Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/RZnLqBMW3krzNIMcrmMhchImgkM.roa
File: RZnLqBMW3krzNIMcrmMhchImgkM.roa (raw, json)
Hash identifier: Uu+wFNAlEYR/o782VfosBV88/LPEjpMkNM1GVKWdxgQ=
Subject key identifier: 45:99:CB:A8:13:16:DE:4A:F3:34:83:1C:AE:63:21:72:12:26:82:43
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0375
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/RZnLqBMW3krzNIMcrmMhchImgkM.roa
Signing time: Thu 01 Jun 2023 17:57:32 +0000
ROA not before: Thu 01 Jun 2023 17:57:32 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.104.72.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 885 (0x375)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 17:57:32 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=4599CBA81316DE4AF334831CAE63217212268243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ff:64:9c:ec:4e:ed:6c:00:b5:80:90:82:f9:
4f:66:ed:08:76:16:8d:a3:e5:0e:5a:a5:f2:81:35:
f5:8f:7c:d0:ea:13:82:55:4b:cb:5e:c0:3f:c2:6d:
e1:c8:36:1a:2b:b9:ff:47:1a:0e:4b:97:d5:ff:82:
ed:0f:0b:41:b3:40:0e:bd:62:bc:ad:06:7f:01:64:
c4:13:51:68:bc:4b:b5:37:86:66:5c:8a:d8:bb:0f:
1d:72:92:f1:49:37:02:07:ac:91:d9:4d:73:56:38:
91:1b:b8:69:e9:ca:99:8e:a3:c5:62:f6:a0:f7:33:
00:14:81:5b:65:75:d3:6e:80:76:19:52:fd:80:11:
6e:e2:c3:af:13:95:75:f0:1e:90:5e:9b:db:f3:9a:
38:68:18:7b:df:68:d9:9b:b3:a6:c9:12:42:bc:c7:
a0:00:8b:3c:7b:08:04:c2:b1:2e:6f:88:57:92:6b:
90:6b:0e:01:7b:84:8a:e8:62:50:b0:b2:8d:f6:19:
ac:10:cc:13:d7:01:04:bf:0d:c3:9f:46:b0:0b:55:
89:0e:24:1c:9f:5a:d2:9c:35:00:9d:25:0b:09:1f:
ab:2e:0d:f6:fa:f9:1c:23:87:e0:4d:e0:e3:47:47:
9f:ad:a4:0d:81:7f:a2:bd:85:a6:83:2d:0a:1b:30:
d0:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:99:CB:A8:13:16:DE:4A:F3:34:83:1C:AE:63:21:72:12:26:82:43
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/RZnLqBMW3krzNIMcrmMhchImgkM.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.104.72.0/22
Signature Algorithm: sha256WithRSAEncryption
01:f8:3f:82:f2:87:ad:f7:dc:93:2f:9e:2a:89:59:e2:18:f2:
5a:b6:1d:84:1e:52:e3:f1:94:17:04:74:17:9e:39:4d:11:01:
f8:9a:8a:d4:89:36:4d:94:f4:23:fe:36:bd:67:0f:c4:d0:08:
8d:7b:26:06:e6:9f:e6:5f:c7:4c:2b:9a:a5:3d:46:8d:78:c2:
9a:0f:22:b0:ab:da:63:d9:58:a4:63:c6:c8:82:4c:c3:bd:40:
06:ab:f5:79:1c:d0:07:db:8c:8f:a8:8f:42:25:e5:50:47:2c:
03:6a:d1:28:23:18:97:bf:27:ab:a5:ad:29:6b:70:4f:c8:9b:
f7:ee:6d:97:17:ed:af:e3:1c:a4:c9:4a:19:34:a3:04:f7:c8:
93:c1:fd:5d:9e:a7:b5:26:e0:6d:bf:db:aa:e9:1b:5a:3b:f4:
76:64:0b:6e:2c:7f:fd:75:96:f7:93:e1:1d:07:ae:56:73:3f:
4d:3e:76:f5:2c:fe:e0:72:1f:2a:b3:b4:74:3e:9d:4e:94:8e:
b9:4d:3a:4c:18:51:cb:5d:c5:5d:4a:c8:cb:0e:45:0e:ac:57:
70:f4:c5:02:93:71:5b:0c:23:ef:4b:ff:51:02:7e:07:82:e2:
d8:25:d9:8e:31:31:bc:4b:e6:cf:91:38:cf:ce:32:ce:8b:48:
28:ad:16:58
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICA3UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA2MDEx
NzU3MzJaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDQ1OTlDQkE4MTMxNkRF
NEFGMzM0ODMxQ0FFNjMyMTcyMTIyNjgyNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC+/2Sc7E7tbAC1gJCC+U9m7Qh2Fo2j5Q5apfKBNfWPfNDqE4JV
S8tewD/CbeHINhoruf9HGg5Ll9X/gu0PC0GzQA69YrytBn8BZMQTUWi8S7U3hmZc
iti7Dx1ykvFJNwIHrJHZTXNWOJEbuGnpypmOo8Vi9qD3MwAUgVtlddNugHYZUv2A
EW7iw68TlXXwHpBem9vzmjhoGHvfaNmbs6bJEkK8x6AAizx7CATCsS5viFeSa5Br
DgF7hIroYlCwso32GawQzBPXAQS/DcOfRrALVYkOJByfWtKcNQCdJQsJH6suDfb6
+Rwjh+BN4ONHR5+tpA2Bf6K9haaDLQobMNCtAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQURZnLqBMW3krzNIMcrmMhchImgkMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L1JabkxxQk1XM2tyek5JTWNybU1oY2hJbWdrTS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAIxaEgwDQYJKoZIhvcNAQELBQADggEBAAH4P4Lyh6333JMvniqJWeIY8lq2
HYQeUuPxlBcEdBeeOU0RAfiaitSJNk2U9CP+Nr1nD8TQCI17Jgbmn+Zfx0wrmqU9
Ro14wpoPIrCr2mPZWKRjxsiCTMO9QAar9Xkc0AfbjI+oj0Il5VBHLANq0SgjGJe/
J6ulrSlrcE/Im/fubZcX7a/jHKTJShk0owT3yJPB/V2ep7Um4G2/26rpG1o79HZk
C24sf/11lveT4R0HrlZzP00+dvUs/uByHyqztHQ+nU6UjrlNOkwYUctdxV1KyMsO
RQ6sV3D0xQKTcVsMI+9L/1ECfgeC4tgl2Y4xMbxL5s+ROM/OMs6LSCitFlg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:51 2024 by rpki-client on console-fra.rpki-client.org