Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/h8joVYzN6BtP5a2fJ3kO3pVUZdQ.roa
File: h8joVYzN6BtP5a2fJ3kO3pVUZdQ.roa (raw, json)
Hash identifier: /OUdK4P/ZxaLZVwS/qAiwRCR4kMoAFr6OtAOqxrn4fA=
Subject key identifier: 87:C8:E8:55:8C:CD:E8:1B:4F:E5:AD:9F:27:79:0E:DE:95:54:65:D4
Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B
Certificate serial: 0153
Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/h8joVYzN6BtP5a2fJ3kO3pVUZdQ.roa
Signing time: Mon 01 May 2023 01:28:14 +0000
ROA not before: Mon 01 May 2023 01:28:14 +0000
ROA not after: Sun 14 Apr 2024 01:30:02 +0000
asID: 4713
IP address blocks: 60.32.0.0/12 maxlen: 12
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 339 (0x153)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B
Validity
Not Before: May 1 01:28:14 2023 GMT
Not After : Apr 14 01:30:02 2024 GMT
Subject: CN=87C8E8558CCDE81B4FE5AD9F27790EDE955465D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:45:b5:bb:bf:3b:40:f2:a6:c8:48:3a:6c:e2:
a3:5e:76:9f:34:92:86:1f:eb:48:f1:50:5e:e8:33:
7f:47:a0:a4:9f:95:76:a1:74:e2:8f:7b:c2:7b:6a:
04:07:5f:72:61:cf:9f:9c:74:45:c7:b4:e4:b0:08:
bb:15:17:90:9b:3d:d5:8c:dc:18:bb:4d:22:ac:44:
25:3e:55:04:75:29:67:90:cb:c5:51:b5:8d:10:21:
de:cb:e8:6c:11:1f:fb:86:4e:13:4a:bc:52:6d:31:
ca:16:f6:3d:a5:24:95:68:fb:c5:d3:05:2a:b5:9f:
97:d0:3c:06:95:48:9e:aa:27:a7:1e:ec:40:95:e6:
37:c7:bc:0f:03:82:16:48:16:63:32:eb:71:9f:ae:
6c:7a:1e:ae:4c:18:29:16:c6:b4:7c:39:01:57:82:
9d:0d:91:01:73:e0:47:94:0e:01:18:29:fd:05:3b:
db:91:85:9d:54:92:02:96:03:c4:20:d1:26:18:99:
74:9a:49:ae:4e:74:3b:1c:3e:c6:1f:da:4a:91:06:
42:06:2a:e7:11:c7:db:5d:f9:6f:7e:d1:5a:5a:37:
31:c0:75:a2:40:76:a8:61:a2:96:56:01:cd:17:b9:
42:f0:b4:36:58:33:e8:7f:06:e7:ba:0a:b6:b4:06:
b5:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:C8:E8:55:8C:CD:E8:1B:4F:E5:AD:9F:27:79:0E:DE:95:54:65:D4
X509v3 Authority Key Identifier:
keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/h8joVYzN6BtP5a2fJ3kO3pVUZdQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
60.32.0.0/12
Signature Algorithm: sha256WithRSAEncryption
c2:ac:f2:eb:d1:7f:00:fe:3f:df:ca:fc:9d:81:49:ee:73:b3:
b4:87:0e:a1:d2:06:87:21:2e:64:97:e0:47:7c:e8:e9:fb:d5:
7e:3d:04:e2:f7:c3:19:c9:53:b6:0a:61:31:f8:ce:33:9c:2e:
70:d8:3a:f6:bb:49:17:a2:7c:2b:52:0f:09:17:3f:21:ba:4b:
98:fe:86:37:f6:d1:fb:04:bf:2b:33:82:4e:e2:a7:8d:c7:34:
03:dd:d3:d5:6f:98:c5:f4:98:03:18:e6:2f:85:97:d8:fc:60:
7f:87:56:04:87:04:3e:e9:13:8f:ef:e1:8f:23:24:a0:0b:2b:
2d:d0:6d:3a:f6:e8:00:16:c3:d0:87:33:36:53:07:fe:fe:14:
f0:46:07:92:9d:66:ac:af:61:3e:27:51:03:1d:c5:46:82:fa:
91:15:74:b1:35:30:6e:9b:0c:38:8d:34:a4:b3:4a:25:e1:b1:
12:f0:c5:81:e7:60:88:ce:c2:35:b2:27:75:ab:65:23:a6:74:
30:cb:6f:21:ce:8e:04:3a:e5:c2:11:d3:90:fb:d2:01:6c:e7:
94:c3:c8:28:a2:eb:5e:d4:b3:31:fa:95:86:74:29:44:b2:12:
bb:80:0a:96:af:5e:a6:35:64:49:df:e0:3d:18:55:84:f5:44:
ad:89:99:d6
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgICAVMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD
MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yMzA1MDEw
MTI4MTRaFw0yNDA0MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDg3QzhFODU1OENDREU4
MUI0RkU1QUQ5RjI3NzkwRURFOTU1NDY1RDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDNRbW7vztA8qbISDps4qNedp80koYf60jxUF7oM39HoKSflXah
dOKPe8J7agQHX3Jhz5+cdEXHtOSwCLsVF5CbPdWM3Bi7TSKsRCU+VQR1KWeQy8VR
tY0QId7L6GwRH/uGThNKvFJtMcoW9j2lJJVo+8XTBSq1n5fQPAaVSJ6qJ6ce7ECV
5jfHvA8DghZIFmMy63Gfrmx6Hq5MGCkWxrR8OQFXgp0NkQFz4EeUDgEYKf0FO9uR
hZ1UkgKWA8Qg0SYYmXSaSa5OdDscPsYf2kqRBkIGKucRx9td+W9+0VpaNzHAdaJA
dqhhopZWAc0XuULwtDZYM+h/Bue6Cra0BrW3AgMBAAGjggIjMIICHzAdBgNVHQ4E
FgQUh8joVYzN6BtP5a2fJ3kO3pVUZdQwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ
hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5
RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMTMxL2g4am9WWXpONkJ0UDVhMmZKM2tPM3BWVVpkUS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwQ8IDANBgkqhkiG9w0BAQsFAAOCAQEAwqzy69F/AP4/38r8nYFJ7nOztIcO
odIGhyEuZJfgR3zo6fvVfj0E4vfDGclTtgphMfjOM5wucNg69rtJF6J8K1IPCRc/
IbpLmP6GN/bR+wS/KzOCTuKnjcc0A93T1W+YxfSYAxjmL4WX2Pxgf4dWBIcEPukT
j+/hjyMkoAsrLdBtOvboABbD0IczNlMH/v4U8EYHkp1mrK9hPidRAx3FRoL6kRV0
sTUwbpsMOI00pLNKJeGxEvDFgedgiM7CNbIndatlI6Z0MMtvIc6OBDrlwhHTkPvS
AWznlMPIKKLrXtSzMfqVhnQpRLISu4AKlq9epjVkSd/gPRhVhPVErYmZ1g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:33 2024 by rpki-client on console-ams.rpki-client.org