Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20183/6hLVEWHyPWm3v8GsiBLdMnj_YcA.roa
File: 6hLVEWHyPWm3v8GsiBLdMnj_YcA.roa (raw, json)
Hash identifier: A4NzZOVSuV0Ps8+Go53ySYXYeS1rrTBdHXns0uHRTIg=
Subject key identifier: EA:12:D5:11:61:F2:3D:69:B7:BF:C1:AC:88:12:DD:32:78:FF:61:C0
Certificate issuer: /CN=1606BEB137B88DBBEEBA7851A0A8F8D7D18294AF
Certificate serial: 0244
Authority key identifier: 16:06:BE:B1:37:B8:8D:BB:EE:BA:78:51:A0:A8:F8:D7:D1:82:94:AF
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fga-sTe4jbvuunhRoKj419GClK8.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20183/6hLVEWHyPWm3v8GsiBLdMnj_YcA.roa
Signing time: Mon 20 Feb 2023 08:01:25 +0000
ROA not before: Mon 20 Feb 2023 08:01:25 +0000
ROA not after: Thu 15 Feb 2024 01:30:03 +0000
asID: 146979
IP address blocks: 202.236.90.191/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 580 (0x244)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1606BEB137B88DBBEEBA7851A0A8F8D7D18294AF
Validity
Not Before: Feb 20 08:01:25 2023 GMT
Not After : Feb 15 01:30:03 2024 GMT
Subject: CN=EA12D51161F23D69B7BFC1AC8812DD3278FF61C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a8:1e:25:8e:17:8b:45:33:11:1c:58:d9:c7:
23:09:5e:ce:36:53:dc:f7:15:33:62:92:56:a9:9e:
51:91:d0:00:50:31:4e:fe:a4:59:09:96:11:1a:d9:
6f:d8:7a:ab:53:7f:33:61:c6:cf:c6:f5:3f:5b:de:
1c:24:38:5e:8d:24:8f:25:11:31:8c:3d:bc:54:5b:
f9:a1:84:ea:a8:33:79:c3:b2:78:10:02:aa:80:22:
b2:4a:fc:d9:93:bc:5d:d3:57:ca:8d:4f:36:ea:87:
a8:00:8a:22:b0:30:04:48:bc:e2:57:83:ca:03:a6:
b7:a0:47:2c:b8:14:00:79:1e:24:27:82:17:19:ec:
d7:4b:dd:7e:aa:f9:ae:e9:08:ca:43:e4:77:15:a8:
0d:a0:e6:af:4d:2c:28:c5:f2:d7:26:17:9e:7a:e8:
96:48:86:e1:f8:6a:56:94:d9:98:8d:a9:f5:ef:d9:
c0:24:f2:cd:27:57:d8:90:68:87:21:0f:ab:b6:f1:
ae:3c:df:31:41:b7:9e:8c:7a:01:05:f1:11:51:74:
ce:8b:81:9c:5c:bd:5d:cd:18:f8:68:9d:55:ef:1f:
ec:d6:16:a6:35:f6:fd:f9:60:82:5d:4a:2b:fb:b7:
d3:5e:3c:be:9a:85:19:bd:3e:2b:a6:7f:10:94:e3:
65:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:12:D5:11:61:F2:3D:69:B7:BF:C1:AC:88:12:DD:32:78:FF:61:C0
X509v3 Authority Key Identifier:
keyid:16:06:BE:B1:37:B8:8D:BB:EE:BA:78:51:A0:A8:F8:D7:D1:82:94:AF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20183/Fga-sTe4jbvuunhRoKj419GClK8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fga-sTe4jbvuunhRoKj419GClK8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20183/6hLVEWHyPWm3v8GsiBLdMnj_YcA.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.236.90.191/32
Signature Algorithm: sha256WithRSAEncryption
38:de:97:8d:00:aa:06:9c:c6:f1:e6:d1:10:c8:a7:0b:15:57:
