Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/299/U2Fr5jipk89NrWXf6gm-zfhPwIc.roa
File: U2Fr5jipk89NrWXf6gm-zfhPwIc.roa (raw, json)
Hash identifier: mFX3+gRS/pIkc4pND0AC2YS7R2gkLevWy1WibM1a/zA=
Subject key identifier: 53:61:6B:E6:38:A9:93:CF:4D:AD:65:DF:EA:09:BE:CD:F8:4F:C0:87
Certificate issuer: /CN=D8F1514508AFC38E51743B6CB58BA6561EDD3BB9
Certificate serial: 2E
Authority key identifier: D8:F1:51:45:08:AF:C3:8E:51:74:3B:6C:B5:8B:A6:56:1E:DD:3B:B9
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/U2Fr5jipk89NrWXf6gm-zfhPwIc.roa
Signing time: Fri 17 Mar 2023 13:11:12 +0000
ROA not before: Fri 17 Mar 2023 13:11:12 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 63789
IP address blocks: 202.9.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46 (0x2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D8F1514508AFC38E51743B6CB58BA6561EDD3BB9
Validity
Not Before: Mar 17 13:11:12 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=53616BE638A993CF4DAD65DFEA09BECDF84FC087
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c4:08:a7:b0:2d:3d:2f:56:d1:20:d3:d2:91:
e7:47:06:76:8b:c3:97:c2:48:e7:fb:93:19:c6:7a:
ff:e0:6d:c7:f7:2b:60:8e:7f:f6:5a:72:35:1a:5e:
71:de:7f:ad:37:85:04:d0:52:6c:ca:3e:2c:ad:38:
4f:de:07:aa:cb:06:82:16:f1:1e:40:dd:61:84:43:
07:89:23:02:24:1f:7c:40:dd:eb:75:6d:08:24:05:
7a:75:fb:11:ff:ab:90:c0:c6:0b:bf:a5:e6:50:fe:
0c:71:40:7d:ba:fc:99:14:8c:ca:45:c2:44:16:aa:
b6:ab:b3:4d:a1:cd:a9:4c:d0:76:6b:6e:9d:4b:5a:
2b:10:46:c8:df:95:dc:5a:68:aa:a8:4f:08:5c:b5:
96:a8:c7:32:7c:3e:26:e8:24:67:a8:67:d3:1c:9f:
5d:91:5f:5e:17:f7:42:e9:9e:58:51:c4:29:f2:16:
7c:d1:a3:a6:0c:88:62:d5:91:6e:2d:9c:d3:28:d7:
86:ce:b9:c6:b3:f8:78:10:fc:b3:da:8f:da:dd:2b:
a8:51:01:15:7f:07:ee:66:76:2a:71:1f:e3:41:79:
fc:40:25:7c:e5:64:6c:64:0c:0d:55:84:63:1c:9a:
22:76:8c:df:a9:92:26:29:5f:de:96:57:0a:e7:20:
b5:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:61:6B:E6:38:A9:93:CF:4D:AD:65:DF:EA:09:BE:CD:F8:4F:C0:87
X509v3 Authority Key Identifier:
keyid:D8:F1:51:45:08:AF:C3:8E:51:74:3B:6C:B5:8B:A6:56:1E:DD:3B:B9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/2PFRRQivw45RdDtstYumVh7dO7k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/U2Fr5jipk89NrWXf6gm-zfhPwIc.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.9.208.0/24
Signature Algorithm: sha256WithRSAEncryption
98:9d:57:52:e1:05:18:c7:b7:19:0a:c9:76:9b:65:e0:d5:4f:
