Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/SNzyXJLG7v1YvHaCD2lSqEGuZmM.roa
File: SNzyXJLG7v1YvHaCD2lSqEGuZmM.roa (raw, json)
Hash identifier: X/frTunRNeymEm6hWnCbc7Yd9bpKQaX/H5ToFVjR498=
Subject key identifier: 48:DC:F2:5C:92:C6:EE:FD:58:BC:76:82:0F:69:52:A8:41:AE:66:63
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0331
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/SNzyXJLG7v1YvHaCD2lSqEGuZmM.roa
Signing time: Thu 01 Jun 2023 16:07:31 +0000
ROA not before: Thu 01 Jun 2023 16:07:31 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.96.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 817 (0x331)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 16:07:31 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=48DCF25C92C6EEFD58BC76820F6952A841AE6663
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:1d:32:75:d6:6b:ff:d6:a5:bf:65:b6:64:43:
6a:5c:df:57:e8:94:8f:21:b6:3b:b6:9f:bd:eb:94:
4c:29:b5:ac:55:04:c2:96:02:ac:4a:e9:e7:43:93:
f9:11:71:b7:7d:ba:ce:69:66:1b:e2:dc:97:e7:8d:
82:0f:63:4b:58:dc:a6:68:fa:2c:06:a9:9d:29:1d:
b2:b5:43:bf:a1:25:aa:77:ee:be:73:d6:21:8d:ec:
6f:40:e1:f7:e5:6e:f2:34:d0:96:21:d9:fc:a3:69:
08:eb:13:ac:3a:8f:d7:50:b2:8d:c7:72:da:03:62:
b6:26:fb:d4:a0:06:e6:13:e8:ef:9d:7e:48:11:5c:
a3:32:5f:ff:62:42:31:f3:e5:14:22:eb:82:cd:e4:
71:c9:9e:20:b8:a6:00:8d:63:0e:42:29:b4:48:c4:
95:45:cf:1f:00:39:db:b0:3a:6f:ed:ec:57:ee:b2:
69:b8:da:b9:8c:9f:5f:42:ec:e5:c9:d8:ad:9e:45:
36:2e:86:02:95:91:70:46:2e:e4:cb:b1:a7:c4:81:
2e:c1:0b:a3:ef:27:2c:0b:b3:9a:03:e0:27:fc:26:
9a:de:fd:6a:86:f0:dc:1d:43:04:05:6e:a6:e6:a7:
7b:18:09:f4:6d:ff:d3:85:a1:ba:12:1c:2f:05:15:
73:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:DC:F2:5C:92:C6:EE:FD:58:BC:76:82:0F:69:52:A8:41:AE:66:63
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/SNzyXJLG7v1YvHaCD2lSqEGuZmM.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.96.34.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:09:6a:d7:f0:15:00:86:48:e9:52:8d:61:8f:6f:b2:73:3f:
ae:be:a4:82:d5:e5:86:84:bd:e7:33:ae:5d:37:b9:6f:27:09:
e0:03:d3:31:27:be:ad:e4:c2:5c:ba:1c:4c:13:97:03:8e:da:
1c:1b:9b:ab:81:94:76:bb:d0:86:21:e6:01:83:9c:2a:ec:1b:
b8:60:cb:45:d6:4f:33:24:e3:cd:4f:fc:3a:e2:88:7a:bb:77:
28:05:22:a9:92:0d:22:49:cf:b5:10:02:a9:84:55:23:40:77:
b0:40:68:d2:c1:f9:2c:1b:9d:5b:df:02:de:cd:23:ec:14:03:
e3:44:47:bf:f4:d8:8b:56:e8:8e:a6:19:eb:dd:02:af:a7:50:
0f:2b:56:8d:26:94:36:d5:fb:c6:7c:4f:25:79:83:83:7c:d9:
a5:9d:0e:ad:a9:4c:77:df:55:af:45:9b:54:90:72:a1:b3:8e:
b9:ec:c4:03:88:94:f0:d3:4f:f7:1f:7e:ac:ed:98:0c:d5:4c:
ea:9a:a9:18:a2:ca:e2:6d:1b:3b:60:6e:ea:14:62:c7:01:f9:
df:6b:58:94:da:c0:04:fc:70:6f:69:83:3f:ca:3a:49:fa:fe:
cd:78:83:6b:76:17:8c:d5:6f:07:94:de:50:ce:f0:6d:b7:28:
10:e9:df:54
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAzEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA2MDEx
NjA3MzFaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDQ4RENGMjVDOTJDNkVF
RkQ1OEJDNzY4MjBGNjk1MkE4NDFBRTY2NjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDUHTJ11mv/1qW/ZbZkQ2pc31folI8htju2n73rlEwptaxVBMKW
AqxK6edDk/kRcbd9us5pZhvi3JfnjYIPY0tY3KZo+iwGqZ0pHbK1Q7+hJap37r5z
1iGN7G9A4fflbvI00JYh2fyjaQjrE6w6j9dQso3HctoDYrYm+9SgBuYT6O+dfkgR
XKMyX/9iQjHz5RQi64LN5HHJniC4pgCNYw5CKbRIxJVFzx8AOduwOm/t7Ffusmm4
2rmMn19C7OXJ2K2eRTYuhgKVkXBGLuTLsafEgS7BC6PvJywLs5oD4Cf8Jpre/WqG
8NwdQwQFbqbmp3sYCfRt/9OFoboSHC8FFXNTAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUSNzyXJLG7v1YvHaCD2lSqEGuZmMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L1NOenlYSkxHN3YxWXZIYUNEMmxTcUVHdVptTS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAAxYCIwDQYJKoZIhvcNAQELBQADggEBACsJatfwFQCGSOlSjWGPb7JzP66+
pILV5YaEveczrl03uW8nCeAD0zEnvq3kwly6HEwTlwOO2hwbm6uBlHa70IYh5gGD
nCrsG7hgy0XWTzMk481P/DriiHq7dygFIqmSDSJJz7UQAqmEVSNAd7BAaNLB+Swb
nVvfAt7NI+wUA+NER7/02ItW6I6mGevdAq+nUA8rVo0mlDbV+8Z8TyV5g4N82aWd
Dq2pTHffVa9Fm1SQcqGzjrnsxAOIlPDTT/cffqztmAzVTOqaqRiiyuJtGztgbuoU
YscB+d9rWJTawAT8cG9pgz/KOkn6/s14g2t2F4zVbweU3lDO8G23KBDp31Q=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:04:07 2025 by rpki-client