Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/5z2mXq4W3bZ_nkiJTvp31oTgA74.roa
File: 5z2mXq4W3bZ_nkiJTvp31oTgA74.roa (raw, json)
Hash identifier: W+ujKpfnUVWlr7JLRtE/yqp1GD3DHE75Lq3lwWt1HBo=
Subject key identifier: E7:3D:A6:5E:AE:16:DD:B6:7F:9E:48:89:4E:FA:77:D6:84:E0:03:BE
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 02E8
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/5z2mXq4W3bZ_nkiJTvp31oTgA74.roa
Signing time: Thu 01 Jun 2023 16:04:34 +0000
ROA not before: Thu 01 Jun 2023 16:04:34 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.96.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 744 (0x2e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 16:04:34 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=E73DA65EAE16DDB67F9E48894EFA77D684E003BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:10:70:55:6a:e1:95:9d:01:e8:77:1a:7f:84:
90:35:78:5b:a6:4e:94:dc:b8:bd:16:37:b9:23:d1:
89:c6:63:f7:1f:47:06:5a:f4:c6:2c:15:f1:1c:61:
2f:47:09:ac:e6:cd:bc:f5:e7:d2:b8:28:56:01:34:
e2:e4:4a:11:76:14:dc:4f:8b:9a:76:36:5a:9a:09:
b9:ad:2b:0d:9e:b4:83:1b:eb:65:b7:ae:d2:da:39:
98:6e:ea:f7:04:63:90:6a:ab:d7:07:4b:69:8c:85:
cf:9f:ca:91:a8:7d:9f:e0:83:b9:dd:be:b0:5d:db:
90:2c:de:17:b9:a7:07:1f:7b:06:74:62:df:fa:82:
e4:1d:9e:5e:23:ee:8d:e5:f1:e1:ac:84:f9:0f:4e:
4a:e7:4b:0a:36:d9:a2:97:40:ea:06:65:0b:11:35:
6f:e9:03:66:7c:2e:73:59:40:76:3f:63:71:75:d8:
4e:3d:3e:9c:e9:51:88:2e:bf:c6:45:61:d7:10:98:
60:cb:27:9d:8a:24:a3:51:8b:62:71:b8:c1:96:ee:
aa:26:0b:cb:e5:4e:d5:99:e8:17:fe:bb:1a:83:2a:
59:74:6b:cc:44:bf:6a:95:df:a7:f9:73:32:14:34:
26:45:35:e2:99:2b:86:cc:68:0e:2a:85:b5:17:d4:
43:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:3D:A6:5E:AE:16:DD:B6:7F:9E:48:89:4E:FA:77:D6:84:E0:03:BE
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/5z2mXq4W3bZ_nkiJTvp31oTgA74.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.96.16.0/24
Signature Algorithm: sha256WithRSAEncryption
47:5e:3d:bb:f2:3c:bf:bb:66:e1:2b:bb:3e:9a:c7:5c:b5:99:
29:0f:1d:f0:c5:dd:07:02:4c:f4:33:0d:44:39:95:a9:9d:44:
5b:28:f1:41:0b:c6:14:14:a5:e8:fa:3f:1f:4f:f9:c2:ed:8f:
4f:52:7b:27:6d:66:a3:94:1c:0d:af:e0:4b:c6:aa:72:58:11:
9f:2f:d8:ef:44:44:19:d3:b7:c7:65:1d:dd:14:9c:fb:be:50:
e7:01:a0:e3:f7:5c:6c:6e:30:fc:67:ea:54:1f:55:ca:b8:93:
90:10:24:7b:f2:1b:6e:c8:07:56:65:52:d3:36:fc:1d:4e:fd:
d1:81:99:f0:29:72:d3:e2:d8:ce:1d:82:ec:53:37:24:69:52:
75:c0:4f:5e:4b:40:ee:52:d3:c6:97:d6:e1:06:b2:a9:dd:c0:
66:98:3f:99:18:fa:95:66:35:7f:ec:b8:c1:65:f2:27:5b:ad:
4b:64:e8:c0:49:72:b5:a4:15:79:a3:34:53:ee:35:36:d6:cc:
fd:a3:cb:9e:2f:8e:41:8f:09:65:84:a0:1e:bf:89:46:4d:d4:
67:72:c1:87:96:ba:cb:44:73:13:03:77:ae:ae:98:a3:df:82:
08:9c:99:95:6a:ee:a9:d1:18:8a:d7:16:26:55:ca:cc:e4:ed:
7d:16:88:05
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAugwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA2MDEx
NjA0MzRaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKEU3M0RBNjVFQUUxNkRE
QjY3RjlFNDg4OTRFRkE3N0Q2ODRFMDAzQkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCWEHBVauGVnQHodxp/hJA1eFumTpTcuL0WN7kj0YnGY/cfRwZa
9MYsFfEcYS9HCazmzbz159K4KFYBNOLkShF2FNxPi5p2NlqaCbmtKw2etIMb62W3
rtLaOZhu6vcEY5Bqq9cHS2mMhc+fypGofZ/gg7ndvrBd25As3he5pwcfewZ0Yt/6
guQdnl4j7o3l8eGshPkPTkrnSwo22aKXQOoGZQsRNW/pA2Z8LnNZQHY/Y3F12E49
PpzpUYguv8ZFYdcQmGDLJ52KJKNRi2JxuMGW7qomC8vlTtWZ6Bf+uxqDKll0a8xE
v2qV36f5czIUNCZFNeKZK4bMaA4qhbUX1EPJAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQU5z2mXq4W3bZ/nkiJTvp31oTgA74wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5LzV6Mm1YcTRXM2JaX25raUpUdnAzMW9UZ0E3NC5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAAxYBAwDQYJKoZIhvcNAQELBQADggEBAEdePbvyPL+7ZuEruz6ax1y1mSkP
HfDF3QcCTPQzDUQ5lamdRFso8UELxhQUpej6Px9P+cLtj09SeydtZqOUHA2v4EvG
qnJYEZ8v2O9ERBnTt8dlHd0UnPu+UOcBoOP3XGxuMPxn6lQfVcq4k5AQJHvyG27I
B1ZlUtM2/B1O/dGBmfApctPi2M4dguxTNyRpUnXAT15LQO5S08aX1uEGsqndwGaY
P5kY+pVmNX/suMFl8idbrUtk6MBJcrWkFXmjNFPuNTbWzP2jy54vjkGPCWWEoB6/
iUZN1GdywYeWustEcxMDd66umKPfggicmZVq7qnRGIrXFiZVyszk7X0WiAU=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:12:52 2025 by rpki-client