Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10966/9Q7lSgJ-CpvL-iJc1Q7MfOq218E.roa
File: 9Q7lSgJ-CpvL-iJc1Q7MfOq218E.roa (raw, json)
Hash identifier: V+M42JM3RKLejjAPSjiX9BYQdcZ+PLEgZb6GX6H3ngA=
Subject key identifier: F5:0E:E5:4A:02:7E:0A:9B:CB:FA:22:5C:D5:0E:CC:7C:EA:B6:D7:C1
Certificate issuer: /CN=FB72FAA523BA6526855D99065E21B4B958C5F016
Certificate serial: 2B
Authority key identifier: FB:72:FA:A5:23:BA:65:26:85:5D:99:06:5E:21:B4:B9:58:C5:F0:16
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-3L6pSO6ZSaFXZkGXiG0uVjF8BY.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10966/9Q7lSgJ-CpvL-iJc1Q7MfOq218E.roa
Signing time: Sun 01 Oct 2023 01:29:56 +0000
ROA not before: Sun 01 Oct 2023 01:29:56 +0000
ROA not after: Sat 14 Sep 2024 01:30:03 +0000
asID: 131921
IP address blocks: 157.120.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43 (0x2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB72FAA523BA6526855D99065E21B4B958C5F016
Validity
Not Before: Oct 1 01:29:56 2023 GMT
Not After : Sep 14 01:30:03 2024 GMT
Subject: CN=F50EE54A027E0A9BCBFA225CD50ECC7CEAB6D7C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f2:19:a6:e3:69:65:8e:7a:21:c5:fb:98:cf:
76:96:c0:30:21:c2:b4:93:db:13:a6:36:13:35:3b:
2b:e6:21:3f:06:cf:5e:3d:d8:5c:68:1d:eb:45:55:
a1:16:21:c3:96:4d:49:ac:42:06:32:71:34:1d:ab:
35:cb:0e:57:ca:cf:ab:cc:53:5e:2c:ba:1c:f8:dc:
36:12:b0:0f:12:c4:04:77:9b:ae:da:f9:33:53:58:
08:d8:43:2d:a1:a7:b3:55:94:18:38:a6:83:87:e8:
8b:c5:c0:e1:90:f2:56:7f:c0:de:d7:dd:ab:40:8e:
42:19:7a:ce:74:f4:45:d2:de:d1:d4:35:d4:f3:80:
16:33:fa:35:c5:82:47:96:db:d4:91:b7:ef:fc:f0:
ed:b5:a0:49:c4:9f:f1:4a:e3:6a:3f:2d:4e:c8:73:
1e:dc:bb:24:8d:9a:0d:b2:0e:06:98:8c:ba:b9:1b:
ef:8f:7c:63:49:70:73:30:2d:53:31:9c:97:d9:71:
2d:61:6f:87:9a:5f:f3:9a:1d:11:37:bb:6e:0f:f5:
a8:5e:b2:34:f8:b4:1f:bd:d5:6c:a2:fe:af:fd:7a:
99:46:a2:fe:d6:bc:11:1c:af:31:7a:9e:3c:c0:44:
9c:27:41:ea:a7:ba:24:87:95:03:1b:12:0d:0d:65:
fa:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:0E:E5:4A:02:7E:0A:9B:CB:FA:22:5C:D5:0E:CC:7C:EA:B6:D7:C1
X509v3 Authority Key Identifier:
keyid:FB:72:FA:A5:23:BA:65:26:85:5D:99:06:5E:21:B4:B9:58:C5:F0:16
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10966/-3L6pSO6ZSaFXZkGXiG0uVjF8BY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-3L6pSO6ZSaFXZkGXiG0uVjF8BY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10966/9Q7lSgJ-CpvL-iJc1Q7MfOq218E.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.120.115.0/24
Signature Algorithm: sha256WithRSAEncryption
07:9b:2c:54:32:ac:2d:a6:34:1b:cf:1a:f3:01:00:db:9b:4f:
