Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/al0NHY14sbFBSDkF9l-bJUn01ME.roa
File: al0NHY14sbFBSDkF9l-bJUn01ME.roa (raw, json)
Hash identifier: /rM3e/VrUUEA0ZcbnjhhU8Y2VHafLlKTvZtEaF1Um5c=
Subject key identifier: 6A:5D:0D:1D:8D:78:B1:B1:41:48:39:05:F6:5F:9B:25:49:F4:D4:C1
Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Certificate serial: 01F7
Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/al0NHY14sbFBSDkF9l-bJUn01ME.roa
Signing time: Mon 01 May 2023 01:35:39 +0000
ROA not before: Mon 01 May 2023 01:35:39 +0000
ROA not after: Sun 14 Apr 2024 01:30:02 +0000
asID: 2516
IP address blocks: 14.12.0.0/15 maxlen: 15
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 503 (0x1f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Validity
Not Before: May 1 01:35:39 2023 GMT
Not After : Apr 14 01:30:02 2024 GMT
Subject: CN=6A5D0D1D8D78B1B141483905F65F9B2549F4D4C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:23:f3:40:bd:1e:55:de:10:11:24:17:df:34:
65:f8:2a:14:ef:bf:ed:24:a5:77:51:bf:79:ae:ea:
e6:e8:84:1a:db:fe:62:62:43:9b:0a:70:6d:3d:55:
a9:a3:90:93:d6:a3:93:f4:55:1a:fd:47:ea:5a:d1:
2b:18:7e:d3:e8:c6:89:52:f4:63:29:e2:53:66:81:
87:ef:44:b2:c9:8e:d6:a6:97:e3:c1:2d:9d:4d:3c:
f3:9d:d1:1e:71:95:36:26:77:61:7a:13:eb:90:6c:
18:70:0d:ff:c5:0a:2a:ce:fa:f8:f5:34:d3:f6:d3:
df:da:64:32:06:03:a0:05:b3:39:f9:5d:72:6b:a5:
9b:52:e6:54:a1:5b:63:d1:c3:45:71:86:94:d6:1e:
bf:fa:e7:e0:4d:56:5a:11:89:2e:48:ed:8e:8c:f1:
fa:e1:71:15:60:32:24:18:3b:bb:2b:0e:78:bb:7f:
b9:1f:52:2f:0e:b6:27:9e:6d:86:8d:fa:16:5b:f6:
e2:f2:60:21:21:d5:f3:9f:0c:e6:66:10:b8:6d:f2:
da:36:f2:1d:a1:a9:06:2e:aa:a1:07:b3:84:cd:1b:
ec:64:12:8b:ed:20:42:49:4a:8f:ea:6d:24:f1:22:
ca:7d:74:b0:ec:df:c1:c4:12:31:0d:71:2a:fc:51:
37:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:5D:0D:1D:8D:78:B1:B1:41:48:39:05:F6:5F:9B:25:49:F4:D4:C1
X509v3 Authority Key Identifier:
keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/al0NHY14sbFBSDkF9l-bJUn01ME.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.12.0.0/15
Signature Algorithm: sha256WithRSAEncryption
65:57:5f:de:db:b2:98:df:37:3d:88:06:41:21:7b:14:d3:d4:
c3:fe:a1:ce:36:bd:04:57:35:92:d7:bc:c8:a0:69:dc:bc:32:
d3:64:5a:cc:2f:e9:f2:75:8c:92:55:81:22:da:44:ae:f7:90:
81:ed:aa:88:98:1f:73:84:ff:ea:53:b4:ad:2f:02:7b:bc:03:
2f:da:86:e1:69:48:38:6a:d8:89:76:3e:0a:64:15:a1:d4:ce:
51:19:ae:e8:cb:c3:eb:a2:32:00:d0:10:aa:71:03:74:c0:5c:
17:7a:d1:fa:96:ed:d2:9c:bc:e5:13:d2:d0:57:c7:b4:49:c5:
08:c5:92:f4:21:88:3a:b4:32:58:c2:4e:5b:f0:39:94:51:5b:
74:2e:46:83:2a:93:e6:ee:6c:a7:f4:95:8b:31:5c:4b:83:fa:
17:67:22:12:0c:9c:58:87:68:31:11:25:d5:75:3d:6f:64:fa:
84:1f:fe:82:79:d2:7c:6f:35:5c:96:0d:4c:5d:14:da:3f:75:
ec:ec:b9:46:3d:4c:3a:88:7a:ce:64:ea:e1:1f:5f:af:95:19:
2f:2b:1a:dc:15:e0:89:00:c9:36:ea:d5:07:af:b0:8a:67:15:
50:1e:39:cc:87:9f:99:ab:a5:44:46:c3:a5:14:46:d0:cd:f8:
dd:9f:69:1f
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgICAfcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC
RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yMzA1MDEw
MTM1MzlaFw0yNDA0MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDZBNUQwRDFEOEQ3OEIx
QjE0MTQ4MzkwNUY2NUY5QjI1NDlGNEQ0QzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDTI/NAvR5V3hARJBffNGX4KhTvv+0kpXdRv3mu6ubohBrb/mJi
Q5sKcG09VamjkJPWo5P0VRr9R+pa0SsYftPoxolS9GMp4lNmgYfvRLLJjtaml+PB
LZ1NPPOd0R5xlTYmd2F6E+uQbBhwDf/FCirO+vj1NNP209/aZDIGA6AFszn5XXJr
pZtS5lShW2PRw0VxhpTWHr/65+BNVloRiS5I7Y6M8frhcRVgMiQYO7srDni7f7kf
Ui8OtieebYaN+hZb9uLyYCEh1fOfDOZmELht8to28h2hqQYuqqEHs4TNG+xkEovt
IEJJSo/qbSTxIsp9dLDs38HEEjENcSr8UTcXAgMBAAGjggIjMIICHzAdBgNVHQ4E
FgQUal0NHY14sbFBSDkF9l+bJUn01MEwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf
2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG
cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMTYxL2FsME5IWTE0c2JGQlNEa0Y5bC1iSlVuMDFNRS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwEODDANBgkqhkiG9w0BAQsFAAOCAQEAZVdf3tuymN83PYgGQSF7FNPUw/6h
zja9BFc1kte8yKBp3Lwy02RazC/p8nWMklWBItpErveQge2qiJgfc4T/6lO0rS8C
e7wDL9qG4WlIOGrYiXY+CmQVodTOURmu6MvD66IyANAQqnEDdMBcF3rR+pbt0py8
5RPS0FfHtEnFCMWS9CGIOrQyWMJOW/A5lFFbdC5GgyqT5u5sp/SVizFcS4P6F2ci
EgycWIdoMREl1XU9b2T6hB/+gnnSfG81XJYNTF0U2j917Oy5Rj1MOoh6zmTq4R9f
r5UZLysa3BXgiQDJNurVB6+wimcVUB45zIefmaulREbDpRRG0M343Z9pHw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:44 2024 by rpki-client on console-fra.rpki-client.org