Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20058/JxeG3-fVEf2_iE99ErqPmMNl1tg.roa
File: JxeG3-fVEf2_iE99ErqPmMNl1tg.roa (raw, json)
Hash identifier: dsNSjXDGPpyA7SbcXqek1Uyqs5d6el5y++IQ3f2/muI=
Subject key identifier: 27:17:86:DF:E7:D5:11:FD:BF:88:4F:7D:12:BA:8F:98:C3:65:D6:D8
Certificate issuer: /CN=E756D9A5CE9ACAC978360011F7A7CFC430181D53
Certificate serial: 05
Authority key identifier: E7:56:D9:A5:CE:9A:CA:C9:78:36:00:11:F7:A7:CF:C4:30:18:1D:53
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/51bZpc6aysl4NgAR96fPxDAYHVM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20058/JxeG3-fVEf2_iE99ErqPmMNl1tg.roa
Signing time: Wed 14 Feb 2024 08:44:49 +0000
ROA not before: Wed 14 Feb 2024 08:44:49 +0000
ROA not after: Tue 14 Jan 2025 01:30:02 +0000
asID: 24229
IP address blocks: 202.126.20.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E756D9A5CE9ACAC978360011F7A7CFC430181D53
Validity
Not Before: Feb 14 08:44:49 2024 GMT
Not After : Jan 14 01:30:02 2025 GMT
Subject: CN=271786DFE7D511FDBF884F7D12BA8F98C365D6D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:35:e1:e5:ae:2c:60:d3:a9:9d:6a:b2:e4:9c:
eb:2b:0c:31:e8:92:6f:27:6b:3f:6b:57:7a:48:2f:
cc:fd:8c:39:c6:76:37:fd:77:2a:70:c4:fe:b1:68:
96:fd:ca:54:3f:e0:c8:4c:fa:5c:37:72:3e:e1:19:
3c:14:d2:e8:2c:6b:ce:90:6a:88:b6:b0:93:87:d2:
c4:10:32:ef:a4:76:ef:3d:f9:d0:6c:f9:ca:4e:12:
23:a1:95:de:c8:35:32:1d:cf:5f:b0:52:29:17:18:
b7:66:cc:36:82:e7:41:68:90:8e:0d:f3:d7:30:18:
3e:89:5a:05:52:7f:a2:05:f5:2b:7f:b4:90:27:4d:
71:05:e5:a6:30:f6:81:eb:65:91:ab:fa:74:14:4e:
58:0c:8b:65:65:ff:ba:c1:14:55:7a:d1:08:8a:c3:
cf:23:4e:5a:c4:4a:4c:f8:fd:b4:19:5f:af:a9:87:
dd:1a:eb:a7:ad:04:74:4b:bd:a3:e6:ca:33:a0:3a:
c8:bb:8b:60:fd:04:0c:02:d7:18:70:e6:ca:65:94:
a0:5e:07:0d:66:36:79:02:c6:e0:ff:d1:e3:9d:5b:
a6:31:f7:74:cd:38:60:fa:df:7c:39:ea:38:f4:30:
32:a5:15:25:57:b2:c0:d9:50:1f:9c:f8:7b:b9:2a:
38:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:17:86:DF:E7:D5:11:FD:BF:88:4F:7D:12:BA:8F:98:C3:65:D6:D8
X509v3 Authority Key Identifier:
keyid:E7:56:D9:A5:CE:9A:CA:C9:78:36:00:11:F7:A7:CF:C4:30:18:1D:53
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20058/51bZpc6aysl4NgAR96fPxDAYHVM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/51bZpc6aysl4NgAR96fPxDAYHVM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20058/JxeG3-fVEf2_iE99ErqPmMNl1tg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.126.20.0/22
Signature Algorithm: sha256WithRSAEncryption
17:52:02:f7:c1:c6:f2:a0:fd:68:39:09:46:8f:3d:3c:ea:89:
9f:9e:86:f2:af:ab:53:d0:76:99:b3:31:51:42:05:75:16:db:
40:0a:1a:a7:cb:f3:eb:2d:6d:78:ea:f8:50:7e:85:8a:4a:21:
11:b4:23:d9:c1:c3:60:88:4b:9b:14:db:c1:94:97:56:d2:87:
1c:79:21:04:14:ee:ba:bd:f8:6e:c0:ea:77:6f:ca:b9:59:5e:
90:2b:e8:ad:d0:de:53:da:26:f3:d5:f4:1b:97:d1:f1:26:ed:
3b:ae:15:65:07:be:6c:dc:93:07:b0:32:02:ef:e8:c6:ab:57:
ae:0f:e7:b5:3e:0b:7d:ef:25:09:dc:aa:e1:50:1f:11:ad:4b:
1e:12:15:77:b3:b9:cc:93:61:d8:1f:ef:74:3d:ed:22:c7:cd:
db:33:6f:53:83:44:8c:7f:f4:3c:30:8c:62:7c:25:87:f1:8e:
4c:bd:10:c6:80:96:b9:67:b7:cd:9a:04:e5:2a:1e:d9:ae:94:
15:87:a0:80:1a:30:83:c5:f4:eb:4b:54:14:33:9d:a2:79:34:
11:67:3e:16:c4:93:18:c7:4d:9c:6a:42:a5:0c:a7:4a:62:f3:
90:d0:e8:7d:56:ae:08:e6:d5:97:4e:56:61:7e:b4:da:5a:ff:
b6:7d:50:2d
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgIBBTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFNzU2
RDlBNUNFOUFDQUM5NzgzNjAwMTFGN0E3Q0ZDNDMwMTgxRDUzMB4XDTI0MDIxNDA4
NDQ0OVoXDTI1MDExNDAxMzAwMlowMzExMC8GA1UEAxMoMjcxNzg2REZFN0Q1MTFG
REJGODg0RjdEMTJCQThGOThDMzY1RDZEODCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALc14eWuLGDTqZ1qsuSc6ysMMeiSbydrP2tXekgvzP2MOcZ2N/13
KnDE/rFolv3KVD/gyEz6XDdyPuEZPBTS6CxrzpBqiLawk4fSxBAy76R27z350Gz5
yk4SI6GV3sg1Mh3PX7BSKRcYt2bMNoLnQWiQjg3z1zAYPolaBVJ/ogX1K3+0kCdN
cQXlpjD2getlkav6dBROWAyLZWX/usEUVXrRCIrDzyNOWsRKTPj9tBlfr6mH3Rrr
p60EdEu9o+bKM6A6yLuLYP0EDALXGHDmymWUoF4HDWY2eQLG4P/R451bpjH3dM04
YPrffDnqOPQwMqUVJVeywNlQH5z4e7kqOJcCAwEAAaOCAigwggIkMB0GA1UdDgQW
BBQnF4bf59UR/b+IT30Suo+Yw2XW2DAfBgNVHSMEGDAWgBTnVtmlzprKyXg2ABH3
p8/EMBgdUzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb
oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMjAwNTgvNTFiWnBjNmF5c2w0TmdBUjk2ZlB4REFZSFZNLmNybDBtBggr
BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5
Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvNTFiWnBjNmF5c2w0TmdBUjk2ZlB4
REFZSFZNLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG
CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv
QTkxQTczODEwMDAwLzIwMDU4L0p4ZUczLWZWRWYyX2lFOTlFcnFQbU1ObDF0Zy5y
b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q
cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE
AgABMAYDBALKfhQwDQYJKoZIhvcNAQELBQADggEBABdSAvfBxvKg/Wg5CUaPPTzq
iZ+ehvKvq1PQdpmzMVFCBXUW20AKGqfL8+stbXjq+FB+hYpKIRG0I9nBw2CIS5sU
28GUl1bShxx5IQQU7rq9+G7A6ndvyrlZXpAr6K3Q3lPaJvPV9BuX0fEm7TuuFWUH
vmzckwewMgLv6MarV64P57U+C33vJQncquFQHxGtSx4SFXezucyTYdgf73Q97SLH
zdszb1ODRIx/9DwwjGJ8JYfxjky9EMaAlrlnt82aBOUqHtmulBWHoIAaMIPF9OtL
VBQznaJ5NBFnPhbEkxjHTZxqQqUMp0pi85DQ6H1Wrgjm1ZdOVmF+tNpa/7Z9UC0=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:24:11 2025 by rpki-client