6e:08:97:25:8a:d6:e0:dc:4e:b8:3b:99:ee:a7:fc:1b:84:0b:
b6:9b:ea:27:7b:a7:0f:3e:6b:d1:86:e8:df:d3:1a:23:41:74:
f2:c6:89:27:51:2e:18:0d:d7:09:38:17:c3:e5:f7:eb:1a:87:
f1:e9:c3:d9:1e:65:54:9d:a7:89:d2:27:ca:bd:7b:3a:17:d3:
ef:be:a6:4f:83:0e:cd:4d:d5:d5:3d:d8:9f:b1:23:65:14:0e:
19:5c:f1:52:7d:e1:6d:9b:5e:07:82:cc:88:2b:ae:bd:c9:e0:
18:d2:ea:b3:4c:f4:04:63:d5:1d:1b:d7:1f:a6:49:0e:8a:6b:
41:b4:da:f7:9c:d8:1c:80:2f:e8:c2:36:f6:ea:72:f6:f7:90:
d3:c6:a3:d2:55:67:54:c5:47:38:9e:e6:ca:e1:17:c9:1a:55:
72:98:88:d1:c5:ad:82:3b:5e:90:e2:08:90:15:55:58:6e:34:
1e:ba:60:6d:1b:7f:f9:c1:57:53:c7:ac:f3:16:c4:f5:01:12:
b1:5e:f5:ac:93:23:5a:dc:1a:71:8d:c4:a3:cb:e4:6f:37:47:
62:7d:f2:3d:3d:73:6f:0c:4a:5b:77:98:88:3f:e6:3f:e4:ba:
8f:e1:7c:4d
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgIBKzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGQjcy
RkFBNTIzQkE2NTI2ODU1RDk5MDY1RTIxQjRCOTU4QzVGMDE2MB4XDTIzMTAwMTAx
Mjk1NloXDTI0MDkxNDAxMzAwM1owMzExMC8GA1UEAxMoRjUwRUU1NEEwMjdFMEE5
QkNCRkEyMjVDRDUwRUNDN0NFQUI2RDdDMTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAMHyGabjaWWOeiHF+5jPdpbAMCHCtJPbE6Y2EzU7K+YhPwbPXj3Y
XGgd60VVoRYhw5ZNSaxCBjJxNB2rNcsOV8rPq8xTXiy6HPjcNhKwDxLEBHebrtr5
M1NYCNhDLaGns1WUGDimg4foi8XA4ZDyVn/A3tfdq0COQhl6znT0RdLe0dQ11POA
FjP6NcWCR5bb1JG37/zw7bWgScSf8Urjaj8tTshzHty7JI2aDbIOBpiMurkb7498
Y0lwczAtUzGcl9lxLWFvh5pf85odETe7bg/1qF6yNPi0H73VbKL+r/16mUai/ta8
ERyvMXqePMBEnCdB6qe6JIeVAxsSDQ1l+osCAwEAAaOCAigwggIkMB0GA1UdDgQW
BBT1DuVKAn4Km8v6IlzVDsx86rbXwTAfBgNVHSMEGDAWgBT7cvqlI7plJoVdmQZe
IbS5WMXwFjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb
oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMTA5NjYvLTNMNnBTTzZaU2FGWFprR1hpRzB1VmpGOEJZLmNybDBtBggr
BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5
Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvLTNMNnBTTzZaU2FGWFprR1hpRzB1
VmpGOEJZLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG
CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv
QTkxQTczODEwMDAwLzEwOTY2LzlRN2xTZ0otQ3B2TC1pSmMxUTdNZk9xMjE4RS5y
b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q
cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE
AgABMAYDBACdeHMwDQYJKoZIhvcNAQELBQADggEBAAebLFQyrC2mNBvPGvMBANub
T24IlyWK1uDcTrg7me6n/BuEC7ab6id7pw8+a9GG6N/TGiNBdPLGiSdRLhgN1wk4
F8Pl9+sah/Hpw9keZVSdp4nSJ8q9ezoX0+++pk+DDs1N1dU92J+xI2UUDhlc8VJ9
4W2bXgeCzIgrrr3J4BjS6rNM9ARj1R0b1x+mSQ6Ka0G02vec2ByAL+jCNvbqcvb3
kNPGo9JVZ1TFRzie5srhF8kaVXKYiNHFrYI7XpDiCJAVVVhuNB66YG0bf/nBV1PH
rPMWxPUBErFe9ayTI1rcGnGNxKPL5G83R2J98j09c28MSlt3mIg/5j/kuo/hfE0=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:18:16 2025 by rpki-client