Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/3ltWXyKCupBu8Pt-wJaBsVkgCpQ.roa
File: 3ltWXyKCupBu8Pt-wJaBsVkgCpQ.roa (raw, json)
Hash identifier: Ili9V6VvLhoYIkSgywQv2635YsuGssSW/2S2jFP7O2Y=
Subject key identifier: DE:5B:56:5F:22:82:BA:90:6E:F0:FB:7E:C0:96:81:B1:59:20:0A:94
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0216
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3ltWXyKCupBu8Pt-wJaBsVkgCpQ.roa
Signing time: Tue 30 May 2023 16:30:25 +0000
ROA not before: Tue 30 May 2023 16:30:25 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.67.240.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 534 (0x216)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:30:25 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=DE5B565F2282BA906EF0FB7EC09681B159200A94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:dc:9b:e3:bf:87:ec:bb:72:bc:1d:d6:1f:69:
29:43:56:d3:f8:0c:d3:0e:5c:25:38:44:2e:66:01:
e0:e1:38:cf:6b:fd:eb:76:a7:41:a3:b5:22:76:89:
03:d4:9a:86:58:cd:3e:25:9e:b1:18:8d:83:f9:3a:
84:93:4f:fa:19:71:83:6a:f4:e4:40:ce:2c:23:2b:
cc:06:91:b2:05:fc:1e:ee:24:2e:4c:17:be:b1:f8:
a3:bd:53:01:9c:a3:6f:2a:ab:23:6f:9b:df:e7:69:
10:3a:9f:0c:3a:c2:da:19:f2:31:30:76:83:06:84:
f1:12:98:17:57:0e:8d:5f:1c:1b:1a:86:f8:9a:fa:
f2:29:de:8d:41:6e:aa:d3:18:6f:3d:33:dd:23:95:
4c:77:ab:77:05:21:3e:a8:b7:a0:f5:a2:23:2e:21:
4d:90:8c:f9:b2:0a:c9:0b:29:69:db:cd:c3:7f:b4:
c4:12:32:bb:39:e7:cb:2a:6f:ed:c4:0e:a1:35:bd:
74:1d:6e:44:30:56:b8:7a:35:29:6a:2a:23:37:be:
2c:67:1a:81:62:07:5c:54:58:04:15:b6:55:32:b9:
c7:2a:c0:8c:04:12:3f:f9:8d:f6:f8:14:fb:6d:40:
7d:21:d7:16:38:2c:f6:8c:d8:3b:27:ac:ca:92:4a:
d7:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:5B:56:5F:22:82:BA:90:6E:F0:FB:7E:C0:96:81:B1:59:20:0A:94
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3ltWXyKCupBu8Pt-wJaBsVkgCpQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.67.240.0/20
Signature Algorithm: sha256WithRSAEncryption
e4:f6:80:f9:df:d7:5e:da:1f:c3:fb:a9:75:73:55:25:2e:32:
09:b9:ee:06:79:b2:e3:81:f6:80:32:c1:48:f3:85:db:e9:2e:
f2:18:83:ea:83:98:b1:68:65:69:c5:d5:d1:13:dd:7c:51:ad:
32:8f:64:3a:2b:c6:3d:0d:fc:11:e0:65:9b:a9:c6:a8:f1:15:
55:54:03:d6:d2:86:27:57:e0:5f:88:ae:02:9e:0b:27:ff:07:
e3:52:b7:b9:5f:2e:5c:cf:99:86:eb:b9:17:1b:c6:18:0f:dc:
de:43:57:75:4b:0b:ed:4c:90:48:bd:93:db:95:30:ae:e3:be:
40:8b:ef:bc:a7:71:17:7d:3a:43:29:a0:86:78:41:bf:19:ce:
62:1e:99:45:90:7c:aa:b1:76:c3:4b:32:8c:30:a6:a5:0d:5b:
8d:a6:a4:26:13:f4:0e:e1:1f:80:a4:ab:28:75:96:4e:b4:c1:
8b:d6:e7:68:1c:90:55:05:64:99:ff:e1:71:36:de:3c:19:03:
73:3f:70:73:0c:3c:70:10:d6:d6:76:68:fa:1a:98:72:f6:6a:
5b:ba:31:94:cc:e2:eb:dd:fb:a9:b5:70:0e:b6:a8:11:60:a9:
41:43:22:6a:4e:3e:71:05:18:e5:01:d5:46:85:76:c1:76:e1:
f2:5e:91:92
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAhYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MzAx
NjMwMjVaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKERFNUI1NjVGMjI4MkJB
OTA2RUYwRkI3RUMwOTY4MUIxNTkyMDBBOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC13Jvjv4fsu3K8HdYfaSlDVtP4DNMOXCU4RC5mAeDhOM9r/et2
p0GjtSJ2iQPUmoZYzT4lnrEYjYP5OoSTT/oZcYNq9ORAziwjK8wGkbIF/B7uJC5M
F76x+KO9UwGco28qqyNvm9/naRA6nww6wtoZ8jEwdoMGhPESmBdXDo1fHBsahvia
+vIp3o1BbqrTGG89M90jlUx3q3cFIT6ot6D1oiMuIU2QjPmyCskLKWnbzcN/tMQS
Mrs558sqb+3EDqE1vXQdbkQwVrh6NSlqKiM3vixnGoFiB1xUWAQVtlUyuccqwIwE
Ej/5jfb4FPttQH0h1xY4LPaM2DsnrMqSStfnAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQU3ltWXyKCupBu8Pt+wJaBsVkgCpQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5LzNsdFdYeUtDdXBCdThQdC13SmFCc1ZrZ0NwUS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAQBQ/AwDQYJKoZIhvcNAQELBQADggEBAOT2gPnf117aH8P7qXVzVSUuMgm5
7gZ5suOB9oAywUjzhdvpLvIYg+qDmLFoZWnF1dET3XxRrTKPZDorxj0N/BHgZZup
xqjxFVVUA9bShidX4F+IrgKeCyf/B+NSt7lfLlzPmYbruRcbxhgP3N5DV3VLC+1M
kEi9k9uVMK7jvkCL77yncRd9OkMpoIZ4Qb8ZzmIemUWQfKqxdsNLMowwpqUNW42m
pCYT9A7hH4Ckqyh1lk60wYvW52gckFUFZJn/4XE23jwZA3M/cHMMPHAQ1tZ2aPoa
mHL2alu6MZTM4uvd+6m1cA62qBFgqUFDImpOPnEFGOUB1UaFdsF24fJekZI=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:23:58 2025 by rpki-client