Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/XquTKx-dU2itutxjKuBDYhaE8Ug.roa
File: XquTKx-dU2itutxjKuBDYhaE8Ug.roa (raw, json)
Hash identifier: r2gv8PVekVv+J7iKDsvN8HWXfZx2BM68gGSgr6JW8DE=
Subject key identifier: 5E:AB:93:2B:1F:9D:53:68:AD:BA:DC:63:2A:E0:43:62:16:84:F1:48
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 05C6
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/XquTKx-dU2itutxjKuBDYhaE8Ug.roa
Signing time: Tue 16 Jan 2024 05:31:53 +0000
ROA not before: Tue 16 Jan 2024 05:31:53 +0000
ROA not after: Tue 14 Jan 2025 01:30:02 +0000
asID: 9605
IP address blocks: 49.109.216.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1478 (0x5c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jan 16 05:31:53 2024 GMT
Not After : Jan 14 01:30:02 2025 GMT
Subject: CN=5EAB932B1F9D5368ADBADC632AE043621684F148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ad:f1:1a:39:20:13:bc:71:e3:f5:57:cf:fd:
cf:91:93:92:c0:64:f3:38:84:06:60:38:00:50:19:
99:32:12:82:54:36:2e:06:34:57:a5:82:1c:48:3c:
0d:7e:84:75:d8:80:59:49:e4:ea:bf:f7:28:a3:78:
44:44:7d:4b:ff:d0:44:08:df:ad:75:8e:2a:92:33:
0c:c2:c1:36:c7:83:8b:c7:e4:bd:06:d4:b5:96:6e:
9b:53:d4:05:d0:71:4a:d8:86:ee:cb:f0:7f:a8:e8:
d6:ca:79:c9:2f:de:56:3c:a5:0f:1c:eb:2e:19:49:
5e:e9:e0:6b:ce:cf:4c:8f:cf:17:6f:15:f3:e9:3a:
71:d2:da:fd:74:8e:d7:92:fa:97:8e:b2:20:7b:ef:
8f:fe:cf:13:98:a9:f9:ea:c5:d4:e6:1c:59:80:3f:
ee:e6:37:50:ea:ee:5e:0f:7a:b0:7a:96:b2:85:91:
53:8b:10:3c:bc:bf:63:26:67:e9:86:82:68:ab:e3:
8b:55:06:29:37:37:03:71:af:c2:20:0d:02:88:ab:
8c:1b:f5:3c:60:d4:0f:f5:c4:c1:30:34:7b:36:f0:
d2:94:03:67:ea:c1:d1:f1:73:06:c6:a0:ce:5a:75:
62:b4:f3:fe:7f:e6:5c:04:f9:c0:73:27:83:18:f9:
10:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:AB:93:2B:1F:9D:53:68:AD:BA:DC:63:2A:E0:43:62:16:84:F1:48
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/XquTKx-dU2itutxjKuBDYhaE8Ug.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.109.216.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:02:8d:e8:16:a2:f1:5b:eb:af:72:d1:b9:9e:7f:9c:e7:d7:
14:74:f3:63:fa:27:20:23:3f:d8:7e:50:43:af:02:d6:55:d5:
ae:2a:25:03:ed:88:ec:cc:48:b3:24:a3:1e:74:03:c1:92:00:
d6:1d:46:36:87:42:f4:41:13:84:b4:19:b2:32:ba:82:18:06:
2e:5c:36:40:ef:4a:26:05:25:81:78:d1:62:3a:cb:67:cc:db:
84:84:49:71:3b:9b:6e:8c:9d:45:e3:f0:08:c1:9c:7d:c7:f1:
64:8a:e2:d7:74:f1:80:ff:35:f9:81:bd:d5:72:a4:e9:65:22:
c7:7b:16:56:af:49:80:aa:03:88:0a:66:8f:7b:74:9d:c0:31:
47:2e:34:dc:3a:15:6b:bc:34:d6:5a:d2:06:e0:37:39:4b:27:
88:50:9c:f8:c8:41:51:ce:a8:4b:df:2d:67:17:de:1b:25:13:
a3:bb:e4:a9:b6:c2:5c:54:48:b2:72:65:ca:71:ed:de:f9:d4:
c6:90:87:87:39:b4:ba:2d:28:4b:dd:8a:f8:aa:c9:ec:45:95:
65:b8:6d:62:0c:6e:f9:e2:49:a6:d9:da:70:a7:ac:51:6a:9e:
06:a8:71:49:11:f9:9c:a4:93:b8:46:c1:de:e2:55:1e:8f:1f:
a0:7e:98:85
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICBcYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDAxMTYw
NTMxNTNaFw0yNTAxMTQwMTMwMDJaMDMxMTAvBgNVBAMTKDVFQUI5MzJCMUY5RDUz
NjhBREJBREM2MzJBRTA0MzYyMTY4NEYxNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCzrfEaOSATvHHj9VfP/c+Rk5LAZPM4hAZgOABQGZkyEoJUNi4G
NFelghxIPA1+hHXYgFlJ5Oq/9yijeEREfUv/0EQI3611jiqSMwzCwTbHg4vH5L0G
1LWWbptT1AXQcUrYhu7L8H+o6NbKeckv3lY8pQ8c6y4ZSV7p4GvOz0yPzxdvFfPp
OnHS2v10jteS+peOsiB774/+zxOYqfnqxdTmHFmAP+7mN1Dq7l4PerB6lrKFkVOL
EDy8v2MmZ+mGgmir44tVBik3NwNxr8IgDQKIq4wb9Txg1A/1xMEwNHs28NKUA2fq
wdHxcwbGoM5adWK08/5/5lwE+cBzJ4MY+RAHAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUXquTKx+dU2itutxjKuBDYhaE8UgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L1hxdVRLeC1kVTJpdHV0eGpLdUJEWWhhRThVZy5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAIxbdgwDQYJKoZIhvcNAQELBQADggEBABoCjegWovFb669y0bmef5zn1xR0
82P6JyAjP9h+UEOvAtZV1a4qJQPtiOzMSLMkox50A8GSANYdRjaHQvRBE4S0GbIy
uoIYBi5cNkDvSiYFJYF40WI6y2fM24SESXE7m26MnUXj8AjBnH3H8WSK4td08YD/
NfmBvdVypOllIsd7FlavSYCqA4gKZo97dJ3AMUcuNNw6FWu8NNZa0gbgNzlLJ4hQ
nPjIQVHOqEvfLWcX3hslE6O75Km2wlxUSLJyZcpx7d751MaQh4c5tLotKEvdiviq
yexFlWW4bWIMbvniSabZ2nCnrFFqngaocUkR+Zykk7hGwd7iVR6PH6B+mIU=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:17:22 2025 by rpki-client