Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10247/oGm89RdPbYxMKnLSVCRrizLEwik.roa
File: oGm89RdPbYxMKnLSVCRrizLEwik.roa (raw, json)
Hash identifier: Sd0ajvOkf8329L3SLq0gFeCbPKb+otoPS2uLlxqt2oM=
Subject key identifier: A0:69:BC:F5:17:4F:6D:8C:4C:2A:72:D2:54:24:6B:8B:32:C4:C2:29
Certificate issuer: /CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A
Certificate serial: 0191
Authority key identifier: 20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/oGm89RdPbYxMKnLSVCRrizLEwik.roa
Signing time: Sat 01 Jul 2023 01:30:58 +0000
ROA not before: Sat 01 Jul 2023 01:30:58 +0000
ROA not after: Fri 14 Jun 2024 01:30:02 +0000
asID: 7684
IP address blocks: 112.78.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401 (0x191)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A
Validity
Not Before: Jul 1 01:30:58 2023 GMT
Not After : Jun 14 01:30:02 2024 GMT
Subject: CN=A069BCF5174F6D8C4C2A72D254246B8B32C4C229
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f8:e5:1e:fd:33:86:c7:b3:ef:c8:c4:01:08:
d5:b6:a9:2d:16:86:86:ef:56:ea:f8:44:41:ef:86:
fd:a6:c8:9a:1d:78:d1:49:bc:aa:20:bf:0f:f6:af:
08:20:a7:c7:76:b4:e0:de:36:53:60:36:81:d3:01:
0e:9a:b9:9f:24:d2:59:dd:6f:e0:f1:1e:7b:e5:6e:
61:74:3b:79:14:76:99:38:22:c0:67:e7:90:ff:45:
b3:90:ce:71:a9:40:2d:42:60:3e:af:7b:ea:4e:48:
d9:01:a6:71:56:b6:fa:8d:71:fe:e3:9e:1f:27:a4:
cc:3e:11:0d:fd:8c:04:76:9c:c3:3f:96:de:73:90:
c9:29:12:2d:86:b6:c6:37:57:3a:63:26:19:12:f8:
e4:34:83:03:67:23:4b:cd:0b:e9:b4:66:be:be:f8:
00:d5:f1:e1:a2:71:7f:a3:ed:69:04:0c:bc:b5:35:
b7:b9:20:6b:a3:3a:1e:cf:27:b0:be:9c:2b:5d:a4:
5f:fc:f7:93:c3:a2:16:11:cf:43:1e:bb:25:51:c0:
59:0c:f0:0a:d4:10:16:0d:1e:a1:b3:8e:14:5c:86:
1f:69:42:f5:d0:0c:2d:51:ab:f7:b3:d3:ac:f6:a1:
7d:eb:9e:cf:08:21:7f:10:09:d5:13:94:ea:5b:ae:
7e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:69:BC:F5:17:4F:6D:8C:4C:2A:72:D2:54:24:6B:8B:32:C4:C2:29
X509v3 Authority Key Identifier:
keyid:20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/oGm89RdPbYxMKnLSVCRrizLEwik.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
112.78.212.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:00:b4:c2:19:ef:b6:e4:8a:d0:0c:85:79:bd:54:72:23:1d:
e5:08:b5:e3:b8:8c:ba:da:b6:d5:14:e5:e2:db:4d:e9:0a:66:
57:5d:58:1e:cd:f0:75:2a:dd:bf:71:e6:99:a7:eb:12:0c:08:
93:79:9a:6f:b8:c9:f1:50:28:a8:60:a9:be:5e:45:de:3f:af:
