Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/PfUP9GaPKz9JZfVS21qjHSrhKeg.roa
File: PfUP9GaPKz9JZfVS21qjHSrhKeg.roa (raw, json)
Hash identifier: sWrv30W6X4+s8shFLMzqVU1Ou1/93MV/Bgry3E7GohY=
Subject key identifier: 3D:F5:0F:F4:66:8F:2B:3F:49:65:F5:52:DB:5A:A3:1D:2A:E1:29:E8
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0149
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/PfUP9GaPKz9JZfVS21qjHSrhKeg.roa
Signing time: Wed 24 May 2023 16:31:14 +0000
ROA not before: Wed 24 May 2023 16:31:14 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.96.246.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 329 (0x149)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:31:14 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=3DF50FF4668F2B3F4965F552DB5AA31D2AE129E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:56:15:2e:66:dd:53:70:50:34:ab:2c:ac:78:
6a:93:92:f0:e0:d4:78:02:9e:a1:ab:ef:af:fb:5e:
3a:c5:be:72:f1:92:07:9b:bd:d4:fa:fb:08:5e:46:
a8:25:ad:bf:5b:e5:1c:60:73:fa:c1:b3:11:82:2d:
20:f2:e4:ac:58:8f:4f:91:cf:eb:4a:34:bb:d6:8c:
58:c8:af:a8:9d:4e:ac:ae:df:a8:33:31:d4:54:be:
6a:26:fd:a2:23:29:c5:0a:33:55:37:3e:3e:f2:48:
c9:50:65:ac:f2:d8:71:5a:c7:bd:87:4e:a5:4b:9b:
20:07:a9:c3:54:79:a8:db:8e:d2:9d:b4:c4:bd:13:
a9:93:59:ff:7a:49:21:5a:a9:9f:3f:a2:f2:42:ee:
09:8d:5f:13:62:39:9c:65:31:fc:58:f2:b7:06:42:
fb:b8:35:a1:98:3f:fe:1a:47:3f:5c:49:ec:3f:0a:
98:43:39:e3:b1:93:72:e4:46:9a:61:61:ae:9b:8f:
ae:20:d7:76:af:77:31:f7:e3:00:60:4e:ba:f9:33:
09:05:df:95:51:a4:72:c6:e7:b5:ba:58:64:5b:78:
b5:e7:d5:7e:23:bc:30:e4:7a:14:f6:49:7e:73:d4:
5b:60:8a:2d:61:d4:c8:3e:5c:84:25:cf:25:7c:53:
cf:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:F5:0F:F4:66:8F:2B:3F:49:65:F5:52:DB:5A:A3:1D:2A:E1:29:E8
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/PfUP9GaPKz9JZfVS21qjHSrhKeg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.96.246.0/23
Signature Algorithm: sha256WithRSAEncryption
c5:ca:d1:3a:a6:96:cf:48:ba:c5:00:8c:6d:7a:1d:a8:8c:30:
23:f7:2e:3b:02:0f:dd:ce:a5:5e:df:ba:4b:f7:dd:71:f3:3d:
fb:0a:9d:43:03:fa:bd:63:42:c1:15:98:36:4b:20:36:01:f6:
16:1e:0d:00:68:20:9b:78:a2:9b:56:cb:e4:57:a2:a5:49:5a:
05:4f:a3:61:70:2b:a5:35:6c:6c:7f:e4:8a:fb:06:83:20:69:
db:60:7d:18:d9:1a:92:fa:ce:8f:6a:6f:a1:a9:d2:2e:4d:6a:
d4:9f:4d:f8:6f:6f:39:4d:d1:ea:c8:b6:50:b7:96:68:a8:4c:
38:cb:b3:c5:a9:27:9a:82:f9:4c:a0:9d:b5:68:26:e2:36:d5:
2c:18:21:89:09:bb:26:74:e9:6b:dd:4d:6f:8d:91:c9:4f:07:
16:0e:89:29:73:05:cc:9c:59:d7:6d:7d:96:aa:d6:5a:a1:c5:
70:ac:e1:72:09:ab:60:5a:6e:e0:88:65:03:fb:1b:d4:e5:64:
49:7f:08:50:0e:78:35:b8:8d:84:49:5a:a2:9f:55:19:aa:7f:
53:04:68:59:61:70:47:1d:d3:87:ba:19:3e:ca:59:93:7e:96:
b8:7e:8f:c5:5e:4f:36:99:50:3d:fe:70:30:77:6a:34:3b:da:
1c:45:65:e6
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAUkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MjQx
NjMxMTRaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDNERjUwRkY0NjY4RjJC
M0Y0OTY1RjU1MkRCNUFBMzFEMkFFMTI5RTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC3VhUuZt1TcFA0qyyseGqTkvDg1HgCnqGr76/7XjrFvnLxkgeb
vdT6+wheRqglrb9b5Rxgc/rBsxGCLSDy5KxYj0+Rz+tKNLvWjFjIr6idTqyu36gz
MdRUvmom/aIjKcUKM1U3Pj7ySMlQZazy2HFax72HTqVLmyAHqcNUeajbjtKdtMS9
E6mTWf96SSFaqZ8/ovJC7gmNXxNiOZxlMfxY8rcGQvu4NaGYP/4aRz9cSew/CphD
OeOxk3LkRpphYa6bj64g13avdzH34wBgTrr5MwkF35VRpHLG57W6WGRbeLXn1X4j
vDDkehT2SX5z1Ftgii1h1Mg+XIQlzyV8U8/HAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUPfUP9GaPKz9JZfVS21qjHSrhKegwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L1BmVVA5R2FQS3o5SlpmVlMyMXFqSFNyaEtlZy5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAExYPYwDQYJKoZIhvcNAQELBQADggEBAMXK0Tqmls9IusUAjG16HaiMMCP3
LjsCD93OpV7fukv33XHzPfsKnUMD+r1jQsEVmDZLIDYB9hYeDQBoIJt4optWy+RX
oqVJWgVPo2FwK6U1bGx/5Ir7BoMgadtgfRjZGpL6zo9qb6Gp0i5NatSfTfhvbzlN
0erItlC3lmioTDjLs8WpJ5qC+UygnbVoJuI21SwYIYkJuyZ06WvdTW+NkclPBxYO
iSlzBcycWddtfZaq1lqhxXCs4XIJq2BabuCIZQP7G9TlZEl/CFAOeDW4jYRJWqKf
VRmqf1MEaFlhcEcd04e6GT7KWZN+lrh+j8VeTzaZUD3+cDB3ajQ72hxFZeY=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:33:41 2025 by rpki-client