Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30040/s8VM6elexbT5Nt5yXbii7i-ThNY.roa
File: s8VM6elexbT5Nt5yXbii7i-ThNY.roa (raw, json)
Hash identifier: 3IB72ZWYRMEwR2D6/5ODq0SED9oiZdooSZl5yxC2WSQ=
Subject key identifier: B3:C5:4C:E9:E9:5E:C5:B4:F9:36:DE:72:5D:B8:A2:EE:2F:93:84:D6
Certificate issuer: /CN=5DEFF9E1A97D46CCDC12F606EEB38A3E64DBC81F
Certificate serial: 02
Authority key identifier: 5D:EF:F9:E1:A9:7D:46:CC:DC:12:F6:06:EE:B3:8A:3E:64:DB:C8:1F
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Xe_54al9RszcEvYG7rOKPmTbyB8.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30040/s8VM6elexbT5Nt5yXbii7i-ThNY.roa
Signing time: Thu 16 Feb 2023 08:19:12 +0000
ROA not before: Thu 16 Feb 2023 08:19:12 +0000
ROA not after: Fri 16 Feb 2024 08:11:04 +0000
asID: 9619
IP address blocks: 2001:cf8:ace::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5DEFF9E1A97D46CCDC12F606EEB38A3E64DBC81F
Validity
Not Before: Feb 16 08:19:12 2023 GMT
Not After : Feb 16 08:11:04 2024 GMT
Subject: CN=B3C54CE9E95EC5B4F936DE725DB8A2EE2F9384D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:18:b6:f4:0c:4b:3f:96:40:fd:e2:a5:84:bb:
11:6c:53:b8:9b:c5:b3:ba:d0:e7:25:38:ed:8d:16:
61:5f:47:1a:7a:bd:78:4e:af:f7:ea:1d:e1:ab:b0:
4c:72:62:13:49:a7:7c:e0:1a:f5:66:47:31:22:60:
27:db:4f:c5:f6:a6:39:97:40:59:7f:6a:d6:9a:84:
fc:7f:30:50:ab:3a:74:53:49:eb:24:e4:dd:d1:4f:
37:d8:b4:e5:91:a3:31:bb:94:93:e1:d1:7e:fc:a4:
72:af:95:ab:84:f8:25:b1:e5:2f:86:b8:10:3e:d7:
d9:82:d7:bb:90:7b:51:ab:65:02:8c:a9:9a:df:4a:
86:ed:76:75:89:63:b2:e9:ce:37:c2:5e:10:8e:63:
e4:4f:89:36:ad:2d:29:23:1a:f0:02:8b:41:e0:29:
d3:f3:02:cb:ed:ab:c4:ad:c5:bd:c1:b9:ae:12:72:
9f:47:b4:9d:c9:35:e5:2d:c5:d6:9a:eb:40:09:3e:
e7:47:e6:6a:8e:87:fe:1f:9e:85:aa:7c:fb:85:d9:
98:6e:c2:05:59:98:8d:2e:e1:7a:c2:9c:a4:cb:24:
1d:e0:3c:95:a9:05:18:d9:43:b5:45:84:5c:80:7d:
32:f2:74:94:b3:d9:57:d7:18:78:0b:99:cd:eb:00:
dd:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:C5:4C:E9:E9:5E:C5:B4:F9:36:DE:72:5D:B8:A2:EE:2F:93:84:D6
X509v3 Authority Key Identifier:
keyid:5D:EF:F9:E1:A9:7D:46:CC:DC:12:F6:06:EE:B3:8A:3E:64:DB:C8:1F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30040/Xe_54al9RszcEvYG7rOKPmTbyB8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Xe_54al9RszcEvYG7rOKPmTbyB8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30040/s8VM6elexbT5Nt5yXbii7i-ThNY.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:cf8:ace::/48
Signature Algorithm: sha256WithRSAEncryption
a3:07:19:1b:e5:bc:04:3c:f9:4c:3a:fb:4e:18:1f:82:90:92:
14:77:cf:9a:0d:bb:a7:3b:df:fb:5f:85:ef:9e:f3:6d:9c:94:
33:c4:cd:de:0b:53:ab:e1:f0:13:3e:be:30:6d:81:d8:79:45:
52:7e:e1:ef:ee:ac:14:14:2f:c4:87:00:6b:a2:2b:1a:b9:a8:
83:6e:78:34:98:2a:fa:84:c7:99:b6:2f:ac:10:86:00:cf:2d:
d0:76:4e:07:36:9d:6c:dc:a6:93:e7:e8:5e:18:c2:48:09:03:
73:a4:55:2e:11:ca:87:40:41:5f:df:ac:d8:5e:15:80:1a:15:
3f:03:11:b6:4a:df:8d:2a:36:df:d8:80:47:bc:63:19:b7:81:
99:ea:79:28:ec:26:b6:37:9f:55:e3:d4:ad:2a:cf:f4:2c:17:
89:01:d9:db:ee:3d:99:2c:cc:ca:ce:07:0a:53:fb:ef:07:0d:
06:37:aa:df:72:e1:f7:df:c9:d5:d2:37:17:d8:24:aa:30:3a:
3a:ef:8d:33:bf:a9:c9:21:a2:01:ff:e8:da:73:4a:57:4e:2c:
39:5b:34:a5:fe:2e:34:22:a7:7c:eb:6e:45:6f:63:8e:42:04:
a4:c3:ca:de:10:9b:27:fa:06:0d:4d:01:77:a6:f4:cf:2f:de:
c4:38:a1:aa
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgIBAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1REVG
RjlFMUE5N0Q0NkNDREMxMkY2MDZFRUIzOEEzRTY0REJDODFGMB4XDTIzMDIxNjA4
MTkxMloXDTI0MDIxNjA4MTEwNFowMzExMC8GA1UEAxMoQjNDNTRDRTlFOTVFQzVC
NEY5MzZERTcyNURCOEEyRUUyRjkzODRENjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAMAYtvQMSz+WQP3ipYS7EWxTuJvFs7rQ5yU47Y0WYV9HGnq9eE6v
9+od4auwTHJiE0mnfOAa9WZHMSJgJ9tPxfamOZdAWX9q1pqE/H8wUKs6dFNJ6yTk
3dFPN9i05ZGjMbuUk+HRfvykcq+Vq4T4JbHlL4a4ED7X2YLXu5B7UatlAoypmt9K
hu12dYljsunON8JeEI5j5E+JNq0tKSMa8AKLQeAp0/MCy+2rxK3FvcG5rhJyn0e0
nck15S3F1prrQAk+50fmao6H/h+ehap8+4XZmG7CBVmYjS7hesKcpMskHeA8lakF
GNlDtUWEXIB9MvJ0lLPZV9cYeAuZzesA3TsCAwEAAaOCAiswggInMB0GA1UdDgQW
BBSzxUzp6V7FtPk23nJduKLuL5OE1jAfBgNVHSMEGDAWgBRd7/nhqX1GzNwS9gbu
s4o+ZNvIHzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb
oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMzAwNDAvWGVfNTRhbDlSc3pjRXZZRzdyT0tQbVRieUI4LmNybDBtBggr
BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5
Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvWGVfNTRhbDlSc3pjRXZZRzdyT0tQ
bVRieUI4LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG
CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv
QTkxQTczODEwMDAwLzMwMDQwL3M4Vk02ZWxleGJUNU50NXlYYmlpN2ktVGhOWS5y
b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q
cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8E
AgACMAkDBwAgAQz4Cs4wDQYJKoZIhvcNAQELBQADggEBAKMHGRvlvAQ8+Uw6+04Y
H4KQkhR3z5oNu6c73/tfhe+e822clDPEzd4LU6vh8BM+vjBtgdh5RVJ+4e/urBQU
L8SHAGuiKxq5qINueDSYKvqEx5m2L6wQhgDPLdB2Tgc2nWzcppPn6F4YwkgJA3Ok
VS4RyodAQV/frNheFYAaFT8DEbZK340qNt/YgEe8Yxm3gZnqeSjsJrY3n1Xj1K0q
z/QsF4kB2dvuPZkszMrOBwpT++8HDQY3qt9y4fffydXSNxfYJKowOjrvjTO/qckh
ogH/6NpzSldOLDlbNKX+LjQip3zrbkVvY45CBKTDyt4Qmyf6Bg1NAXem9M8v3sQ4
oao=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:56 2024 by rpki-client on console-ams.rpki-client.org