ec:06:1b:d3:88:b4:0d:32:85:3e:cd:17:c7:59:c5:b6:c8:4c:
24:9c:8e:93:10:5b:83:3d:fe:ac:45:e4:3a:73:3f:1a:e1:18:
4b:34:70:91:5c:dd:fa:40:28:64:ae:3c:5b:c0:bd:9d:85:b0:
4b:21:5b:f7:13:a0:14:2c:c4:d1:56:b6:04:5b:44:f5:ba:5a:
a7:bb:16:47:ee:b9:48:66:b3:c4:67:9b:5b:b3:16:2f:67:47:
31:e4:90:54:da:f5:77:81:c5:a9:19:fd:81:c7:50:a3:fc:17:
de:fd:03:af:78:0e:41:e3:46:be:85:23:cb:a5:51:54:07:8e:
52:23:8c:51:80:44:55:a4:42:7a:f7:77:3e:53:fa:12:76:57:
51:c9:ed:82:1a:81:5e:3b:a1:01:15:39:f2:9d:2c:21:67:12:
10:b7:73:9b:f0:e1:49:69:92:4f:9d:a4:96:c5:e2:e0:55:6c:
72:8a:5a:0b
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjAz
MjBGNkQwOURCMThDMEY3MEIzNTRBM0Q4NzQ1MEY3MEU2RDcxQTAeFw0yMzA3MDEw
MTMwNThaFw0yNDA2MTQwMTMwMDJaMDMxMTAvBgNVBAMTKEEwNjlCQ0Y1MTc0RjZE
OEM0QzJBNzJEMjU0MjQ2QjhCMzJDNEMyMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDT+OUe/TOGx7PvyMQBCNW2qS0WhobvVur4REHvhv2myJodeNFJ
vKogvw/2rwggp8d2tODeNlNgNoHTAQ6auZ8k0lndb+DxHnvlbmF0O3kUdpk4IsBn
55D/RbOQznGpQC1CYD6ve+pOSNkBpnFWtvqNcf7jnh8npMw+EQ39jAR2nMM/lt5z
kMkpEi2GtsY3VzpjJhkS+OQ0gwNnI0vNC+m0Zr6++ADV8eGicX+j7WkEDLy1Nbe5
IGujOh7PJ7C+nCtdpF/895PDohYRz0MeuyVRwFkM8ArUEBYNHqGzjhRchh9pQvXQ
DC1Rq/ez06z2oX3rns8IIX8QCdUTlOpbrn7dAgMBAAGjggIoMIICJDAdBgNVHQ4E
FgQUoGm89RdPbYxMKnLSVCRrizLEwikwHwYDVR0jBBgwFoAUIDIPbQnbGMD3CzVK
PYdFD3Dm1xowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g
W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzEwMjQ3L0lESVBiUW5iR01EM0N6VktQWWRGRDNEbTF4by5jcmwwbQYI
KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y
eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lESVBiUW5iR01EM0N6VktQWWRG
RDNEbTF4by5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj
BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw
L0E5MUE3MzgxMDAwMC8xMDI0Ny9vR204OVJkUGJZeE1LbkxTVkNScml6TEV3aWsu
cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu
anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM
BAIAATAGAwQAcE7UMA0GCSqGSIb3DQEBCwUAA4IBAQBbALTCGe+25IrQDIV5vVRy
Ix3lCLXjuIy62rbVFOXi203pCmZXXVgezfB1Kt2/ceaZp+sSDAiTeZpvuMnxUCio
YKm+XkXeP6/sBhvTiLQNMoU+zRfHWcW2yEwknI6TEFuDPf6sReQ6cz8a4RhLNHCR
XN36QChkrjxbwL2dhbBLIVv3E6AULMTRVrYEW0T1ulqnuxZH7rlIZrPEZ5tbsxYv
Z0cx5JBU2vV3gcWpGf2Bx1Cj/Bfe/QOveA5B40a+hSPLpVFUB45SI4xRgERVpEJ6
93c+U/oSdldRye2CGoFeO6EBFTnynSwhZxIQt3Ob8OFJaZJPnaSWxeLgVWxyiloL
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:30:22 2025 by rpki-client