Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20063/lrN-d1LaqchcqbKbo_kMeb_ZXuI.roa
File: lrN-d1LaqchcqbKbo_kMeb_ZXuI.roa (raw, json)
Hash identifier: khvFWpYsJah2vUc/VbJcqa1+pVhITLU53k2a+c8R/wo=
Subject key identifier: 96:B3:7E:77:52:DA:A9:C8:5C:A9:B2:9B:A3:F9:0C:79:BF:D9:5E:E2
Certificate issuer: /CN=9DB0764C6DFC1E3DF6BD580EA6994A1E7098F52A
Certificate serial: 28
Authority key identifier: 9D:B0:76:4C:6D:FC:1E:3D:F6:BD:58:0E:A6:99:4A:1E:70:98:F5:2A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/nbB2TG38Hj32vVgOpplKHnCY9So.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20063/lrN-d1LaqchcqbKbo_kMeb_ZXuI.roa
Signing time: Mon 01 May 2023 01:29:36 +0000
ROA not before: Mon 01 May 2023 01:29:36 +0000
ROA not after: Sun 14 Apr 2024 01:30:02 +0000
asID: 24277
IP address blocks: 203.160.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40 (0x28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9DB0764C6DFC1E3DF6BD580EA6994A1E7098F52A
Validity
Not Before: May 1 01:29:36 2023 GMT
Not After : Apr 14 01:30:02 2024 GMT
Subject: CN=96B37E7752DAA9C85CA9B29BA3F90C79BFD95EE2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c3:d0:23:3f:87:35:23:6a:7c:8f:64:9e:b4:
fe:fa:18:ef:f8:b5:92:03:bc:c3:93:94:2b:cc:91:
70:16:66:6d:52:cc:a6:34:7d:55:6c:c2:73:ff:bf:
e3:eb:a0:54:c2:5a:5f:8c:29:92:57:b5:56:25:9e:
9e:44:5e:8e:fc:ae:43:fb:eb:26:eb:8b:83:3b:54:
7b:87:bb:21:50:6b:a8:e1:5a:81:19:1c:18:69:30:
bd:50:9a:96:70:0a:65:2c:48:7c:b1:da:56:10:ff:
b8:47:92:ae:59:cc:a6:96:0c:16:55:d3:af:a8:6d:
6a:f7:05:36:80:7f:41:66:11:6c:2f:50:2a:e5:87:
bf:03:72:60:a6:68:79:44:64:7e:7f:7d:84:73:ff:
84:a1:bf:bc:5c:2c:1f:b2:b2:e3:bb:3c:6b:1f:f7:
76:71:5c:aa:06:b0:dd:eb:d7:c3:9b:ce:f8:40:ee:
e9:e5:d6:2e:4a:e1:a6:e5:36:08:98:68:41:ff:b4:
61:8c:f7:84:be:cb:1c:be:cd:fd:c5:0b:9d:ee:76:
4c:8d:60:ab:f5:35:e0:f2:e2:62:49:6e:77:31:33:
13:9a:c4:68:ac:09:be:14:2f:dd:02:cd:51:6a:af:
d2:2c:c1:bb:32:01:76:d1:b4:82:7b:c5:fa:a1:b6:
fd:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:B3:7E:77:52:DA:A9:C8:5C:A9:B2:9B:A3:F9:0C:79:BF:D9:5E:E2
X509v3 Authority Key Identifier:
keyid:9D:B0:76:4C:6D:FC:1E:3D:F6:BD:58:0E:A6:99:4A:1E:70:98:F5:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20063/nbB2TG38Hj32vVgOpplKHnCY9So.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/nbB2TG38Hj32vVgOpplKHnCY9So.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20063/lrN-d1LaqchcqbKbo_kMeb_ZXuI.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.160.16.0/20
Signature Algorithm: sha256WithRSAEncryption
0a:c1:ba:c2:6b:fa:f0:e6:20:28:17:07:88:96:aa:55:dd:ab:
