Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30191/PKY7iPrpvevKgaNQBomfrRckuNs.roa
File: PKY7iPrpvevKgaNQBomfrRckuNs.roa (raw, json)
Hash identifier: TnO2dTfRvcb1UkeI29bWq3ZlYJOW5j3QXMedpfcFEvU=
Subject key identifier: 3C:A6:3B:88:FA:E9:BD:EB:CA:81:A3:50:06:89:9F:AD:17:24:B8:DB
Certificate issuer: /CN=4F28372369E482E49424ED39E244330E34EB40B0
Certificate serial: 30
Authority key identifier: 4F:28:37:23:69:E4:82:E4:94:24:ED:39:E2:44:33:0E:34:EB:40:B0
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tyg3I2nkguSUJO054kQzDjTrQLA.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30191/PKY7iPrpvevKgaNQBomfrRckuNs.roa
Signing time: Thu 13 Apr 2023 09:54:09 +0000
ROA not before: Thu 13 Apr 2023 09:54:09 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 7684
IP address blocks: 2401:2500::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48 (0x30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4F28372369E482E49424ED39E244330E34EB40B0
Validity
Not Before: Apr 13 09:54:09 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=3CA63B88FAE9BDEBCA81A35006899FAD1724B8DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:59:90:c5:1a:0f:7e:13:55:ac:7f:38:1a:4f:
b3:79:ab:aa:ea:7e:fa:ee:94:ca:c7:39:10:6a:99:
a0:49:43:2e:39:8c:0e:27:a3:e0:2b:58:50:5a:ac:
de:23:bd:f2:d8:34:3d:6b:3f:f9:36:ed:ea:02:c3:
10:48:21:0e:87:3a:87:29:08:f2:a4:f1:3a:16:f5:
b3:c4:1a:36:d2:cb:78:b0:41:83:b5:9b:0c:46:71:
3b:ec:a5:56:2a:df:17:6d:78:31:66:8b:2a:9e:ca:
98:11:3f:d8:14:2e:fb:c8:af:16:da:f1:37:79:84:
4b:89:3b:0e:12:79:2a:05:5f:e0:b8:54:3e:9b:1e:
9d:0d:e3:bb:b2:c1:c4:6f:36:96:07:f2:a0:bd:ed:
d1:94:ec:07:67:b5:93:c9:81:e4:a0:b3:38:cb:d3:
80:1c:d3:b5:0c:0e:4b:d0:ae:d2:04:c0:af:98:63:
d2:f8:be:d4:16:24:e6:ed:cd:18:f2:61:94:15:72:
f1:bf:09:c4:dd:7d:4a:fb:56:5b:4d:6e:2d:89:1e:
b5:66:ab:70:ff:ed:3f:80:72:98:3b:82:6e:03:70:
bf:a8:0a:67:78:af:4e:9e:79:af:64:c0:e0:f2:0f:
3a:eb:31:45:87:bc:8c:44:80:59:a6:fe:63:cc:0f:
2a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:A6:3B:88:FA:E9:BD:EB:CA:81:A3:50:06:89:9F:AD:17:24:B8:DB
X509v3 Authority Key Identifier:
keyid:4F:28:37:23:69:E4:82:E4:94:24:ED:39:E2:44:33:0E:34:EB:40:B0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30191/Tyg3I2nkguSUJO054kQzDjTrQLA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tyg3I2nkguSUJO054kQzDjTrQLA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30191/PKY7iPrpvevKgaNQBomfrRckuNs.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:2500::/32
Signature Algorithm: sha256WithRSAEncryption
06:3c:f2:41:c5:c7:e1:25:13:d4:fa:d0:03:b9:ee:36:92:52:
