Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/8UiluG0PXsDfMdZ3_LUKaffQ1vo.roa
File: 8UiluG0PXsDfMdZ3_LUKaffQ1vo.roa (raw, json)
Hash identifier: q1RMfx7HZoSfETQhIj0vPsZa6PrnZ/i7IXxS4bl1hXg=
Subject key identifier: F1:48:A5:B8:6D:0F:5E:C0:DF:31:D6:77:FC:B5:0A:69:F7:D0:D6:FA
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0264
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/8UiluG0PXsDfMdZ3_LUKaffQ1vo.roa
Signing time: Tue 30 May 2023 16:34:14 +0000
ROA not before: Tue 30 May 2023 16:34:14 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 220.210.28.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 612 (0x264)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:34:14 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=F148A5B86D0F5EC0DF31D677FCB50A69F7D0D6FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:70:71:82:d8:54:1c:75:cd:4d:80:6c:c5:a5:
21:fb:9d:ac:f8:b0:77:cf:4d:0f:74:1b:2f:df:87:
21:62:80:4a:6a:44:d0:77:bd:55:2b:7d:8c:2b:ab:
a9:11:5a:e7:bb:91:96:02:f5:b8:c9:b0:3f:43:32:
2d:4e:bd:57:46:de:00:5b:a1:9d:cb:c4:8d:26:5c:
6c:ad:6b:c5:a1:10:75:6b:f0:c0:e9:d8:d8:d5:77:
99:19:06:58:bc:45:cd:82:f9:4f:9f:47:3a:74:28:
bf:58:de:a1:da:b4:b5:5a:ba:c1:cc:21:f5:e3:02:
e1:61:c7:97:1d:80:e8:32:89:db:18:9f:58:71:7f:
71:a6:6f:4f:be:07:4e:d1:c1:bb:18:2b:c3:29:d2:
01:cd:ee:db:cf:d5:95:1b:cf:96:40:56:aa:ac:23:
c2:fc:d2:29:0e:c9:c5:68:f7:2b:69:ee:48:96:60:
66:4d:76:5c:ae:ff:2c:8e:34:de:c3:cd:3b:35:70:
22:0e:5a:0e:86:0b:87:34:0b:26:c2:a7:9c:9f:e3:
e0:ff:d3:43:fb:a5:16:ac:df:d9:34:29:37:92:cb:
4c:ee:57:b5:4a:d8:25:20:b5:9f:2b:28:47:6b:97:
e0:52:cd:75:04:15:4d:0a:cf:c5:05:4b:34:39:ab:
24:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:48:A5:B8:6D:0F:5E:C0:DF:31:D6:77:FC:B5:0A:69:F7:D0:D6:FA
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/8UiluG0PXsDfMdZ3_LUKaffQ1vo.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.210.28.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:9a:09:9d:8b:65:4b:20:db:a5:33:b7:14:03:3e:9e:1a:c4:
66:0a:a5:5b:99:7c:fd:f5:3d:ad:c6:63:6a:0f:9c:9c:f8:3f:
12:1f:07:69:b4:3c:b9:70:fb:a3:0f:a9:4f:c6:bf:7c:e9:a5:
2e:fe:6e:2b:8b:bc:3e:a9:9e:93:10:94:99:cd:43:e5:30:08:
c3:a2:d0:14:47:cc:1b:cc:cc:0f:32:4a:b4:47:ba:1f:a7:a8:
13:59:e5:5f:e5:35:52:a1:ac:ae:6e:83:24:aa:61:67:9d:ef:
e5:f4:d9:d5:00:e2:9c:b1:dc:51:04:1d:33:bd:72:ca:8f:41:
3d:18:da:bd:24:67:68:c1:90:ec:cd:47:26:17:4f:19:cd:cd:
bf:be:dd:ff:89:45:f1:48:89:93:e1:ac:29:ce:1c:ac:64:f5:
81:c7:98:29:44:3a:b6:31:ac:df:34:89:a8:43:5a:92:e9:58:
39:ed:75:fd:bc:21:7b:26:3f:b6:ce:e1:f2:32:e7:63:be:86:
c6:2a:84:b6:44:48:2f:eb:e7:59:8e:c9:a5:84:47:25:05:57:
c1:87:36:f8:d0:b2:4d:29:10:f3:35:22:9a:43:f2:49:af:82:
f7:bc:76:8a:7a:d5:b7:74:b8:9d:03:e7:ac:e9:86:dc:6c:84:
79:a4:35:2d
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAmQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MzAx
NjM0MTRaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKEYxNDhBNUI4NkQwRjVF
QzBERjMxRDY3N0ZDQjUwQTY5RjdEMEQ2RkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCbcHGC2FQcdc1NgGzFpSH7naz4sHfPTQ90Gy/fhyFigEpqRNB3
vVUrfYwrq6kRWue7kZYC9bjJsD9DMi1OvVdG3gBboZ3LxI0mXGyta8WhEHVr8MDp
2NjVd5kZBli8Rc2C+U+fRzp0KL9Y3qHatLVausHMIfXjAuFhx5cdgOgyidsYn1hx
f3Gmb0++B07RwbsYK8Mp0gHN7tvP1ZUbz5ZAVqqsI8L80ikOycVo9ytp7kiWYGZN
dlyu/yyONN7DzTs1cCIOWg6GC4c0CybCp5yf4+D/00P7pRas39k0KTeSy0zuV7VK
2CUgtZ8rKEdrl+BSzXUEFU0Kz8UFSzQ5qySDAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQU8UiluG0PXsDfMdZ3/LUKaffQ1vowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5LzhVaWx1RzBQWHNEZk1kWjNfTFVLYWZmUTF2by5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAHc0hwwDQYJKoZIhvcNAQELBQADggEBAGqaCZ2LZUsg26UztxQDPp4axGYK
pVuZfP31Pa3GY2oPnJz4PxIfB2m0PLlw+6MPqU/Gv3zppS7+biuLvD6pnpMQlJnN
Q+UwCMOi0BRHzBvMzA8ySrRHuh+nqBNZ5V/lNVKhrK5ugySqYWed7+X02dUA4pyx
3FEEHTO9csqPQT0Y2r0kZ2jBkOzNRyYXTxnNzb++3f+JRfFIiZPhrCnOHKxk9YHH
mClEOrYxrN80iahDWpLpWDntdf28IXsmP7bO4fIy52O+hsYqhLZESC/r51mOyaWE
RyUFV8GHNvjQsk0pEPM1IppD8kmvgve8dop61bd0uJ0D56zphtxshHmkNS0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:01 2024 by rpki-client on console-ams.rpki-client.org