Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10762/pamOR_F8E9bbHMWgjK5jgK7IIEw.roa
File: pamOR_F8E9bbHMWgjK5jgK7IIEw.roa (raw, json)
Hash identifier: MBTW/O6Ru0AgYrW9sV9IIwLCZ9OOkBvh2fENpCDpEXo=
Subject key identifier: A5:A9:8E:47:F1:7C:13:D6:DB:1C:C5:A0:8C:AE:63:80:AE:C8:20:4C
Certificate issuer: /CN=28393FAE129B501824696BAE24B64734A203C376
Certificate serial: 57
Authority key identifier: 28:39:3F:AE:12:9B:50:18:24:69:6B:AE:24:B6:47:34:A2:03:C3:76
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KDk_rhKbUBgkaWuuJLZHNKIDw3Y.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10762/pamOR_F8E9bbHMWgjK5jgK7IIEw.roa
Signing time: Fri 01 Dec 2023 01:30:20 +0000
ROA not before: Fri 01 Dec 2023 01:30:20 +0000
ROA not after: Thu 14 Nov 2024 01:30:03 +0000
asID: 7514
IP address blocks: 120.89.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87 (0x57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28393FAE129B501824696BAE24B64734A203C376
Validity
Not Before: Dec 1 01:30:20 2023 GMT
Not After : Nov 14 01:30:03 2024 GMT
Subject: CN=A5A98E47F17C13D6DB1CC5A08CAE6380AEC8204C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:99:0c:fd:87:5c:f7:88:a1:41:a3:e5:16:47:
1a:6e:49:97:f6:d1:31:46:97:17:10:90:7d:4f:ba:
5c:5a:36:c5:69:0f:aa:58:c8:60:e8:19:e8:94:2f:
0c:5a:83:08:e8:ae:64:59:0c:93:16:0c:7e:8a:b2:
10:f9:8c:21:23:1e:2f:b6:dd:f2:bd:30:20:a3:53:
ec:2b:cf:42:9f:18:11:12:3a:26:06:b8:af:64:6e:
ed:b2:a7:e1:f1:18:77:a2:35:ec:6a:fc:80:89:de:
5e:6d:19:ac:d6:eb:bf:0a:5f:f2:92:9c:89:70:0d:
0e:dc:e7:dc:db:39:7a:2a:40:20:af:6a:b3:d9:43:
50:48:f4:78:23:38:e8:0c:dc:31:eb:96:be:30:ca:
5a:6c:dc:e5:e3:9d:68:e7:a0:72:07:6c:44:da:97:
ca:5d:49:56:d3:b1:22:78:df:70:7f:0a:1c:25:8b:
3c:d2:7e:18:4e:10:76:43:16:e5:45:59:95:ec:09:
19:47:13:1a:cc:30:66:91:ca:11:4f:84:8f:92:b3:
f0:c3:6a:ce:43:30:c8:03:a4:5d:39:eb:15:2f:65:
8f:de:4b:06:9f:05:26:e7:26:73:ba:a6:57:ff:43:
d9:9a:e2:7d:40:1e:e9:50:d9:d1:b5:cc:b7:12:c5:
4e:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:A9:8E:47:F1:7C:13:D6:DB:1C:C5:A0:8C:AE:63:80:AE:C8:20:4C
X509v3 Authority Key Identifier:
keyid:28:39:3F:AE:12:9B:50:18:24:69:6B:AE:24:B6:47:34:A2:03:C3:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10762/KDk_rhKbUBgkaWuuJLZHNKIDw3Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KDk_rhKbUBgkaWuuJLZHNKIDw3Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10762/pamOR_F8E9bbHMWgjK5jgK7IIEw.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
120.89.128.0/17
Signature Algorithm: sha256WithRSAEncryption
aa:a8:c0:71:20:71:06:0a:f3:57:aa:a6:65:10:57:5c:8d:9b:
