Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/KRskMkS3cOn_7eLAGEaH067Twe8.roa
File: KRskMkS3cOn_7eLAGEaH067Twe8.roa (raw, json)
Hash identifier: g7bI3Id1IqUozOm+srFiyOC1T7dXqW7bzsFkDHQkz/Y=
Subject key identifier: 29:1B:24:32:44:B7:70:E9:FF:ED:E2:C0:18:46:87:D3:AE:D3:C1:EF
Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138
Certificate serial: 3F
Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/KRskMkS3cOn_7eLAGEaH067Twe8.roa
Signing time: Thu 01 Dec 2022 01:28:55 +0000
ROA not before: Thu 01 Dec 2022 01:28:55 +0000
ROA not after: Wed 15 Nov 2023 01:30:02 +0000
asID: 24319
IP address blocks: 124.40.52.208/28 maxlen: 28
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63 (0x3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138
Validity
Not Before: Dec 1 01:28:55 2022 GMT
Not After : Nov 15 01:30:02 2023 GMT
Subject: CN=291B243244B770E9FFEDE2C0184687D3AED3C1EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0e:05:89:51:d5:72:c4:dd:5d:66:7c:04:9d:
72:51:81:c4:d5:ad:1a:e3:2b:41:4e:41:44:0d:84:
87:7e:7d:ec:4c:59:10:b7:17:17:e2:49:2f:5f:8a:
f8:e2:17:49:f7:50:00:a3:bf:27:83:28:33:59:de:
8e:6d:cb:42:e3:e7:0b:22:3d:dc:0d:26:77:5f:96:
87:d9:58:1a:5b:25:f9:75:86:bf:cb:8b:e7:06:83:
4b:58:d0:d6:ba:e0:68:34:db:15:7c:f5:e9:19:b0:
0b:28:88:8d:02:c9:b5:1b:f5:80:72:bd:8c:cd:e5:
17:ec:85:f6:67:34:85:60:7c:bd:43:cf:e8:85:03:
d4:9a:13:9d:5f:b3:73:90:86:2e:d7:47:27:36:4b:
c6:d6:f9:31:2e:b0:c8:b6:a6:c5:b1:b2:5f:60:98:
8d:85:21:96:68:b2:72:17:ba:cf:0f:9d:22:8b:11:
8f:db:23:df:37:cd:c6:90:9c:ee:9a:fa:1b:2d:c5:
33:93:74:8a:16:4f:a9:c2:8f:56:87:ed:b2:b2:e1:
80:d1:78:cf:1b:2c:55:7c:39:f9:d2:db:4f:8d:31:
a1:5e:45:a3:7a:52:a9:d3:fd:28:de:b8:ca:59:d7:
fa:46:6b:73:55:f7:a6:70:87:41:c3:cd:75:6f:cb:
22:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:1B:24:32:44:B7:70:E9:FF:ED:E2:C0:18:46:87:D3:AE:D3:C1:EF
X509v3 Authority Key Identifier:
keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/KRskMkS3cOn_7eLAGEaH067Twe8.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
124.40.52.208/28
Signature Algorithm: sha256WithRSAEncryption
a7:6b:61:a2:1d:dd:c2:da:2c:9d:db:25:37:bb:49:94:43:0e:
e0:a4:33:6b:1a:0c:56:04:a6:6e:6f:ff:3b:3f:80:ff:d0:62:
bd:f7:c7:fc:f4:45:8f:f0:41:fd:46:bf:8a:fb:5f:db:51:f3:
51:94:46:81:cc:35:20:53:6b:e7:bb:5c:cf:b1:69:a9:9c:09:
19:44:a0:97:b3:ce:4b:67:ec:6a:37:7c:62:2a:1c:49:d9:f2:
b6:3c:da:11:02:7a:4e:44:c3:97:24:27:f4:b2:ea:81:8e:1d:
cf:b8:b8:c3:ef:79:43:97:7e:9d:30:e8:96:ca:5f:41:2f:e7:
2e:a9:d2:07:40:25:67:e2:27:dd:7f:b5:db:02:b7:f3:6e:60:
69:1d:85:bf:34:28:6b:1a:bf:5f:5d:c4:62:4d:3f:ca:03:77:
3f:36:6b:80:29:c3:1b:39:7a:23:f0:4c:cb:e7:e9:37:da:6c:
06:3a:ec:34:4b:08:80:db:11:56:26:b9:20:3f:25:7e:53:ee:
7d:84:33:46:9d:24:9a:36:82:87:ad:0f:d7:c4:e8:b4:4c:d5:
cb:37:38:0d:5c:b0:1f:d1:ba:e3:bc:bb:d7:1f:44:5a:c0:99:
5b:3a:8c:dd:e6:49:c9:8c:2b:c2:2a:40:25:04:19:1d:fb:e0:
73:79:90:32
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgIBPzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4RDQ2
RERGODhBNDZFNEVDMkQ5QTlCQUI1RkYxMzA1RkQwNTdGMTM4MB4XDTIyMTIwMTAx
Mjg1NVoXDTIzMTExNTAxMzAwMlowMzExMC8GA1UEAxMoMjkxQjI0MzI0NEI3NzBF
OUZGRURFMkMwMTg0Njg3RDNBRUQzQzFFRjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAKoOBYlR1XLE3V1mfASdclGBxNWtGuMrQU5BRA2Eh3597ExZELcX
F+JJL1+K+OIXSfdQAKO/J4MoM1nejm3LQuPnCyI93A0md1+Wh9lYGlsl+XWGv8uL
5waDS1jQ1rrgaDTbFXz16RmwCyiIjQLJtRv1gHK9jM3lF+yF9mc0hWB8vUPP6IUD
1JoTnV+zc5CGLtdHJzZLxtb5MS6wyLamxbGyX2CYjYUhlmiyche6zw+dIosRj9sj
3zfNxpCc7pr6Gy3FM5N0ihZPqcKPVoftsrLhgNF4zxssVXw5+dLbT40xoV5Fo3pS
qdP9KN64ylnX+kZrc1X3pnCHQcPNdW/LItMCAwEAAaOCAikwggIlMB0GA1UdDgQW
BBQpGyQyRLdw6f/t4sAYRofTrtPB7zAfBgNVHSMEGDAWgBSNRt34ikbk7C2am6tf
8TBf0FfxODAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb
oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMjAxMjgvalViZC1JcEc1T3d0bXB1clhfRXdYOUJYOFRnLmNybDBtBggr
BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5
Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvalViZC1JcEc1T3d0bXB1clhfRXdY
OUJYOFRnLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG
CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv
QTkxQTczODEwMDAwLzIwMTI4L0tSc2tNa1MzY09uXzdlTEFHRWFIMDY3VHdlOC5y
b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q
cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E
AgABMAcDBQR8KDTQMA0GCSqGSIb3DQEBCwUAA4IBAQCna2GiHd3C2iyd2yU3u0mU
Qw7gpDNrGgxWBKZub/87P4D/0GK998f89EWP8EH9Rr+K+1/bUfNRlEaBzDUgU2vn
u1zPsWmpnAkZRKCXs85LZ+xqN3xiKhxJ2fK2PNoRAnpORMOXJCf0suqBjh3PuLjD
73lDl36dMOiWyl9BL+cuqdIHQCVn4ifdf7XbArfzbmBpHYW/NChrGr9fXcRiTT/K
A3c/NmuAKcMbOXoj8EzL5+k32mwGOuw0SwiA2xFWJrkgPyV+U+59hDNGnSSaNoKH
rQ/XxOi0TNXLNzgNXLAf0brjvLvXH0RawJlbOozd5knJjCvCKkAlBBkd++BzeZAy
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:39 2024 by rpki-client on console-ams.rpki-client.org