6a:9a:4b:f0:70:30:83:69:90:33:0d:01:ce:b7:62:16:a0:30:
5c:7e:f0:26:07:8a:f2:38:46:be:fc:e9:8c:87:f5:8f:8f:d0:
51:2a:9a:ac:5b:51:97:35:14:e8:74:57:93:5d:a4:26:3c:51:
5c:88:68:82:6a:f4:59:fc:ca:82:28:fc:39:2b:a0:1e:53:23:
e5:c4:ee:2f:22:fe:06:f6:a6:36:2f:74:55:ea:1e:af:8d:c7:
16:87:0d:77:c6:e5:f1:30:fa:e6:46:6f:8b:e7:1f:a0:cb:26:
bb:72:45:32:7f:8a:19:cb:b4:45:b8:7e:9d:17:7b:5a:36:6c:
9d:da:33:17:24:33:40:23:f8:5c:e1:b6:71:71:e4:03:31:6e:
62:8e:37:d2:92:db:89:38:25:a2:ea:c1:79:9c:a8:40:e9:b8:
18:9a:a2:de:90:ce:96:ad:e9:5b:e7:9b:eb:e8:50:b1:96:ca:
e7:cc:c6:41:e6:80:6a:ce:de:02:af:c1:1b:76:80:c5:d3:90:
bd:9b:87:43:57:28:de:12:11:31:19:28:f5:88:43:62:ae:fd:
b5:c0:1f:4b:24:cc:10:df:da:e0:82:2e:61:71:48:a2:6a:b2:
fa:2f:43:62
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBLjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEOEYx
NTE0NTA4QUZDMzhFNTE3NDNCNkNCNThCQTY1NjFFREQzQkI5MB4XDTIzMDMxNzEz
MTExMloXDTI0MDMxNDAxMzAwMlowMzExMC8GA1UEAxMoNTM2MTZCRTYzOEE5OTND
RjREQUQ2NURGRUEwOUJFQ0RGODRGQzA4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAJ/ECKewLT0vVtEg09KR50cGdovDl8JI5/uTGcZ6/+Btx/crYI5/
9lpyNRpecd5/rTeFBNBSbMo+LK04T94HqssGghbxHkDdYYRDB4kjAiQffEDd63Vt
CCQFenX7Ef+rkMDGC7+l5lD+DHFAfbr8mRSMykXCRBaqtquzTaHNqUzQdmtunUta
KxBGyN+V3FpoqqhPCFy1lqjHMnw+JugkZ6hn0xyfXZFfXhf3QumeWFHEKfIWfNGj
pgyIYtWRbi2c0yjXhs65xrP4eBD8s9qP2t0rqFEBFX8H7mZ2KnEf40F5/EAlfOVk
bGQMDVWEYxyaInaM36mSJilf3pZXCucgtWcCAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBRTYWvmOKmTz02tZd/qCb7N+E/AhzAfBgNVHSMEGDAWgBTY8VFFCK/DjlF0O2y1
i6ZWHt07uTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMjk5LzJQRlJSUWl2dzQ1UmREdHN0WXVtVmg3ZE83ay5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzJQRlJSUWl2dzQ1UmREdHN0WXVtVmg3
ZE83ay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC8yOTkvVTJGcjVqaXBrODlOcldYZjZnbS16ZmhQd0ljLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAMoJ0DANBgkqhkiG9w0BAQsFAAOCAQEAmJ1XUuEFGMe3GQrJdptl4NVPappL
8HAwg2mQMw0BzrdiFqAwXH7wJgeK8jhGvvzpjIf1j4/QUSqarFtRlzUU6HRXk12k
JjxRXIhogmr0WfzKgij8OSugHlMj5cTuLyL+BvamNi90Veoer43HFocNd8bl8TD6
5kZvi+cfoMsmu3JFMn+KGcu0Rbh+nRd7WjZsndozFyQzQCP4XOG2cXHkAzFuYo43
0pLbiTglourBeZyoQOm4GJqi3pDOlq3pW+eb6+hQsZbK58zGQeaAas7eAq/BG3aA
xdOQvZuHQ1co3hIRMRko9YhDYq79tcAfSyTMEN/a4IIuYXFIomqy+i9DYg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:56 2024 by rpki-client on console-ams.rpki-client.org