Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/vus28DXj3t4QrSPYQXuQlcCmfdQ.roa
File: vus28DXj3t4QrSPYQXuQlcCmfdQ.roa (raw, json)
Hash identifier: f+WUdD2qOYuI/OTyWTo0ZcZSBkEjc9zsguOd92dUpBU=
Subject key identifier: BE:EB:36:F0:35:E3:DE:DE:10:AD:23:D8:41:7B:90:95:C0:A6:7D:D4
Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95
Certificate serial: 48
Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/vus28DXj3t4QrSPYQXuQlcCmfdQ.roa
Signing time: Thu 01 Feb 2024 01:30:07 +0000
ROA not before: Thu 01 Feb 2024 01:30:07 +0000
ROA not after: Tue 14 Jan 2025 01:30:02 +0000
asID: 4694
IP address blocks: 211.10.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72 (0x48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95
Validity
Not Before: Feb 1 01:30:07 2024 GMT
Not After : Jan 14 01:30:02 2025 GMT
Subject: CN=BEEB36F035E3DEDE10AD23D8417B9095C0A67DD4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:84:56:95:1a:7c:a2:4b:c9:69:28:f5:1a:88:
34:d5:4e:77:c1:07:7e:9d:7a:49:a9:fd:c6:2d:60:
e0:31:d7:f2:bc:61:aa:ac:c6:ac:3b:e6:57:e3:16:
fc:d5:9f:19:d2:73:b8:14:2b:08:31:2f:ff:6c:6f:
12:ac:d9:4e:3e:51:29:58:a9:4c:a9:7d:df:f4:a2:
01:58:de:dc:5e:f8:ef:fb:18:5c:90:b2:2d:66:ee:
0c:b6:54:46:77:e0:60:9b:6f:e4:d1:81:9d:ff:3e:
c7:7f:3f:e6:a5:cb:f3:50:35:04:08:f5:40:2e:32:
0c:15:23:c5:17:dc:4f:cf:fe:25:c7:33:de:00:62:
a7:dd:1a:73:42:16:3d:53:de:18:1c:e0:09:69:da:
99:72:bf:71:aa:24:aa:dd:4e:18:81:70:4a:76:8f:
6a:cc:7b:19:e8:0d:68:7b:6f:9f:eb:62:fe:66:18:
e7:c5:c8:35:a6:ee:3e:69:9a:3d:06:c3:29:12:22:
fc:dc:30:2c:ad:19:0e:a8:2b:a0:9f:fe:54:64:57:
14:35:41:75:c1:ca:6c:76:c1:e4:f8:c7:f3:2a:ff:
8c:39:bc:55:4b:43:cd:47:e1:df:f9:8b:04:5c:84:
ad:7b:aa:2c:dd:dc:62:f6:27:fd:0e:86:23:f3:56:
cb:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:EB:36:F0:35:E3:DE:DE:10:AD:23:D8:41:7B:90:95:C0:A6:7D:D4
X509v3 Authority Key Identifier:
keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/vus28DXj3t4QrSPYQXuQlcCmfdQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
211.10.0.0/19
Signature Algorithm: sha256WithRSAEncryption
9b:c0:f4:c0:94:d9:c0:b9:b4:8e:4b:56:d6:66:bf:71:68:30:
fa:02:f6:15:1f:d5:84:6a:45:cc:77:0f:fa:c3:e2:c8:46:d7:
b8:95:1e:f0:26:43:50:4b:0c:b2:b1:78:05:9b:e5:29:6c:77:
a0:ce:83:52:6f:89:81:d0:7d:f9:66:0e:52:ed:32:0b:0e:ef:
c7:cb:88:f0:a0:97:42:d0:6f:85:a5:c3:6f:9a:93:d4:2d:70:
5a:e0:90:2a:b5:68:7b:05:d3:f9:5e:b3:18:e9:fe:45:a0:41:
0e:90:3e:f2:74:9d:8f:d2:9a:27:83:93:7c:ce:3e:02:35:aa:
3b:e9:2f:32:6f:70:c3:f4:bf:0d:b8:47:d0:23:e5:36:5b:01:
ea:fc:65:58:35:a5:bc:af:4d:62:61:61:96:6b:21:a8:87:46:
e0:c9:74:32:4c:1f:f3:59:9c:ce:e2:a9:dd:48:2b:11:2d:50:
b9:e9:66:02:a4:19:c9:a7:4e:f8:4e:aa:07:c1:a9:18:71:26:
17:cf:e2:4f:0c:d6:a3:9c:37:8c:1a:5b:41:23:b2:67:00:c7:
a5:31:54:00:87:4d:ae:55:ac:71:83:ca:f2:4a:a6:de:3f:d6:
78:67:79:ab:fa:9f:b0:b5:9a:8b:83:ef:b1:80:43:81:84:da:
04:61:f9:2f
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgIBSDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1OTBB
ODIyODhEMkUyM0RCRkE4NzYzOEYzRUI4Qjk5NUUxODk3RTk1MB4XDTI0MDIwMTAx
MzAwN1oXDTI1MDExNDAxMzAwMlowMzExMC8GA1UEAxMoQkVFQjM2RjAzNUUzREVE
RTEwQUQyM0Q4NDE3QjkwOTVDMEE2N0RENDCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALeEVpUafKJLyWko9RqINNVOd8EHfp16San9xi1g4DHX8rxhqqzG
rDvmV+MW/NWfGdJzuBQrCDEv/2xvEqzZTj5RKVipTKl93/SiAVje3F747/sYXJCy
LWbuDLZURnfgYJtv5NGBnf8+x38/5qXL81A1BAj1QC4yDBUjxRfcT8/+Jccz3gBi
p90ac0IWPVPeGBzgCWnamXK/caokqt1OGIFwSnaPasx7GegNaHtvn+ti/mYY58XI
NabuPmmaPQbDKRIi/NwwLK0ZDqgroJ/+VGRXFDVBdcHKbHbB5PjH8yr/jDm8VUtD
zUfh3/mLBFyErXuqLN3cYvYn/Q6GI/NWy78CAwEAAaOCAigwggIkMB0GA1UdDgQW
BBS+6zbwNePe3hCtI9hBe5CVwKZ91DAfBgNVHSMEGDAWgBRZCoIojS4j2/qHY48+
uLmV4Yl+lTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb
oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMjAwODMvV1FxQ0tJMHVJOXY2aDJPUFByaTVsZUdKZnBVLmNybDBtBggr
BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5
Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvV1FxQ0tJMHVJOXY2aDJPUFByaTVs
ZUdKZnBVLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG
CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv
QTkxQTczODEwMDAwLzIwMDgzL3Z1czI4RFhqM3Q0UXJTUFlRWHVRbGNDbWZkUS5y
b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q
cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE
AgABMAYDBAXTCgAwDQYJKoZIhvcNAQELBQADggEBAJvA9MCU2cC5tI5LVtZmv3Fo
MPoC9hUf1YRqRcx3D/rD4shG17iVHvAmQ1BLDLKxeAWb5Slsd6DOg1JviYHQfflm
DlLtMgsO78fLiPCgl0LQb4Wlw2+ak9QtcFrgkCq1aHsF0/lesxjp/kWgQQ6QPvJ0
nY/SmieDk3zOPgI1qjvpLzJvcMP0vw24R9Aj5TZbAer8ZVg1pbyvTWJhYZZrIaiH
RuDJdDJMH/NZnM7iqd1IKxEtULnpZgKkGcmnTvhOqgfBqRhxJhfP4k8M1qOcN4wa
W0EjsmcAx6UxVACHTa5VrHGDyvJKpt4/1nhneav6n7C1mouD77GAQ4GE2gRh+S8=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:19:47 2025 by rpki-client