b3:27:2e:a9:eb:c6:e1:61:d9:f8:76:e9:59:22:98:32:a0:51:
19:e7:69:9e:92:24:37:21:6a:05:2f:68:30:f1:50:85:fb:a5:
d1:fc:d3:0e:bc:b0:00:31:70:1e:dc:a7:95:7c:79:82:7c:8d:
05:a8:0c:a8:70:58:50:99:7d:86:44:f6:e8:d7:f6:11:27:52:
a3:ba:7e:8c:75:ff:a7:60:fa:9f:d7:de:22:1d:6e:04:45:70:
82:8e:45:41:44:9f:a7:01:02:b3:29:b2:47:4f:3a:8a:dc:64:
60:a2:0b:c5:f9:a9:56:39:26:96:0f:93:ad:0e:5f:75:f5:5c:
a0:03:0b:2e:0f:38:34:9e:06:89:b6:3b:dd:54:28:a8:21:ee:
e3:49:85:b6:00:7a:30:f9:77:1a:aa:96:27:d4:da:c6:68:12:
58:57:93:ea:dd:ac:e9:24:7f:5b:4f:90:a5:46:82:4f:94:32:
cd:61:4b:7b:74:e7:71:ec:70:fb:1f:91:cf:ac:8c:02:47:8e:
eb:a0:1d:e9:38:9e:4f:f2:1c:dc:c9:5a:63:60:03:8c:ac:b5:
f9:7e:25:59:39:b9:e6:6f:7e:c2:3e:4a:d4:e2:e1:8e:02:8d:
3d:51:35:94
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgIBVzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyODM5
M0ZBRTEyOUI1MDE4MjQ2OTZCQUUyNEI2NDczNEEyMDNDMzc2MB4XDTIzMTIwMTAx
MzAyMFoXDTI0MTExNDAxMzAwM1owMzExMC8GA1UEAxMoQTVBOThFNDdGMTdDMTNE
NkRCMUNDNUEwOENBRTYzODBBRUM4MjA0QzCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBANaZDP2HXPeIoUGj5RZHGm5Jl/bRMUaXFxCQfU+6XFo2xWkPqljI
YOgZ6JQvDFqDCOiuZFkMkxYMfoqyEPmMISMeL7bd8r0wIKNT7CvPQp8YERI6Jga4
r2Ru7bKn4fEYd6I17Gr8gIneXm0ZrNbrvwpf8pKciXANDtzn3Ns5eipAIK9qs9lD
UEj0eCM46AzcMeuWvjDKWmzc5eOdaOegcgdsRNqXyl1JVtOxInjfcH8KHCWLPNJ+
GE4QdkMW5UVZlewJGUcTGswwZpHKEU+Ej5Kz8MNqzkMwyAOkXTnrFS9lj95LBp8F
Jucmc7qmV/9D2ZrifUAe6VDZ0bXMtxLFTgsCAwEAAaOCAigwggIkMB0GA1UdDgQW
BBSlqY5H8XwT1tscxaCMrmOArsggTDAfBgNVHSMEGDAWgBQoOT+uEptQGCRpa64k
tkc0ogPDdjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb
oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMTA3NjIvS0RrX3JoS2JVQmdrYVd1dUpMWkhOS0lEdzNZLmNybDBtBggr
BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5
Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvS0RrX3JoS2JVQmdrYVd1dUpMWkhO
S0lEdzNZLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG
CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv
QTkxQTczODEwMDAwLzEwNzYyL3BhbU9SX0Y4RTliYkhNV2dqSzVqZ0s3SUlFdy5y
b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q
cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE
AgABMAYDBAd4WYAwDQYJKoZIhvcNAQELBQADggEBAKqowHEgcQYK81eqpmUQV1yN
m7MnLqnrxuFh2fh26VkimDKgURnnaZ6SJDchagUvaDDxUIX7pdH80w68sAAxcB7c
p5V8eYJ8jQWoDKhwWFCZfYZE9ujX9hEnUqO6fox1/6dg+p/X3iIdbgRFcIKORUFE
n6cBArMpskdPOorcZGCiC8X5qVY5JpYPk60OX3X1XKADCy4PODSeBom2O91UKKgh
7uNJhbYAejD5dxqqlifU2sZoElhXk+rdrOkkf1tPkKVGgk+UMs1hS3t053HscPsf
kc+sjAJHjuugHek4nk/yHNzJWmNgA4ystfl+JVk5ueZvfsI+StTi4Y4CjT1RNZQ=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:05:33 2025 by rpki-client