09:ca:2b:6a:cb:f7:3a:e3:7b:54:7a:26:ca:a1:81:1f:54:00:
6b:b7:20:11:92:0c:05:75:67:0f:10:68:bc:b3:30:1a:b9:b3:
90:ae:bb:1b:8e:ac:c4:8d:d9:58:e3:b2:8d:39:82:c1:94:0b:
0d:97:ef:4b:aa:53:f2:dc:42:ac:d8:d4:93:be:b0:47:01:6f:
68:c7:82:4d:a0:fa:ad:76:88:a5:a5:8b:ec:35:0c:b3:82:6c:
a1:db:0c:35:5d:29:e8:a9:2c:22:7e:0e:cb:fd:95:d4:f5:55:
73:fc:95:27:16:1c:02:8f:c5:69:78:31:c4:52:b8:8f:34:99:
d3:a7:7b:de:46:d7:78:30:27:43:b5:21:29:5a:db:b0:6d:b4:
ad:11:ca:49:33:e5:43:42:00:cf:57:b6:bb:c6:3b:b3:44:4f:
7d:5e:c7:60:47:5b:f1:02:1a:e6:1d:8c:ae:97:b4:21:c9:39:
fa:5e:f9:a0:fe:90:31:f4:c3:c1:f8:18:52:c6:ed:b3:fb:4d:
3f:6f:c7:89:9f:4d:ed:31:10:c3:e5:7f:57:39:6e:be:64:b3:
80:f2:88:fc:99:e3:bc:38:5f:2b:8f:5f:84:55:7f:6f:35:c5:
6e:9b:57:e5
-----BEGIN CERTIFICATE-----
MIIFDTCCA/WgAwIBAgICAkQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTYw
NkJFQjEzN0I4OERCQkVFQkE3ODUxQTBBOEY4RDdEMTgyOTRBRjAeFw0yMzAyMjAw
ODAxMjVaFw0yNDAyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEVBMTJENTExNjFGMjNE
NjlCN0JGQzFBQzg4MTJERDMyNzhGRjYxQzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDSqB4ljheLRTMRHFjZxyMJXs42U9z3FTNiklapnlGR0ABQMU7+
pFkJlhEa2W/YeqtTfzNhxs/G9T9b3hwkOF6NJI8lETGMPbxUW/mhhOqoM3nDsngQ
AqqAIrJK/NmTvF3TV8qNTzbqh6gAiiKwMARIvOJXg8oDpregRyy4FAB5HiQnghcZ
7NdL3X6q+a7pCMpD5HcVqA2g5q9NLCjF8tcmF5566JZIhuH4alaU2ZiNqfXv2cAk
8s0nV9iQaIchD6u28a483zFBt56MegEF8RFRdM6LgZxcvV3NGPhonVXvH+zWFqY1
9v35YIJdSiv7t9NePL6ahRm9PiumfxCU42WJAgMBAAGjggIpMIICJTAdBgNVHQ4E
FgQU6hLVEWHyPWm3v8GsiBLdMnj/YcAwHwYDVR0jBBgwFoAUFga+sTe4jbvuunhR
oKj419GClK8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g
W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzIwMTgzL0ZnYS1zVGU0amJ2dXVuaFJvS2o0MTlHQ2xLOC5jcmwwbQYI
KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y
eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0ZnYS1zVGU0amJ2dXVuaFJvS2o0
MTlHQ2xLOC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj
BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw
L0E5MUE3MzgxMDAwMC8yMDE4My82aExWRVdIeVBXbTN2OEdzaUJMZE1ual9ZY0Eu
cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu
anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzAN
BAIAATAHAwUAyuxavzANBgkqhkiG9w0BAQsFAAOCAQEAON6XjQCqBpzG8ebREMin
CxVXCcorasv3OuN7VHomyqGBH1QAa7cgEZIMBXVnDxBovLMwGrmzkK67G46sxI3Z
WOOyjTmCwZQLDZfvS6pT8txCrNjUk76wRwFvaMeCTaD6rXaIpaWL7DUMs4JsodsM
NV0p6KksIn4Oy/2V1PVVc/yVJxYcAo/FaXgxxFK4jzSZ06d73kbXeDAnQ7UhKVrb
sG20rRHKSTPlQ0IAz1e2u8Y7s0RPfV7HYEdb8QIa5h2Mrpe0Ick5+l75oP6QMfTD
wfgYUsbts/tNP2/HiZ9N7TEQw+V/VzluvmSzgPKI/JnjvDhfK49fhFV/bzXFbptX
5Q==
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:26:13 2025 by rpki-client