Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZNa17W1SpkeOhTWttlAS1qlLuME.roa
File: ZNa17W1SpkeOhTWttlAS1qlLuME.roa (raw, json)
Hash identifier: kFE047aHPX6D86IGtyFVYfxFBuGmpV7qM4C1G/+P884=
Subject key identifier: 64:D6:B5:ED:6D:52:A6:47:8E:85:35:AD:B6:50:12:D6:A9:4B:B8:C1
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 01D3
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZNa17W1SpkeOhTWttlAS1qlLuME.roa
Signing time: Wed 24 May 2023 16:40:34 +0000
ROA not before: Wed 24 May 2023 16:40:34 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 110.163.20.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 467 (0x1d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:40:34 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=64D6B5ED6D52A6478E8535ADB65012D6A94BB8C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:19:ca:93:6c:b2:0f:10:a6:60:10:18:af:55:
fc:90:e1:05:3b:16:9d:6c:71:8a:17:6b:6c:c1:56:
29:c2:65:69:a8:ea:f6:26:82:2c:ba:53:8b:93:b1:
2d:23:84:7a:19:83:f9:e7:03:d6:86:f7:83:6c:09:
e8:20:f4:31:c5:1a:c7:f7:53:56:73:4e:83:70:c0:
5d:6b:3d:50:21:6e:18:0a:58:ce:91:c7:8c:e7:ec:
31:c5:fe:54:32:44:60:16:d5:90:5b:fd:85:b4:89:
45:00:46:d2:b2:50:f0:48:4c:83:d6:7d:b5:54:27:
e4:a1:6c:19:92:10:c1:11:93:09:aa:af:58:65:59:
48:e8:a2:39:7e:7a:8e:1f:81:5c:d7:c5:c3:48:63:
85:b1:76:39:ce:0f:51:84:e5:f9:ca:51:6c:91:b2:
79:b7:d6:35:36:ea:5f:f8:88:c8:2b:62:50:98:36:
87:d0:43:0d:86:9e:90:7d:ff:a3:48:01:e2:9e:fd:
a1:1d:7e:2d:de:6a:7c:cf:5c:7d:30:5e:9d:18:f6:
3a:12:84:e8:27:39:1d:9f:e0:77:66:5b:eb:3e:da:
36:71:5a:db:85:0b:eb:2c:5d:90:87:a2:c5:5a:8d:
65:ae:04:70:de:6d:53:9d:c1:95:9d:b9:7b:12:bb:
f3:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:D6:B5:ED:6D:52:A6:47:8E:85:35:AD:B6:50:12:D6:A9:4B:B8:C1
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZNa17W1SpkeOhTWttlAS1qlLuME.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
110.163.20.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:d8:20:7e:fa:ed:3c:76:c0:37:02:89:f9:bb:8d:f6:1a:e4:
5d:63:d4:b1:ce:11:92:72:40:fc:fe:3d:12:4c:19:08:9c:fa:
76:4b:0c:aa:c4:90:0f:94:e1:64:b5:23:18:02:c0:19:5d:30:
c2:4c:7d:54:58:cd:4a:e3:36:8e:3b:cf:d3:3a:09:17:1e:a9:
2b:a5:5a:f8:05:be:82:07:3e:d0:98:5b:2a:d1:47:a2:36:b8:
a8:29:be:dd:74:4b:ab:ff:e1:8c:85:77:10:a1:7b:f3:30:45:
ea:f8:a9:58:49:c3:85:2a:1f:f9:02:3f:ac:95:37:61:6f:98:
13:8f:77:fb:44:2e:01:46:c9:38:ad:6c:96:bf:47:7c:17:57:
88:d3:3d:e5:e2:74:27:1f:72:12:cf:6e:ee:98:4f:7f:67:ce:
f3:ed:64:e0:89:6b:14:9a:94:5e:47:0b:63:1e:f0:95:60:d4:
e1:d4:78:8f:73:7a:65:4c:f1:3e:44:00:be:36:84:b6:71:bd:
bf:c7:b6:1b:e9:e1:d3:ab:56:56:19:ea:fa:1b:49:fb:7c:99:
8a:a6:55:12:13:0c:18:6f:03:41:61:68:9f:47:7f:15:97:32:
01:85:6a:b0:8d:30:cd:9c:79:31:ec:f6:01:ce:da:00:ab:d5:
a1:01:21:cd
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAdMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MjQx
NjQwMzRaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDY0RDZCNUVENkQ1MkE2
NDc4RTg1MzVBREI2NTAxMkQ2QTk0QkI4QzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDRGcqTbLIPEKZgEBivVfyQ4QU7Fp1scYoXa2zBVinCZWmo6vYm
giy6U4uTsS0jhHoZg/nnA9aG94NsCegg9DHFGsf3U1ZzToNwwF1rPVAhbhgKWM6R
x4zn7DHF/lQyRGAW1ZBb/YW0iUUARtKyUPBITIPWfbVUJ+ShbBmSEMERkwmqr1hl
WUjoojl+eo4fgVzXxcNIY4WxdjnOD1GE5fnKUWyRsnm31jU26l/4iMgrYlCYNofQ
Qw2GnpB9/6NIAeKe/aEdfi3eanzPXH0wXp0Y9joShOgnOR2f4HdmW+s+2jZxWtuF
C+ssXZCHosVajWWuBHDebVOdwZWduXsSu/NbAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUZNa17W1SpkeOhTWttlAS1qlLuMEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L1pOYTE3VzFTcGtlT2hUV3R0bEFTMXFsTHVNRS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAFuoxQwDQYJKoZIhvcNAQELBQADggEBAAvYIH767Tx2wDcCifm7jfYa5F1j
1LHOEZJyQPz+PRJMGQic+nZLDKrEkA+U4WS1IxgCwBldMMJMfVRYzUrjNo47z9M6
CRceqSulWvgFvoIHPtCYWyrRR6I2uKgpvt10S6v/4YyFdxChe/MwRer4qVhJw4Uq
H/kCP6yVN2FvmBOPd/tELgFGyTitbJa/R3wXV4jTPeXidCcfchLPbu6YT39nzvPt
ZOCJaxSalF5HC2Me8JVg1OHUeI9zemVM8T5EAL42hLZxvb/Hthvp4dOrVlYZ6vob
Sft8mYqmVRITDBhvA0FhaJ9HfxWXMgGFarCNMM2ceTHs9gHO2gCr1aEBIc0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:02 2024 by rpki-client on console-ams.rpki-client.org