Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/XX_IN2_kPfptHFhlsedw_QPwxNI.roa
File: XX_IN2_kPfptHFhlsedw_QPwxNI.roa (raw, json)
Hash identifier: QFAEHglUnIUUPMR9FqHMe3vXuQIfyXWTWiCTh7hXLh4=
Subject key identifier: 5D:7F:C8:37:6F:E4:3D:FA:6D:1C:58:65:B1:E7:70:FD:03:F0:C4:D2
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 23
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/XX_IN2_kPfptHFhlsedw_QPwxNI.roa
Signing time: Mon 27 Mar 2023 16:02:00 +0000
ROA not before: Mon 27 Mar 2023 16:02:00 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.75.152.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35 (0x23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 27 16:02:00 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=5D7FC8376FE43DFA6D1C5865B1E770FD03F0C4D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:52:78:d3:c6:c4:54:29:94:20:ca:86:99:53:
21:97:e4:25:dd:d0:8f:37:18:14:9b:40:f7:ef:ab:
f2:52:3f:b7:62:3f:63:de:f2:36:89:80:d6:7b:69:
9c:68:e9:46:48:23:8d:ff:d4:36:bf:9d:cd:91:87:
0d:42:b2:a6:1c:2e:d2:17:d3:96:71:8d:94:a7:17:
28:4d:63:01:58:2e:95:24:79:c6:cf:c9:6d:62:34:
84:9b:75:83:5b:6a:c5:a5:ae:50:73:92:11:43:1c:
21:a9:8c:9e:a7:b7:cf:d8:8c:bb:bd:6a:4c:a7:e1:
aa:80:a4:04:16:66:8a:12:4f:87:ed:2f:2d:db:ae:
8c:b2:47:f1:20:c4:6d:1d:67:a3:48:8e:5d:e1:08:
9d:ce:69:cc:fb:ea:cf:03:65:98:a2:88:f2:27:46:
42:a7:c3:aa:f6:91:6f:95:ed:13:d1:67:86:f0:f2:
3e:39:11:ca:dd:be:ca:36:f8:fb:b6:4e:21:96:fa:
35:3c:af:09:58:2b:2c:cc:26:29:b8:b1:dd:50:24:
69:24:4c:2f:32:87:3b:16:ea:41:ef:d9:9c:8e:27:
16:74:cd:a6:b8:9f:8e:c4:18:7f:b4:70:f1:8e:78:
a0:a8:b2:31:95:60:2c:5f:be:50:c7:f2:7c:7d:65:
86:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:7F:C8:37:6F:E4:3D:FA:6D:1C:58:65:B1:E7:70:FD:03:F0:C4:D2
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/XX_IN2_kPfptHFhlsedw_QPwxNI.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.75.152.0/21
Signature Algorithm: sha256WithRSAEncryption
97:76:0f:65:43:a7:0a:cd:08:55:c2:3d:06:f2:13:70:61:c9:
a2:9b:d7:44:60:d8:6a:c4:39:ae:e0:c2:6b:05:28:af:54:57:
36:98:b0:2c:20:6e:1c:15:2a:49:09:8c:44:f3:b5:87:9c:52:
cc:f9:ae:2b:2a:8b:0c:e1:36:f4:34:70:35:e7:70:1a:ec:84:
38:d7:39:ae:6b:ca:26:6a:be:1e:38:6e:ec:23:91:9b:d6:49:
fe:d6:1c:a4:52:ad:64:d7:32:3d:2c:6c:e8:37:c7:5e:a7:f1:
31:4a:d6:21:ec:db:f8:51:1b:62:ae:68:ca:b6:4e:32:1d:a8:
b9:0c:60:b2:96:d9:f8:77:49:69:fd:d3:07:d0:fb:e7:d6:b0:
ef:0e:0b:d9:5f:bd:91:47:a4:f1:1e:be:66:c0:e0:e8:a3:69:
88:3c:ee:42:e7:87:6e:0a:53:fe:19:35:5c:15:e2:c2:ed:23:
29:b2:96:11:60:e8:b0:fe:fe:7e:36:ca:0a:71:e5:26:30:88:
1a:91:e2:ec:75:5e:c3:63:7f:b1:67:e3:9b:81:1c:ca:94:4c:
8a:76:95:b8:5f:59:63:f0:7b:2f:e8:93:fd:f5:82:d7:1d:2b:
b4:a7:f8:e1:78:b3:77:21:4c:02:79:7f:83:c5:43:ae:05:ca:
06:32:83:7a
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBIzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2OTY1
QjBCMjBEREUwN0E0Qzk3OEUyNDA3M0VBMEUxMTE3QjM3NDczMB4XDTIzMDMyNzE2
MDIwMFoXDTI0MDMxNDAxMzAwMlowMzExMC8GA1UEAxMoNUQ3RkM4Mzc2RkU0M0RG
QTZEMUM1ODY1QjFFNzcwRkQwM0YwQzREMjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALFSeNPGxFQplCDKhplTIZfkJd3QjzcYFJtA9++r8lI/t2I/Y97y
NomA1ntpnGjpRkgjjf/UNr+dzZGHDUKyphwu0hfTlnGNlKcXKE1jAVgulSR5xs/J
bWI0hJt1g1tqxaWuUHOSEUMcIamMnqe3z9iMu71qTKfhqoCkBBZmihJPh+0vLduu
jLJH8SDEbR1no0iOXeEInc5pzPvqzwNlmKKI8idGQqfDqvaRb5XtE9FnhvDyPjkR
yt2+yjb4+7ZOIZb6NTyvCVgrLMwmKbix3VAkaSRMLzKHOxbqQe/ZnI4nFnTNprif
jsQYf7Rw8Y54oKiyMZVgLF++UMfyfH1lhocCAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBRdf8g3b+Q9+m0cWGWx53D9A/DE0jAfBgNVHSMEGDAWgBRpZbCyDd4HpMl44kBz
6g4RF7N0czAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMzA5L2FXV3dzZzNlQjZUSmVPSkFjLW9PRVJlemRITS5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2FXV3dzZzNlQjZUSmVPSkFjLW9PRVJl
emRITS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC8zMDkvWFhfSU4yX2tQZnB0SEZobHNlZHdfUVB3eE5JLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAwFLmDANBgkqhkiG9w0BAQsFAAOCAQEAl3YPZUOnCs0IVcI9BvITcGHJopvX
RGDYasQ5ruDCawUor1RXNpiwLCBuHBUqSQmMRPO1h5xSzPmuKyqLDOE29DRwNedw
GuyEONc5rmvKJmq+Hjhu7CORm9ZJ/tYcpFKtZNcyPSxs6DfHXqfxMUrWIezb+FEb
Yq5oyrZOMh2ouQxgspbZ+HdJaf3TB9D759aw7w4L2V+9kUek8R6+ZsDg6KNpiDzu
QueHbgpT/hk1XBXiwu0jKbKWEWDosP7+fjbKCnHlJjCIGpHi7HVew2N/sWfjm4Ec
ypRMinaVuF9ZY/B7L+iT/fWC1x0rtKf44XizdyFMAnl/g8VDrgXKBjKDeg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:51 2024 by rpki-client on console-fra.rpki-client.org