Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30053/WV8XJR0RBhOMPq-S5hM3ujNF6YQ.roa
File: WV8XJR0RBhOMPq-S5hM3ujNF6YQ.roa (raw, json)
Hash identifier: UuXZ/rOcUIlCi1v421/95bxlLQYof0kIAYVmJS+P5yk=
Subject key identifier: 59:5F:17:25:1D:11:06:13:8C:3E:AF:92:E6:13:37:BA:33:45:E9:84
Certificate issuer: /CN=1DC3F7B86246BAF30A6ACC599C18C1CF2F73509C
Certificate serial: 28
Authority key identifier: 1D:C3:F7:B8:62:46:BA:F3:0A:6A:CC:59:9C:18:C1:CF:2F:73:50:9C
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/HcP3uGJGuvMKasxZnBjBzy9zUJw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30053/WV8XJR0RBhOMPq-S5hM3ujNF6YQ.roa
Signing time: Sat 01 Apr 2023 01:30:00 +0000
ROA not before: Sat 01 Apr 2023 01:30:00 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9622
IP address blocks: 2001:e90::/32 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40 (0x28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1DC3F7B86246BAF30A6ACC599C18C1CF2F73509C
Validity
Not Before: Apr 1 01:30:00 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=595F17251D1106138C3EAF92E61337BA3345E984
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1f:ff:26:62:10:38:a4:6c:b7:11:f7:c3:fe:
2f:00:f5:61:44:79:ff:90:cd:27:a5:68:f9:a3:36:
9f:29:20:19:f1:93:a4:c9:5f:eb:ed:fc:57:b2:7f:
48:32:41:ac:e2:d4:0a:3d:b8:3a:26:6e:ee:1f:90:
45:47:de:6f:f2:e0:c2:df:95:85:c9:d2:8f:23:98:
61:ba:da:00:49:4f:11:fc:71:33:27:05:4a:25:57:
c7:de:17:0f:d6:2e:57:bc:02:00:77:cb:99:13:de:
68:af:3b:b3:3e:e2:af:e4:de:78:74:2b:51:23:f0:
ca:5a:74:4e:ac:4f:a9:e1:21:af:b5:bf:23:98:02:
c5:f8:49:81:9b:5a:54:4a:f8:7a:f9:5c:ce:b9:9a:
5f:ff:1c:a5:5e:10:2c:94:4b:5f:d1:01:fe:31:77:
36:67:b0:9b:8c:6e:37:70:b5:c5:a5:cd:ac:bc:50:
32:7b:36:64:a1:bf:a1:c7:2f:fe:d8:f5:b7:84:c9:
a0:4e:c4:09:24:08:b5:00:1f:e2:61:8f:f8:59:3a:
a1:a3:ab:c1:97:4c:7f:9b:c7:2b:43:66:b5:98:25:
3a:9c:c6:54:ee:c3:8c:df:0c:b9:17:1f:e8:f8:c3:
fa:d1:b9:7d:dc:05:8c:a4:ea:cc:41:5a:a7:7c:13:
95:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:5F:17:25:1D:11:06:13:8C:3E:AF:92:E6:13:37:BA:33:45:E9:84
X509v3 Authority Key Identifier:
keyid:1D:C3:F7:B8:62:46:BA:F3:0A:6A:CC:59:9C:18:C1:CF:2F:73:50:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30053/HcP3uGJGuvMKasxZnBjBzy9zUJw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/HcP3uGJGuvMKasxZnBjBzy9zUJw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30053/WV8XJR0RBhOMPq-S5hM3ujNF6YQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:e90::/32
Signature Algorithm: sha256WithRSAEncryption
1c:48:18:65:e0:a0:c6:65:3d:02:8f:c0:98:2b:56:29:83:57:
5d:8a:63:75:2c:f9:86:d8:12:d7:cc:5b:e7:5d:cc:c3:16:39:
