Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/RWshjAq8bFnZpD8bZ-bndRWyIpk.roa
File: RWshjAq8bFnZpD8bZ-bndRWyIpk.roa (raw, json)
Hash identifier: xZQNdpVg4wCsHaG3q8YpvxQnMUnKcdhQOY8d5N6fD34=
Subject key identifier: 45:6B:21:8C:0A:BC:6C:59:D9:A4:3F:1B:67:E6:E7:75:15:B2:22:99
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 84
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/RWshjAq8bFnZpD8bZ-bndRWyIpk.roa
Signing time: Wed 29 Mar 2023 16:04:55 +0000
ROA not before: Wed 29 Mar 2023 16:04:55 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.98.188.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132 (0x84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 29 16:04:55 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=456B218C0ABC6C59D9A43F1B67E6E77515B22299
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a8:0d:63:4b:92:0d:0e:76:9c:18:3b:d6:5a:
49:17:bb:73:93:db:93:4f:a2:ca:ce:06:d8:2b:01:
f2:84:76:ef:0d:ea:bd:74:9c:93:8e:e5:3c:86:68:
7e:58:12:27:be:20:f5:a1:27:d4:af:39:70:36:b5:
52:94:15:07:31:97:e9:1e:9c:1c:af:ff:43:21:7e:
d7:8a:1b:b6:f7:06:dc:43:18:cd:81:cc:a5:c3:b5:
d3:f4:28:9c:36:00:df:37:04:73:b5:9e:1a:dd:d8:
7b:a7:91:97:7c:51:46:1f:9a:bd:95:4a:8d:3b:ce:
88:71:60:e2:44:af:05:ea:1a:a4:72:98:dc:0f:45:
21:14:be:2f:0a:a3:9e:89:42:9b:69:92:29:83:99:
cf:9c:ca:8b:ab:22:6c:a1:7d:81:d3:fc:fd:84:86:
5a:0d:63:f3:e5:41:bd:58:2d:e5:74:99:ac:3f:c2:
e2:ff:3e:a1:d2:6b:45:0d:20:ec:ff:32:19:17:80:
55:89:81:7c:69:46:9c:0e:20:24:0b:28:6d:0e:da:
ab:d4:0c:8d:00:1b:47:cd:0f:98:cc:90:48:8f:79:
02:6e:4d:77:81:5f:63:b3:12:e7:36:85:bc:3d:0b:
ce:b4:2b:cd:78:e0:1b:9d:11:4d:b2:c5:06:3c:80:
ab:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:6B:21:8C:0A:BC:6C:59:D9:A4:3F:1B:67:E6:E7:75:15:B2:22:99
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/RWshjAq8bFnZpD8bZ-bndRWyIpk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.188.0/22
Signature Algorithm: sha256WithRSAEncryption
08:6e:50:46:45:48:f5:48:8a:cb:40:c8:87:a0:55:40:a7:f6:
6a:58:99:62:63:8e:7f:78:0d:d8:6f:d9:41:ce:5b:10:70:81:
5c:ae:6a:aa:14:41:55:f2:9d:cf:b1:2b:e1:7c:92:66:6c:e1:
c1:6f:63:7a:ab:6c:c6:78:0d:74:ab:91:64:ae:d3:58:bd:1c:
77:da:85:e2:87:03:05:c3:73:c9:d1:80:f9:02:40:33:18:ca:
65:63:60:c4:76:3f:5f:b0:df:5f:eb:94:ec:7b:97:6e:8d:89:
69:4d:70:ff:b7:9f:69:ab:f8:b8:94:a0:6a:22:a3:be:87:27:
b1:f3:f0:5f:7c:11:1e:8d:cf:01:30:31:04:bc:38:1e:41:a8:
d2:a2:dd:fd:34:7b:01:e4:80:fd:04:85:bb:2f:5e:ef:5f:15:
9d:2b:58:9a:3a:2a:f8:77:52:6d:be:10:fb:12:bc:3b:df:99:
d2:a4:2b:15:17:39:8a:51:74:29:45:85:78:0b:8d:6e:03:1b:
e5:e6:f6:cd:c6:e6:78:e8:bd:4d:de:c6:dd:20:a5:68:27:c8:
1d:03:73:cb:94:6a:4b:ba:02:50:bc:71:a0:2c:68:3c:35:b3:
fc:ed:a4:55:f9:ed:b3:10:e7:2e:fd:08:8a:e5:3f:86:97:bb:
5d:df:26:1e
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzAzMjkx
NjA0NTVaFw0yNDAzMTQwMTMwMDJaMDMxMTAvBgNVBAMTKDQ1NkIyMThDMEFCQzZD
NTlEOUE0M0YxQjY3RTZFNzc1MTVCMjIyOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCuqA1jS5INDnacGDvWWkkXu3OT25NPosrOBtgrAfKEdu8N6r10
nJOO5TyGaH5YEie+IPWhJ9SvOXA2tVKUFQcxl+kenByv/0MhfteKG7b3BtxDGM2B
zKXDtdP0KJw2AN83BHO1nhrd2HunkZd8UUYfmr2VSo07zohxYOJErwXqGqRymNwP
RSEUvi8Ko56JQptpkimDmc+cyourImyhfYHT/P2EhloNY/PlQb1YLeV0maw/wuL/
PqHSa0UNIOz/MhkXgFWJgXxpRpwOICQLKG0O2qvUDI0AG0fND5jMkEiPeQJuTXeB
X2OzEuc2hbw9C860K8144BudEU2yxQY8gKsfAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQURWshjAq8bFnZpD8bZ+bndRWyIpkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L1JXc2hqQXE4YkZuWnBEOGJaLWJuZFJXeUlway5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAIxYrwwDQYJKoZIhvcNAQELBQADggEBAAhuUEZFSPVIistAyIegVUCn9mpY
mWJjjn94Ddhv2UHOWxBwgVyuaqoUQVXync+xK+F8kmZs4cFvY3qrbMZ4DXSrkWSu
01i9HHfaheKHAwXDc8nRgPkCQDMYymVjYMR2P1+w31/rlOx7l26NiWlNcP+3n2mr
+LiUoGoio76HJ7Hz8F98ER6NzwEwMQS8OB5BqNKi3f00ewHkgP0EhbsvXu9fFZ0r
WJo6Kvh3Um2+EPsSvDvfmdKkKxUXOYpRdClFhXgLjW4DG+Xm9s3G5njovU3ext0g
pWgnyB0Dc8uUaku6AlC8caAsaDw1s/ztpFX57bMQ5y79CIrlP4aXu13fJh4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:01 2024 by rpki-client on console-ams.rpki-client.org