Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/-Nn3KljbSxC_jIqaslNV-2h3er0.roa
File: -Nn3KljbSxC_jIqaslNV-2h3er0.roa (raw, json)
Hash identifier: ZDlDqRwz0ml/d0nq3S1o5pFrjX5z9L+r3P8rmkL46k0=
Subject key identifier: F8:D9:F7:2A:58:DB:4B:10:BF:8C:8A:9A:B2:53:55:FB:68:77:7A:BD
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 02E0
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-Nn3KljbSxC_jIqaslNV-2h3er0.roa
Signing time: Thu 01 Jun 2023 16:04:31 +0000
ROA not before: Thu 01 Jun 2023 16:04:31 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.98.114.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 736 (0x2e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 16:04:31 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=F8D9F72A58DB4B10BF8C8A9AB25355FB68777ABD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:6e:21:34:e5:50:f6:0c:6d:f3:0a:26:d1:53:
a7:b1:f0:c6:7e:d7:6b:81:2a:8a:c6:91:fc:6b:48:
c2:90:e2:95:fe:27:3b:74:e7:c3:08:14:6e:4e:6c:
f4:0d:c5:09:9a:9b:95:0c:b3:c6:18:cb:a8:a8:e2:
23:aa:bb:e4:69:c3:92:59:d2:b8:aa:ee:ac:88:0d:
5d:f0:a4:d8:13:3c:b6:17:f5:8f:0b:bb:35:5e:d6:
44:80:b4:cf:fe:7a:86:fa:f2:6e:88:32:12:78:3f:
77:c1:49:32:9d:92:96:99:65:08:42:22:13:47:ca:
2c:17:ff:80:37:11:8b:46:66:bb:bd:24:4a:47:5c:
05:1a:5f:b6:e8:31:c6:11:2b:f1:e3:19:52:d7:e7:
23:10:b3:ad:5b:63:cd:8d:43:86:2a:9a:51:80:d6:
b6:eb:06:5f:1e:41:88:f6:d4:67:96:0a:50:61:25:
0f:7e:0e:70:83:b0:de:78:12:77:45:d8:2b:b0:7f:
ae:44:10:a0:f0:b3:e4:0f:e9:3d:c4:09:8e:5d:cd:
05:f4:e6:c4:5d:ba:b9:e6:4f:44:21:52:07:12:76:
19:66:19:91:1e:02:07:71:dc:29:66:51:bc:02:7f:
4f:fa:2d:bc:05:db:ff:77:0c:ce:30:b2:38:0a:b4:
c7:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:D9:F7:2A:58:DB:4B:10:BF:8C:8A:9A:B2:53:55:FB:68:77:7A:BD
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-Nn3KljbSxC_jIqaslNV-2h3er0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.114.0/24
Signature Algorithm: sha256WithRSAEncryption
10:ee:bf:04:b4:66:cc:c0:72:a2:48:8c:e6:93:b0:2d:d6:91:
b1:f3:64:2a:a6:6f:5b:b6:bb:c6:48:f3:d8:f4:29:b5:92:41:
6c:ff:ac:7b:0e:19:a9:99:9c:7e:53:5d:c5:45:a0:2b:2d:08:
22:76:f5:15:a1:9f:e4:2f:d4:a9:d9:75:0b:3b:3f:ef:01:95:
5d:b5:0e:75:e3:fe:36:61:2d:80:fc:3e:ce:81:26:90:a1:bc:
e7:01:63:bd:a3:fd:e0:0f:3c:22:84:d4:d1:eb:c8:a6:5d:21:
c3:0f:62:75:4c:e1:43:c3:ca:05:bb:8b:12:6c:b5:b7:4f:2f:
42:ec:e6:6c:f6:69:c2:c6:60:13:a2:49:f5:3a:3f:ec:3b:4a:
b5:ff:3b:ae:c0:ba:b0:ee:97:29:67:14:cb:58:e5:bc:2f:16:
21:35:1c:e0:f1:22:06:6c:58:64:fa:f3:2a:05:d7:42:83:2e:
e6:6f:de:08:b4:bb:72:ef:fd:89:dd:58:7b:75:36:f7:b8:a4:
ee:5a:b7:ef:9c:67:60:d3:0b:72:3d:fd:94:7a:d3:a1:6f:22:
2f:fc:b4:c7:73:37:fe:2c:6d:cb:c1:50:5d:39:82:bb:e0:b5:
11:6c:34:ed:5c:a3:5d:0b:35:e5:fb:38:dc:9f:e9:e5:30:e1:
2f:ce:88:30
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAuAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA2MDEx
NjA0MzFaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKEY4RDlGNzJBNThEQjRC
MTBCRjhDOEE5QUIyNTM1NUZCNjg3NzdBQkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDfbiE05VD2DG3zCibRU6ex8MZ+12uBKorGkfxrSMKQ4pX+Jzt0
58MIFG5ObPQNxQmam5UMs8YYy6io4iOqu+Rpw5JZ0riq7qyIDV3wpNgTPLYX9Y8L
uzVe1kSAtM/+eob68m6IMhJ4P3fBSTKdkpaZZQhCIhNHyiwX/4A3EYtGZru9JEpH
XAUaX7boMcYRK/HjGVLX5yMQs61bY82NQ4YqmlGA1rbrBl8eQYj21GeWClBhJQ9+
DnCDsN54EndF2Cuwf65EEKDws+QP6T3ECY5dzQX05sRdurnmT0QhUgcSdhlmGZEe
Agdx3ClmUbwCf0/6LbwF2/93DM4wsjgKtMd5AgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQU+Nn3KljbSxC/jIqaslNV+2h3er0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5Ly1ObjNLbGpiU3hDX2pJcWFzbE5WLTJoM2VyMC5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAAxYnIwDQYJKoZIhvcNAQELBQADggEBABDuvwS0ZszAcqJIjOaTsC3WkbHz
ZCqmb1u2u8ZI89j0KbWSQWz/rHsOGamZnH5TXcVFoCstCCJ29RWhn+Qv1KnZdQs7
P+8BlV21DnXj/jZhLYD8Ps6BJpChvOcBY72j/eAPPCKE1NHryKZdIcMPYnVM4UPD
ygW7ixJstbdPL0Ls5mz2acLGYBOiSfU6P+w7SrX/O67AurDulylnFMtY5bwvFiE1
HODxIgZsWGT68yoF10KDLuZv3gi0u3Lv/YndWHt1Nve4pO5at++cZ2DTC3I9/ZR6
06FvIi/8tMdzN/4sbcvBUF05grvgtRFsNO1co10LNeX7ONyf6eUw4S/OiDA=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:28:14 2025 by rpki-client