5d:af:35:5d:21:fb:78:fe:50:9c:51:3f:ba:bc:18:4e:55:ee:
c1:bc:6f:58:a5:62:eb:52:1f:66:f1:a0:99:d6:a8:84:74:04:
6e:33:86:d3:ed:34:7e:e3:2b:37:93:71:62:fe:53:40:47:27:
9e:c5:8a:27:ef:9b:72:ef:20:b9:3c:2c:9d:19:79:e9:28:06:
6e:4a:d7:24:4b:6a:b6:7c:4e:8d:a5:47:0e:15:7f:6d:6a:e8:
40:a0:75:9b:0c:18:97:72:73:d1:b9:62:d2:59:d3:80:f4:af:
6c:da:58:8c:f3:c2:0e:c6:3b:65:21:7d:a6:b6:d7:fe:43:0d:
7d:1a:9b:03:9b:de:1c:44:19:31:fc:a6:0a:57:75:c9:97:3b:
df:72:46:c6:84:8c:00:c5:aa:20:7b:aa:5c:37:ca:f0:15:cb:
f5:48:65:a6:e3:06:db:c1:17:0f:67:81:b6:61:60:1a:a8:7d:
38:59:88:66:89:16:b5:5f:a9:be:00:a4:7a:57:8c:2c:82:9b:
61:19:9d:1b:ca:83:cf:be:8e:ef:15:9e:fd:79:f6:00:bd:a6:
4d:49:27:12
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgIBKDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxREMz
RjdCODYyNDZCQUYzMEE2QUNDNTk5QzE4QzFDRjJGNzM1MDlDMB4XDTIzMDQwMTAx
MzAwMFoXDTI0MDMxNDAxMzAwMlowMzExMC8GA1UEAxMoNTk1RjE3MjUxRDExMDYx
MzhDM0VBRjkyRTYxMzM3QkEzMzQ1RTk4NDCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAMEf/yZiEDikbLcR98P+LwD1YUR5/5DNJ6Vo+aM2nykgGfGTpMlf
6+38V7J/SDJBrOLUCj24OiZu7h+QRUfeb/Lgwt+VhcnSjyOYYbraAElPEfxxMycF
SiVXx94XD9YuV7wCAHfLmRPeaK87sz7ir+TeeHQrUSPwylp0TqxPqeEhr7W/I5gC
xfhJgZtaVEr4evlczrmaX/8cpV4QLJRLX9EB/jF3Nmewm4xuN3C1xaXNrLxQMns2
ZKG/occv/tj1t4TJoE7ECSQItQAf4mGP+Fk6oaOrwZdMf5vHK0NmtZglOpzGVO7D
jN8MuRcf6PjD+tG5fdwFjKTqzEFap3wTlYcCAwEAAaOCAikwggIlMB0GA1UdDgQW
BBRZXxclHREGE4w+r5LmEze6M0XphDAfBgNVHSMEGDAWgBQdw/e4Yka68wpqzFmc
GMHPL3NQnDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb
oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMzAwNTMvSGNQM3VHSkd1dk1LYXN4Wm5CakJ6eTl6VUp3LmNybDBtBggr
BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5
Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvSGNQM3VHSkd1dk1LYXN4Wm5CakJ6
eTl6VUp3LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG
CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv
QTkxQTczODEwMDAwLzMwMDUzL1dWOFhKUjBSQmhPTVBxLVM1aE0zdWpORjZZUS5y
b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q
cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E
AgACMAcDBQAgAQ6QMA0GCSqGSIb3DQEBCwUAA4IBAQAcSBhl4KDGZT0Cj8CYK1Yp
g1ddimN1LPmG2BLXzFvnXczDFjldrzVdIft4/lCcUT+6vBhOVe7BvG9YpWLrUh9m
8aCZ1qiEdARuM4bT7TR+4ys3k3Fi/lNARyeexYon75ty7yC5PCydGXnpKAZuStck
S2q2fE6NpUcOFX9tauhAoHWbDBiXcnPRuWLSWdOA9K9s2liM88IOxjtlIX2mttf+
Qw19GpsDm94cRBkx/KYKV3XJlzvfckbGhIwAxaoge6pcN8rwFcv1SGWm4wbbwRcP
Z4G2YWAaqH04WYhmiRa1X6m+AKR6V4wsgpthGZ0byoPPvo7vFZ79efYAvaZNSScS
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:57 2024 by rpki-client on console-ams.rpki-client.org