Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZHuv9zN99X2ehYYRMZBnioZMymA.roa
File: ZHuv9zN99X2ehYYRMZBnioZMymA.roa (raw, json)
Hash identifier: MdK74+NGyAWTjW96NISA2A3GUN1Ko141cJ7ONGtLG7M=
Subject key identifier: 64:7B:AF:F7:33:7D:F5:7D:9E:85:86:11:31:90:67:8A:86:4C:CA:60
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 03DC
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZHuv9zN99X2ehYYRMZBnioZMymA.roa
Signing time: Tue 06 Jun 2023 16:03:40 +0000
ROA not before: Tue 06 Jun 2023 16:03:40 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.104.80.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 988 (0x3dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 6 16:03:40 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=647BAFF7337DF57D9E8586113190678A864CCA60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ef:bb:54:9f:30:0a:85:46:4d:c9:d1:1d:2e:
78:87:6b:5b:6a:59:df:6e:13:33:73:24:71:e8:63:
de:79:1d:4c:15:df:89:b0:91:66:c4:40:17:03:1d:
e4:9c:b1:6e:54:3b:7b:95:c6:3b:aa:da:a7:2d:48:
58:5e:03:5a:e4:44:22:ad:38:b4:49:3b:d1:60:9d:
ba:f1:b0:33:44:45:ef:f9:cd:8a:d8:a0:17:c1:fc:
e1:c0:cc:06:11:20:f7:0f:8f:52:9f:b9:73:ba:cf:
75:64:12:4c:b1:fb:08:4b:43:5b:f6:f6:23:34:72:
c3:37:a4:99:71:6e:d0:95:64:73:29:34:38:02:73:
73:cf:68:87:f3:a4:98:c1:86:b2:f5:50:93:a0:eb:
bd:36:1f:cd:14:91:18:4b:ec:81:fb:58:48:71:6d:
c6:43:e8:70:f1:3c:e6:de:5a:fc:02:e2:d9:75:a2:
cb:79:d8:49:9f:4a:ae:93:79:c4:cf:73:fc:58:b7:
05:21:06:80:48:5e:3b:f6:f1:6a:39:40:a1:42:1e:
83:b8:12:73:23:34:4a:cf:85:d7:81:46:bf:0b:20:
fa:a5:19:b6:97:c1:2a:37:19:40:b8:01:ee:8f:1d:
6e:ff:4a:54:fe:d8:17:5e:b4:f7:89:e7:66:07:98:
36:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:7B:AF:F7:33:7D:F5:7D:9E:85:86:11:31:90:67:8A:86:4C:CA:60
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZHuv9zN99X2ehYYRMZBnioZMymA.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.104.80.0/21
Signature Algorithm: sha256WithRSAEncryption
ab:95:d7:31:0a:4c:26:64:64:8b:ce:35:ea:0d:26:18:37:9d:
a6:44:1d:e7:19:19:39:42:36:70:17:22:1e:75:37:07:f9:25:
c7:08:bb:45:e7:c5:c6:30:06:ec:3b:92:54:a7:c6:8b:95:cc:
9c:26:d8:fc:32:af:e9:80:e8:d0:1c:56:4d:a3:fe:85:f3:f3:
e8:74:d2:53:1e:13:74:3c:cc:54:07:d3:40:c3:57:42:54:7b:
9c:ec:cf:72:16:1b:13:d9:22:fc:13:16:49:57:e9:34:01:24:
b5:ca:58:af:97:20:d1:ad:38:af:a0:d5:09:22:22:fb:43:c9:
e8:28:0a:99:21:0c:d1:8e:b0:19:bd:84:5f:0d:7e:14:b4:22:
5d:b5:6a:26:b4:2e:a9:df:56:c1:21:e5:7d:3c:c5:45:cd:93:
c8:04:e9:26:f6:03:e9:81:01:a6:ea:10:87:27:e8:37:f1:0f:
4d:58:74:5a:e5:4a:09:b2:03:34:a6:ad:ae:8e:fc:f5:89:57:
5f:fc:2d:46:0b:dc:74:e7:ef:ef:03:2b:83:d0:08:d8:22:84:
14:fd:92:a8:0f:09:f3:f3:d2:21:97:57:da:18:0f:41:ce:db:
5b:c9:5f:1b:e0:c1:85:da:90:64:fe:a2:5e:64:7b:ad:51:39:
e9:e6:13:a5
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICA9wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA2MDYx
NjAzNDBaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDY0N0JBRkY3MzM3REY1
N0Q5RTg1ODYxMTMxOTA2NzhBODY0Q0NBNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDA77tUnzAKhUZNydEdLniHa1tqWd9uEzNzJHHoY955HUwV34mw
kWbEQBcDHeScsW5UO3uVxjuq2qctSFheA1rkRCKtOLRJO9FgnbrxsDNERe/5zYrY
oBfB/OHAzAYRIPcPj1KfuXO6z3VkEkyx+whLQ1v29iM0csM3pJlxbtCVZHMpNDgC
c3PPaIfzpJjBhrL1UJOg6702H80UkRhL7IH7WEhxbcZD6HDxPObeWvwC4tl1ost5
2EmfSq6TecTPc/xYtwUhBoBIXjv28Wo5QKFCHoO4EnMjNErPhdeBRr8LIPqlGbaX
wSo3GUC4Ae6PHW7/SlT+2BdetPeJ52YHmDZpAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUZHuv9zN99X2ehYYRMZBnioZMymAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L1pIdXY5ek45OVgyZWhZWVJNWkJuaW9aTXltQS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAMxaFAwDQYJKoZIhvcNAQELBQADggEBAKuV1zEKTCZkZIvONeoNJhg3naZE
HecZGTlCNnAXIh51Nwf5JccIu0XnxcYwBuw7klSnxouVzJwm2Pwyr+mA6NAcVk2j
/oXz8+h00lMeE3Q8zFQH00DDV0JUe5zsz3IWGxPZIvwTFklX6TQBJLXKWK+XINGt
OK+g1QkiIvtDyegoCpkhDNGOsBm9hF8NfhS0Il21aia0LqnfVsEh5X08xUXNk8gE
6Sb2A+mBAabqEIcn6DfxD01YdFrlSgmyAzSmra6O/PWJV1/8LUYL3HTn7+8DK4PQ
CNgihBT9kqgPCfPz0iGXV9oYD0HO21vJXxvgwYXakGT+ol5ke61ROenmE6U=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:25:21 2025 by rpki-client