b3:7c:c0:00:25:7f:b1:34:b4:ac:f7:9c:a1:3a:1b:ed:22:af:
e8:2c:2b:18:d4:5f:8d:2f:48:fd:e8:6c:9e:cb:0e:d4:02:81:
bf:d7:ec:aa:5e:17:3f:c4:18:3d:81:dd:ba:95:ce:93:6d:30:
18:8a:49:4b:8a:10:f8:39:76:63:92:53:aa:ee:db:e5:a5:e2:
ed:8f:a4:ab:1d:7b:02:52:d3:08:01:c6:d6:d6:36:65:86:e0:
92:cb:bc:5e:c3:05:e6:7e:91:c5:7d:e8:bf:87:dc:ca:18:13:
8a:f6:b6:af:50:42:2f:61:ae:e3:dc:42:ab:49:1c:0c:dc:f6:
5d:49:49:88:1a:c9:94:00:7b:3c:23:27:d8:9f:b8:87:2e:d7:
39:fe:9e:f5:47:5d:9c:98:19:24:c0:29:22:70:6a:6d:b8:7a:
2b:75:83:a2:6c:9d:c7:be:0c:19:4a:94:8b:6b:f8:ad:bb:d6:
a9:a5:d6:ae:8a:dc:51:bd:c0:64:c7:bc:62:a3:b9:8b:a2:59:
48:83:14:e7:ba:d1:cf:cd:cb:36:c1:03:9f:97:6c:83:08:cf:
7c:df:f5:8e:ad:5e:10:0d:2d:fc:ca:2f:6e:98:b8:73:72:bb:
da:d1:47:6b
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgIBMDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0RjI4
MzcyMzY5RTQ4MkU0OTQyNEVEMzlFMjQ0MzMwRTM0RUI0MEIwMB4XDTIzMDQxMzA5
NTQwOVoXDTI0MDMxNDAxMzAwMlowMzExMC8GA1UEAxMoM0NBNjNCODhGQUU5QkRF
QkNBODFBMzUwMDY4OTlGQUQxNzI0QjhEQjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBANVZkMUaD34TVax/OBpPs3mrqup++u6Uysc5EGqZoElDLjmMDiej
4CtYUFqs3iO98tg0PWs/+Tbt6gLDEEghDoc6hykI8qTxOhb1s8QaNtLLeLBBg7Wb
DEZxO+ylVirfF214MWaLKp7KmBE/2BQu+8ivFtrxN3mES4k7DhJ5KgVf4LhUPpse
nQ3ju7LBxG82lgfyoL3t0ZTsB2e1k8mB5KCzOMvTgBzTtQwOS9Cu0gTAr5hj0vi+
1BYk5u3NGPJhlBVy8b8JxN19SvtWW01uLYketWarcP/tP4BymDuCbgNwv6gKZ3iv
Tp55r2TA4PIPOusxRYe8jESAWab+Y8wPKtUCAwEAAaOCAikwggIlMB0GA1UdDgQW
BBQ8pjuI+um968qBo1AGiZ+tFyS42zAfBgNVHSMEGDAWgBRPKDcjaeSC5JQk7Tni
RDMONOtAsDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb
oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMzAxOTEvVHlnM0kybmtndVNVSk8wNTRrUXpEalRyUUxBLmNybDBtBggr
BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5
Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvVHlnM0kybmtndVNVSk8wNTRrUXpE
alRyUUxBLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG
CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv
QTkxQTczODEwMDAwLzMwMTkxL1BLWTdpUHJwdmV2S2dhTlFCb21mclJja3VOcy5y
b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q
cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E
AgACMAcDBQAkASUAMA0GCSqGSIb3DQEBCwUAA4IBAQAGPPJBxcfhJRPU+tADue42
klKzfMAAJX+xNLSs95yhOhvtIq/oLCsY1F+NL0j96Gyeyw7UAoG/1+yqXhc/xBg9
gd26lc6TbTAYiklLihD4OXZjklOq7tvlpeLtj6SrHXsCUtMIAcbW1jZlhuCSy7xe
wwXmfpHFfei/h9zKGBOK9ravUEIvYa7j3EKrSRwM3PZdSUmIGsmUAHs8IyfYn7iH
Ltc5/p71R12cmBkkwCkicGptuHordYOibJ3HvgwZSpSLa/itu9appdauitxRvcBk
x7xio7mLollIgxTnutHPzcs2wQOfl2yDCM983/WOrV4QDS38yi9umLhzcrva0Udr
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:22:46 2025 by rpki-client