Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/YB3rNSloE8q0Gpo8yHh-XqPuNHg.roa
File: YB3rNSloE8q0Gpo8yHh-XqPuNHg.roa (raw, json)
Hash identifier: l8iW48Uff1KxBcxV+Vpz5NnVh4SQYJMB85SpJpBjUwQ=
Subject key identifier: 60:1D:EB:35:29:68:13:CA:B4:1A:9A:3C:C8:78:7E:5E:A3:EE:34:78
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: A1
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YB3rNSloE8q0Gpo8yHh-XqPuNHg.roa
Signing time: Wed 29 Mar 2023 16:05:45 +0000
ROA not before: Wed 29 Mar 2023 16:05:45 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.98.160.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161 (0xa1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 29 16:05:45 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=601DEB35296813CAB41A9A3CC8787E5EA3EE3478
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:d4:3d:1b:29:1c:8d:41:44:58:67:48:a6:c7:
33:de:9a:b2:08:e8:66:fe:69:89:75:49:f9:64:ac:
f5:89:e3:13:6e:71:62:ef:0f:a6:41:1f:22:fa:7a:
c8:67:db:31:1e:1f:30:4b:17:eb:b0:ab:4c:c0:15:
c8:cc:6f:a0:54:57:8b:29:b4:0d:a5:fc:b6:c9:4e:
65:e1:93:0b:fe:6c:d2:f8:ad:cd:9d:c4:e6:58:d2:
bf:7d:00:69:d4:72:64:d3:3e:ef:f1:bb:63:22:4d:
c7:e1:d1:0b:9a:87:27:09:82:3c:54:4f:e7:a4:4a:
d2:5e:fe:3c:a5:2e:18:ae:d3:96:3b:6d:cc:7a:54:
c1:8b:ae:43:79:f2:85:60:da:67:6f:9c:84:b7:40:
1f:5d:69:d1:0b:37:63:8d:66:d3:32:fb:aa:35:7f:
c9:c7:66:63:4b:60:93:e5:4e:91:2b:c6:78:10:e3:
09:35:c8:1b:17:90:e1:b6:4b:8c:84:93:35:eb:e4:
7a:cf:ba:1f:8a:4d:75:bd:24:a4:fc:65:b8:48:35:
28:0a:c3:bc:3f:9a:08:1a:19:41:bf:3a:6d:f6:b6:
e6:b7:db:14:24:f7:52:7a:eb:b6:1a:cc:b5:a1:cf:
ae:5d:5b:cd:df:8c:92:2b:85:99:ba:21:d1:b3:e4:
80:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:1D:EB:35:29:68:13:CA:B4:1A:9A:3C:C8:78:7E:5E:A3:EE:34:78
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YB3rNSloE8q0Gpo8yHh-XqPuNHg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.160.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:05:ea:ba:0b:7b:82:d7:3a:1c:d0:18:3f:3d:19:89:8b:2d:
22:17:de:39:14:32:bd:26:e5:6c:46:c8:3c:44:bc:34:4a:19:
21:70:a1:99:63:38:50:f2:05:23:d1:58:4a:65:c0:41:30:d6:
23:d2:9a:62:87:68:94:44:e5:69:22:54:ad:81:03:02:1b:49:
10:11:bc:df:6f:e0:a0:29:02:8d:7b:fd:fd:f8:43:be:be:8a:
60:36:c7:63:d9:d5:9f:84:5a:7a:75:e3:52:f8:cd:95:81:38:
2a:72:76:12:f2:7c:e5:bc:89:07:5d:de:d0:f3:64:f2:b5:21:
fa:5a:f1:d5:6d:86:d5:6c:95:4f:61:c1:03:08:fc:5a:7e:5e:
eb:9a:54:08:ce:7a:17:b2:10:ea:0f:02:7f:d1:25:16:db:0e:
22:ef:b6:50:dc:fb:08:71:9b:b2:ec:26:6d:6d:dc:1d:2c:5a:
20:45:a5:42:73:47:72:b3:13:72:67:d1:1a:45:8d:e8:46:8b:
83:13:22:f3:32:ee:cd:34:df:db:87:01:75:55:ca:05:50:fa:
00:ce:78:81:9d:a7:59:15:a3:40:a9:2c:b6:6a:de:b7:06:5f:
68:40:ad:61:0e:2f:59:ca:fb:bc:17:6c:e9:e8:c7:cb:aa:ef:
a4:35:36:ec
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzAzMjkx
NjA1NDVaFw0yNDAzMTQwMTMwMDJaMDMxMTAvBgNVBAMTKDYwMURFQjM1Mjk2ODEz
Q0FCNDFBOUEzQ0M4Nzg3RTVFQTNFRTM0NzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDe1D0bKRyNQURYZ0imxzPemrII6Gb+aYl1SflkrPWJ4xNucWLv
D6ZBHyL6eshn2zEeHzBLF+uwq0zAFcjMb6BUV4sptA2l/LbJTmXhkwv+bNL4rc2d
xOZY0r99AGnUcmTTPu/xu2MiTcfh0QuahycJgjxUT+ekStJe/jylLhiu05Y7bcx6
VMGLrkN58oVg2mdvnIS3QB9dadELN2ONZtMy+6o1f8nHZmNLYJPlTpErxngQ4wk1
yBsXkOG2S4yEkzXr5HrPuh+KTXW9JKT8ZbhINSgKw7w/mggaGUG/Om32tua32xQk
91J667YazLWhz65dW83fjJIrhZm6IdGz5IBXAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUYB3rNSloE8q0Gpo8yHh+XqPuNHgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L1lCM3JOU2xvRThxMEdwbzh5SGgtWHFQdU5IZy5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAExYqAwDQYJKoZIhvcNAQELBQADggEBAEsF6roLe4LXOhzQGD89GYmLLSIX
3jkUMr0m5WxGyDxEvDRKGSFwoZljOFDyBSPRWEplwEEw1iPSmmKHaJRE5WkiVK2B
AwIbSRARvN9v4KApAo17/f34Q76+imA2x2PZ1Z+EWnp141L4zZWBOCpydhLyfOW8
iQdd3tDzZPK1Ifpa8dVthtVslU9hwQMI/Fp+XuuaVAjOeheyEOoPAn/RJRbbDiLv
tlDc+whxm7LsJm1t3B0sWiBFpUJzR3KzE3Jn0RpFjehGi4MTIvMy7s0039uHAXVV
ygVQ+gDOeIGdp1kVo0CpLLZq3rcGX2hArWEOL1nK+7wXbOnox8uq76Q1Nuw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:02 2024 by rpki-client on console-ams.rpki-client.org