Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/0SGhKw-I60W55_ye3HL-HlhrANY.roa
File: 0SGhKw-I60W55_ye3HL-HlhrANY.roa (raw, json)
Hash identifier: BuzBC9xPsdEO4yEqkrGyFgMFYDCdld3WCKh/LP4zrPk=
Subject key identifier: D1:21:A1:2B:0F:88:EB:45:B9:E7:FC:9E:DC:72:FE:1E:58:6B:00:D6
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 04C5
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/0SGhKw-I60W55_ye3HL-HlhrANY.roa
Signing time: Thu 27 Jul 2023 16:48:16 +0000
ROA not before: Thu 27 Jul 2023 16:48:16 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 220.159.226.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1221 (0x4c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:48:16 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=D121A12B0F88EB45B9E7FC9EDC72FE1E586B00D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e2:b5:c7:7b:38:1d:a2:3a:83:e2:78:f9:87:
7a:75:05:9a:bc:04:56:96:ae:89:3e:4c:44:a7:6d:
d2:5f:f9:12:00:9a:74:3b:e4:a4:4b:b8:e4:f9:cd:
04:6e:be:c8:1a:5c:a0:22:ed:be:cd:d7:ff:e7:67:
94:75:a5:7d:5f:0e:99:1e:cf:b2:fa:1c:b0:83:a5:
3d:72:48:0c:89:ec:c6:2a:81:9d:4c:68:4e:00:38:
da:08:08:83:97:a5:a3:06:fb:7f:32:61:30:b6:43:
2c:85:3c:c9:11:e5:6c:29:17:13:32:a0:a9:ff:03:
bf:4d:df:da:0f:05:a2:a5:7c:b3:80:79:0d:7a:90:
49:fa:be:f0:3e:bc:a1:c7:d1:e0:bf:16:b7:39:0f:
b5:a1:43:c5:02:f2:40:5e:f1:ae:20:2c:7d:0e:ee:
2c:fb:4e:73:f7:1a:29:41:2d:e7:5a:fb:79:17:61:
17:a4:47:3c:2d:1a:bc:b4:7c:8b:11:69:61:42:8d:
73:bc:d7:c5:dd:ce:74:0a:61:ac:ac:0f:b4:ab:06:
d9:f3:92:2b:3c:5d:1d:5a:d9:38:69:41:6e:2a:33:
99:44:40:82:ad:5d:f2:49:fd:1f:a0:b7:99:38:aa:
f3:b2:09:14:42:58:2b:12:3a:fb:cd:25:5b:20:59:
18:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:21:A1:2B:0F:88:EB:45:B9:E7:FC:9E:DC:72:FE:1E:58:6B:00:D6
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/0SGhKw-I60W55_ye3HL-HlhrANY.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.159.226.0/23
Signature Algorithm: sha256WithRSAEncryption
62:84:07:4c:cd:bf:9a:34:7e:e6:bb:6f:7d:6f:af:f5:78:95:
86:f5:83:6c:02:69:c8:6d:99:66:5b:94:00:8b:68:4d:07:c2:
5f:7c:ec:6f:dc:84:e8:9e:9f:f0:de:c8:66:d4:1e:bd:b2:7a:
b1:b4:14:f2:71:2b:35:ba:ea:d2:90:c0:31:93:a3:9a:ca:6a:
ca:ae:64:10:2a:b8:0f:8a:ca:80:f7:3d:76:94:7d:50:b3:7d:
51:8f:ef:46:8f:bc:bb:7b:6e:6f:a1:29:bd:de:52:d4:d7:4a:
7b:91:99:85:d8:d9:b1:7d:e5:ae:bd:b5:bc:d7:54:2d:bb:f5:
a8:90:04:cf:fb:40:e8:84:24:d6:d4:50:d3:d8:30:6f:07:0c:
85:46:00:22:be:76:b9:87:2e:36:46:b0:b1:7e:30:a6:86:12:
bc:67:d8:52:49:67:a8:ea:f7:27:07:c9:2f:87:7a:22:5e:a5:
42:6e:d0:96:a6:ff:03:22:a4:fa:b7:ba:80:a8:f9:32:ce:2b:
5c:b6:70:57:43:49:e7:2e:bd:28:dc:9c:82:5f:0a:e9:98:89:
bb:67:d7:b1:4d:9e:da:aa:1d:07:8e:af:29:a3:a0:42:0c:d3:
2c:35:ce:1a:32:70:62:d0:5f:3b:ad:5f:48:e2:5b:97:6a:db:
18:0b:67:ae
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICBMUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA3Mjcx
NjQ4MTZaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKEQxMjFBMTJCMEY4OEVC
NDVCOUU3RkM5RURDNzJGRTFFNTg2QjAwRDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCs4rXHezgdojqD4nj5h3p1BZq8BFaWrok+TESnbdJf+RIAmnQ7
5KRLuOT5zQRuvsgaXKAi7b7N1//nZ5R1pX1fDpkez7L6HLCDpT1ySAyJ7MYqgZ1M
aE4AONoICIOXpaMG+38yYTC2QyyFPMkR5WwpFxMyoKn/A79N39oPBaKlfLOAeQ16
kEn6vvA+vKHH0eC/Frc5D7WhQ8UC8kBe8a4gLH0O7iz7TnP3GilBLeda+3kXYRek
RzwtGry0fIsRaWFCjXO818XdznQKYaysD7SrBtnzkis8XR1a2ThpQW4qM5lEQIKt
XfJJ/R+gt5k4qvOyCRRCWCsSOvvNJVsgWRhPAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQU0SGhKw+I60W55/ye3HL+HlhrANYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5LzBTR2hLdy1JNjBXNTVfeWUzSEwtSGxockFOWS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAHcn+IwDQYJKoZIhvcNAQELBQADggEBAGKEB0zNv5o0fua7b31vr/V4lYb1
g2wCachtmWZblACLaE0Hwl987G/chOien/DeyGbUHr2yerG0FPJxKzW66tKQwDGT
o5rKasquZBAquA+KyoD3PXaUfVCzfVGP70aPvLt7bm+hKb3eUtTXSnuRmYXY2bF9
5a69tbzXVC279aiQBM/7QOiEJNbUUNPYMG8HDIVGACK+drmHLjZGsLF+MKaGErxn
2FJJZ6jq9ycHyS+HeiJepUJu0Jam/wMipPq3uoCo+TLOK1y2cFdDSecuvSjcnIJf
CumYibtn17FNntqqHQeOrymjoEIM0yw1zhoycGLQXzutX0jiW5dq2xgLZ64=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:24:07 2025 by rpki-client