Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/VGjaRZKEUajKrhe3lmQTbykjua8.roa
File: VGjaRZKEUajKrhe3lmQTbykjua8.roa (raw, json)
Hash identifier: xACe2hHH04xGHwWPLC1rpHREPe1WAJQwrP2KyrbX98o=
Subject key identifier: 54:68:DA:45:92:84:51:A8:CA:AE:17:B7:96:64:13:6F:29:23:B9:AF
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: D8
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/VGjaRZKEUajKrhe3lmQTbykjua8.roa
Signing time: Wed 24 May 2023 16:02:21 +0000
ROA not before: Wed 24 May 2023 16:02:21 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.98.150.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 216 (0xd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:02:21 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=5468DA45928451A8CAAE17B79664136F2923B9AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b9:5a:d5:2f:63:71:71:06:a1:8a:d0:68:5f:
ca:f0:8b:fd:30:9e:8e:55:cd:49:59:3f:f7:93:4b:
8c:13:a7:ae:af:cb:9c:44:9c:9d:31:e9:9f:b5:11:
66:64:3d:39:e8:27:94:c0:61:f5:00:d5:f2:80:79:
ba:a9:b1:d5:35:20:c9:e0:09:ea:fb:88:2b:f9:47:
e0:6c:77:e3:fc:58:69:a4:13:50:60:fc:94:08:25:
34:92:61:b8:ed:25:09:92:bc:69:c5:c7:44:bd:03:
96:52:50:4b:c3:e8:6f:92:c0:ba:0b:9e:15:54:67:
5f:3a:3f:bf:24:3e:74:e6:51:71:f8:59:2e:9e:80:
f4:2e:2c:c7:aa:ab:46:03:27:a2:40:0b:05:94:42:
e5:80:4d:d9:aa:0f:05:ba:5b:b6:04:14:a5:99:18:
c6:92:ab:ca:7e:7f:b8:5a:78:97:0c:62:ab:e0:1e:
dd:63:dc:15:aa:ed:0a:ff:54:7c:34:cf:95:6e:27:
2e:8f:b5:bb:96:29:2a:76:ec:87:7d:99:f3:57:b1:
7d:9f:7b:c4:9b:d6:33:4f:c6:e8:bc:d8:fb:ca:03:
a0:02:8b:ea:e9:16:5d:72:11:7b:90:67:bc:60:51:
b0:17:22:94:10:09:1a:ac:91:81:45:d2:60:2f:6c:
d9:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:68:DA:45:92:84:51:A8:CA:AE:17:B7:96:64:13:6F:29:23:B9:AF
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/VGjaRZKEUajKrhe3lmQTbykjua8.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.150.0/23
Signature Algorithm: sha256WithRSAEncryption
cc:5d:84:ce:bb:e4:ae:00:c0:02:44:15:6f:be:50:da:6f:9c:
d6:16:30:49:5f:12:f7:ac:f5:36:ac:e9:04:42:ce:54:fa:78:
83:32:8e:51:4d:a3:46:1d:a6:ad:ce:1d:41:1a:70:7f:39:7b:
07:33:64:07:80:9b:06:c4:6a:e4:e2:f5:cc:9b:82:2a:b1:a1:
15:3a:74:93:f1:36:a5:22:d6:c2:a0:c2:ce:1d:cf:29:31:5c:
62:4e:9d:2e:a1:c5:bb:14:a9:1d:88:d4:a7:4b:4e:72:ed:51:
ca:58:07:75:92:f6:a7:e4:1a:eb:01:93:f7:f4:80:03:d4:49:
21:35:e6:aa:7c:a5:1e:d4:26:7d:f8:f2:f6:7d:2d:47:b7:e1:
21:7a:07:e7:22:94:e8:a3:c0:84:c7:4c:4e:63:35:56:75:a9:
18:9a:47:75:c5:81:7c:ad:6f:f9:41:8c:96:ba:1a:5c:e2:2e:
c4:f8:78:09:f0:73:d0:49:d8:96:6d:02:25:62:22:41:23:04:
a6:ff:37:a0:18:66:69:d1:35:4f:76:97:ff:6e:48:7d:f3:17:
bc:97:09:b8:ab:92:4e:3b:54:e8:05:92:9a:0c:73:b5:ad:8a:
4f:1d:42:27:b3:c0:55:54:82:6d:32:87:d3:21:62:99:bb:8e:
d6:41:47:57
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICANgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MjQx
NjAyMjFaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDU0NjhEQTQ1OTI4NDUx
QThDQUFFMTdCNzk2NjQxMzZGMjkyM0I5QUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDuVrVL2NxcQahitBoX8rwi/0wno5VzUlZP/eTS4wTp66vy5xE
nJ0x6Z+1EWZkPTnoJ5TAYfUA1fKAebqpsdU1IMngCer7iCv5R+Bsd+P8WGmkE1Bg
/JQIJTSSYbjtJQmSvGnFx0S9A5ZSUEvD6G+SwLoLnhVUZ186P78kPnTmUXH4WS6e
gPQuLMeqq0YDJ6JACwWUQuWATdmqDwW6W7YEFKWZGMaSq8p+f7haeJcMYqvgHt1j
3BWq7Qr/VHw0z5VuJy6PtbuWKSp27Id9mfNXsX2fe8Sb1jNPxui82PvKA6ACi+rp
Fl1yEXuQZ7xgUbAXIpQQCRqskYFF0mAvbNmhAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUVGjaRZKEUajKrhe3lmQTbykjua8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L1ZHamFSWktFVWFqS3JoZTNsbVFUYnlranVhOC5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAExYpYwDQYJKoZIhvcNAQELBQADggEBAMxdhM675K4AwAJEFW++UNpvnNYW
MElfEves9Tas6QRCzlT6eIMyjlFNo0Ydpq3OHUEacH85ewczZAeAmwbEauTi9cyb
giqxoRU6dJPxNqUi1sKgws4dzykxXGJOnS6hxbsUqR2I1KdLTnLtUcpYB3WS9qfk
GusBk/f0gAPUSSE15qp8pR7UJn348vZ9LUe34SF6B+cilOijwITHTE5jNVZ1qRia
R3XFgXytb/lBjJa6GlziLsT4eAnwc9BJ2JZtAiViIkEjBKb/N6AYZmnRNU92l/9u
SH3zF7yXCbirkk47VOgFkpoMc7Wtik8dQiezwFVUgm0yh9MhYpm7jtZBR1c=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:02 2024 by rpki-client on console-ams.rpki-client.org