1a:32:fd:a2:6f:55:8a:7f:7a:23:43:9f:d3:7a:68:ae:17:7f:
dc:2d:1c:8f:05:a1:2e:1c:a7:21:1a:ae:46:f1:46:c5:ec:39:
cc:7d:80:4f:45:5d:6c:34:14:1f:5a:41:07:ca:71:52:ee:74:
9f:95:f1:c5:e4:4b:62:f1:a6:8e:df:aa:d5:db:ed:a3:f9:e4:
51:eb:30:52:4b:9a:08:65:c6:0a:aa:7e:24:93:19:47:14:ce:
b7:d4:0b:d5:70:2d:c2:4f:df:af:c3:fc:51:1e:04:9c:a5:25:
d3:b8:4a:10:49:0d:65:d9:be:a0:75:d7:9a:84:00:9f:49:ad:
a2:94:92:b8:bd:d7:a7:bb:45:d7:a0:d3:ed:fa:89:0e:ec:79:
f5:0e:fa:b1:68:dc:aa:b5:ae:64:ad:8d:24:ea:61:68:80:c4:
0e:27:eb:c5:e9:84:9c:8a:a0:39:62:a8:09:8c:88:67:c3:7e:
34:18:a0:8d:c6:8e:02:68:e8:a3:47:47:aa:a0:f4:26:0c:20:
56:48:43:e7:96:96:59:1f:29:c9:ca:fc:6f:f0:d0:1f:aa:42:
a9:22:7e:db:b1:4f:74:cb:1a:1c:72:e6:e5:bd:be:3d:41:58:
39:61:09:0a
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgIBKDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5REIw
NzY0QzZERkMxRTNERjZCRDU4MEVBNjk5NEExRTcwOThGNTJBMB4XDTIzMDUwMTAx
MjkzNloXDTI0MDQxNDAxMzAwMlowMzExMC8GA1UEAxMoOTZCMzdFNzc1MkRBQTlD
ODVDQTlCMjlCQTNGOTBDNzlCRkQ5NUVFMjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALnD0CM/hzUjanyPZJ60/voY7/i1kgO8w5OUK8yRcBZmbVLMpjR9
VWzCc/+/4+ugVMJaX4wpkle1ViWenkRejvyuQ/vrJuuLgztUe4e7IVBrqOFagRkc
GGkwvVCalnAKZSxIfLHaVhD/uEeSrlnMppYMFlXTr6htavcFNoB/QWYRbC9QKuWH
vwNyYKZoeURkfn99hHP/hKG/vFwsH7Ky47s8ax/3dnFcqgaw3evXw5vO+EDu6eXW
LkrhpuU2CJhoQf+0YYz3hL7LHL7N/cULne52TI1gq/U14PLiYkludzEzE5rEaKwJ
vhQv3QLNUWqv0izBuzIBdtG0gnvF+qG2/fECAwEAAaOCAigwggIkMB0GA1UdDgQW
BBSWs353UtqpyFypspuj+Qx5v9le4jAfBgNVHSMEGDAWgBSdsHZMbfwePfa9WA6m
mUoecJj1KjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb
oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMjAwNjMvbmJCMlRHMzhIajMydlZnT3BwbEtIbkNZOVNvLmNybDBtBggr
BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5
Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvbmJCMlRHMzhIajMydlZnT3BwbEtI
bkNZOVNvLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG
CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv
QTkxQTczODEwMDAwLzIwMDYzL2xyTi1kMUxhcWNoY3FiS2JvX2tNZWJfWlh1SS5y
b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q
cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE
AgABMAYDBATLoBAwDQYJKoZIhvcNAQELBQADggEBAArBusJr+vDmICgXB4iWqlXd
qxoy/aJvVYp/eiNDn9N6aK4Xf9wtHI8FoS4cpyEarkbxRsXsOcx9gE9FXWw0FB9a
QQfKcVLudJ+V8cXkS2Lxpo7fqtXb7aP55FHrMFJLmghlxgqqfiSTGUcUzrfUC9Vw
LcJP36/D/FEeBJylJdO4ShBJDWXZvqB115qEAJ9JraKUkri916e7Rdeg0+36iQ7s
efUO+rFo3Kq1rmStjSTqYWiAxA4n68XphJyKoDliqAmMiGfDfjQYoI3GjgJo6KNH
R6qg9CYMIFZIQ+eWllkfKcnK/G/w0B+qQqkiftuxT3TLGhxy5uW9vj1BWDlhCQo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:39 2024 by rpki-client on console-ams.rpki-client.org