Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/aTwHCiWDZfcEsrHK2Z1gf-H6STg.roa
File: aTwHCiWDZfcEsrHK2Z1gf-H6STg.roa (raw, json)
Hash identifier: Ff4KCDRGANyGmlNr35ChYy2B5DcLvH9FUGZ/Pbjxf+Y=
Subject key identifier: 69:3C:07:0A:25:83:65:F7:04:B2:B1:CA:D9:9D:60:7F:E1:FA:49:38
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: FC
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aTwHCiWDZfcEsrHK2Z1gf-H6STg.roa
Signing time: Wed 24 May 2023 16:03:15 +0000
ROA not before: Wed 24 May 2023 16:03:15 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.98.142.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 252 (0xfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:03:15 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=693C070A258365F704B2B1CAD99D607FE1FA4938
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:cd:72:9c:a8:05:ca:ec:56:7f:93:66:29:58:
61:79:e7:eb:2a:9d:cc:88:74:c3:09:32:a7:fc:49:
e0:6c:58:97:f1:52:c1:93:b9:60:74:47:2f:37:d2:
73:c5:20:06:f2:db:64:8b:d0:eb:52:43:24:cb:fc:
b0:d2:56:22:26:21:b6:b0:a2:21:0a:fe:9c:98:f0:
dc:01:fe:91:34:ac:5f:5c:16:66:5c:b6:5d:17:4f:
bd:bd:32:7a:9a:aa:56:fd:48:48:10:c0:54:a0:0c:
55:75:33:bd:57:e6:64:8d:fe:f0:fa:cf:aa:21:3c:
b3:8f:ce:6a:73:5c:5a:86:ec:fa:3c:ef:93:c8:9e:
74:e7:5d:b2:55:d1:1d:54:0f:2f:00:bd:85:e7:e7:
ab:2a:db:e2:b4:f6:33:70:20:23:64:5c:49:59:a5:
9e:e9:a2:f2:af:a3:a4:16:2f:08:04:cc:36:fc:9c:
e2:55:aa:0e:c6:aa:7a:f5:3a:6c:a3:40:42:8f:61:
61:fb:8c:57:94:28:d8:70:8d:4e:09:f7:00:f0:1b:
c7:bb:7b:fd:b5:e8:a9:25:4f:42:77:de:18:49:c7:
cb:16:ae:e8:d8:2e:ec:87:c8:82:4e:f6:a3:d7:0c:
93:6a:fa:9c:d5:7a:fe:31:ed:19:18:c5:d2:71:1f:
ca:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:3C:07:0A:25:83:65:F7:04:B2:B1:CA:D9:9D:60:7F:E1:FA:49:38
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aTwHCiWDZfcEsrHK2Z1gf-H6STg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.142.0/23
Signature Algorithm: sha256WithRSAEncryption
63:a4:3b:33:99:74:b5:eb:02:21:ef:2b:b9:cd:1a:2e:02:8a:
7c:d5:91:f2:a8:4f:eb:ef:fd:d7:f8:4b:8f:84:81:49:12:52:
85:28:35:10:fb:d5:d2:44:30:e0:5f:cc:23:e9:7b:3e:ee:e5:
56:6f:98:b7:13:38:c5:c8:f4:d2:36:74:63:66:d3:8f:5a:fd:
17:19:ae:65:92:3d:82:16:cf:f2:13:14:24:e5:af:44:45:8b:
10:dd:ec:ce:6d:98:5d:a4:ba:1b:eb:a0:64:9b:51:7b:ca:8c:
c8:87:43:1a:c8:e1:19:06:e8:9c:4f:2a:40:0c:64:c9:2e:b0:
30:82:00:c8:78:c5:d8:82:a5:5d:09:ea:e5:58:bd:7b:68:7a:
94:20:67:5a:ea:31:b7:be:0c:c9:e6:fa:50:4f:3c:c0:ca:cc:
fb:6f:21:66:62:97:aa:71:79:ca:20:84:51:cb:9e:f6:aa:0b:
21:02:03:02:85:8d:c6:8f:a3:11:a1:c8:2c:9d:80:a3:64:43:
e5:ea:04:e8:c4:31:33:34:ee:12:3a:96:4e:1b:85:b3:08:bd:
08:a0:c7:c4:32:e9:19:6c:a6:32:fa:fc:53:2a:8c:d4:20:07:
1e:e6:db:51:fa:71:9c:0c:1d:31:d6:1d:eb:74:6b:11:3f:0b:
f9:f7:df:70
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MjQx
NjAzMTVaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDY5M0MwNzBBMjU4MzY1
RjcwNEIyQjFDQUQ5OUQ2MDdGRTFGQTQ5MzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDUzXKcqAXK7FZ/k2YpWGF55+sqncyIdMMJMqf8SeBsWJfxUsGT
uWB0Ry830nPFIAby22SL0OtSQyTL/LDSViImIbawoiEK/pyY8NwB/pE0rF9cFmZc
tl0XT729Mnqaqlb9SEgQwFSgDFV1M71X5mSN/vD6z6ohPLOPzmpzXFqG7Po875PI
nnTnXbJV0R1UDy8AvYXn56sq2+K09jNwICNkXElZpZ7povKvo6QWLwgEzDb8nOJV
qg7Gqnr1OmyjQEKPYWH7jFeUKNhwjU4J9wDwG8e7e/216KklT0J33hhJx8sWrujY
LuyHyIJO9qPXDJNq+pzVev4x7RkYxdJxH8oRAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUaTwHCiWDZfcEsrHK2Z1gf+H6STgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L2FUd0hDaVdEWmZjRXNySEsyWjFnZi1INlNUZy5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAExYo4wDQYJKoZIhvcNAQELBQADggEBAGOkOzOZdLXrAiHvK7nNGi4CinzV
kfKoT+vv/df4S4+EgUkSUoUoNRD71dJEMOBfzCPpez7u5VZvmLcTOMXI9NI2dGNm
049a/RcZrmWSPYIWz/ITFCTlr0RFixDd7M5tmF2kuhvroGSbUXvKjMiHQxrI4RkG
6JxPKkAMZMkusDCCAMh4xdiCpV0J6uVYvXtoepQgZ1rqMbe+DMnm+lBPPMDKzPtv
IWZil6pxecoghFHLnvaqCyECAwKFjcaPoxGhyCydgKNkQ+XqBOjEMTM07hI6lk4b
hbMIvQigx8Qy6RlspjL6/FMqjNQgBx7m21H6cZwMHTHWHet0axE/C/n333A=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:24:51 2025 by rpki-client