:c9:03:3d:0c:2b:1b:af:54:1f:d0:ae:48:e1:5a:f8:
5c:cc:50:e6:98:05:03:4c:9d:e1:25:63:5f:b6:df:07:77:03:
fb:f7:e5:b9:60:c0:e7:66:5e:0e:c5:6f:35:8b:64:9f:42:b4:
62:37:03:0b:cb:ec:47:3b:57:db:7c:f7:02:79:f5:07:89:74:
fb:ba:b2:92:88:ea:6e:13:67:2d:97:7d:83:7c:35:75:9c:97:
e3:99:98:c1:0b:39:5c:f6:f6:dd:93:4a:cd:d6:b8:ac:98:4f:
8f:74:86:6c:b3:7c:81:b9:cd:a4:d8:33:0f:27:fe:c2:ff:da:
89:cf:fb:5e:99:49:52:a0:17:6b:a3:e9:7f:49:02:8c:2d:79:
b3:3b:6d:59:87:44:87:45:87:9f:2f:dc:dc:aa:5d:3e:df:43:
dc:4b:84:3c:5d:0e:4e:e1:9a:db:4e:9c:13:e7:b9:44:58:15:
98:87:54:3e:56:96:b0:88:34:55:17:42:6b:1f:70:f3:b5:8f:
79:ab:be:41
-----BEGIN CERTIFICATE-----
MIIEwTCCA6mgAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjAz
MjBGNkQwOURCMThDMEY3MEIzNTRBM0Q4NzQ1MEY3MEU2RDcxQTAeFw0yMTA5MjIw
NjM0MDJaFw0yMjA5MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEQ0QkNCQUI3ODkwNTM0
Q0ZFMEE4NjZFRTM4OUIzNkY5NjAxN0Q0REUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7C2Qu3GywXqczTM1Jy+zXYq5gsx6OePyRp+sbPZ23K0DrhBcv
thDKfccRo+rU+ioqmqVQkvLEF9qw1aGk4aK1CRizfvLHE8bFDG1Ul8K3n69Hst47
AMGUJGNfQLg/TN+ydNVGPu41LclW6yLXqAHn0siN3hUk+b3uWSRoGNy78JC+RlP2
ocmjjpX4I/1HvprKMWr5CsXC/IhWIVcUlQx252N+Bu0HKfOzlZFHHACl0Q+Yd3l9
Wddn+//7/FBMsEb9dYbI4w7o9LcqmzEziQyFbsG8kfX8xNzkBxNifuSv8sHIWr0n
TwTMzc6Ap+GjFpoeuJI0waSfxz48Jf1qBcRvAgMBAAGjggHdMIIB2TAdBgNVHQ4E
FgQU1Ly6t4kFNM/gqGbuOJs2+WAX1N4wHwYDVR0jBBgwFoAUIDIPbQnbGMD3CzVK
PYdFD3Dm1xowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g
W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzEwMjQ3L0lESVBiUW5iR01EM0N6VktQWWRGRDNEbTF4by5jcmwwbQYI
KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y
eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lESVBiUW5iR01EM0N6VktQWWRG
RDNEbTF4by5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr
BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC8xMDI0Ny8xTHk2dDRrRk5NX2dxR2J1T0pzMi1XQVgxTjQucm9h
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA217LMA0GCSqGSIb3DQEBCwUA
A4IBAQAVP/aLGs4AtoC2oGQu96PDqMMirGxHOdOyTHe99RVzVl2qLZQQ8SKNrODm
1SWjZfSPQHDrp4bBT5rJAz0MKxuvVB/QrkjhWvhczFDmmAUDTJ3hJWNftt8HdwP7
9+W5YMDnZl4OxW81i2SfQrRiNwMLy+xHO1fbfPcCefUHiXT7urKSiOpuE2ctl32D
fDV1nJfjmZjBCzlc9vbdk0rN1rismE+PdIZss3yBuc2k2DMPJ/7C/9qJz/temUlS
oBdro+l/SQKMLXmzO21Zh0SHRYefL9zcql0+30PcS4Q8XQ5O4ZrbTpwT57lEWBWY
h1Q+VpawiDRVF0JrH3DztY95q75B
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:15:43 2025 by rpki-client