Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/d9EHCNvMg189G4pMJThTJZ_Tvro.roa
File: d9EHCNvMg189G4pMJThTJZ_Tvro.roa (raw, json)
Hash identifier: S9cTnSWGGTdK2QOTwDMTrXyrgr6Y1quvRP1QQF076iM=
Subject key identifier: 77:D1:07:08:DB:CC:83:5F:3D:1B:8A:4C:25:38:53:25:9F:D3:BE:BA
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 59
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/d9EHCNvMg189G4pMJThTJZ_Tvro.roa
Signing time: Mon 27 Mar 2023 16:04:30 +0000
ROA not before: Mon 27 Mar 2023 16:04:30 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.66.96.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89 (0x59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 27 16:04:30 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=77D10708DBCC835F3D1B8A4C253853259FD3BEBA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d2:ba:8d:ef:01:61:33:7d:fc:44:6d:18:19:
7a:be:c2:b8:34:46:6b:df:cc:df:5d:5d:3a:00:01:
87:cc:50:60:a5:c6:ec:21:c0:a8:b4:44:35:1d:ad:
16:1b:99:b4:11:3c:4c:36:f8:e1:6d:92:16:3b:05:
3b:f0:28:64:19:e9:73:aa:fa:14:1d:3e:ff:58:31:
e1:40:f3:c5:35:b8:d1:b5:82:48:71:27:8e:6d:ac:
22:a9:00:f6:b3:30:44:e8:7d:60:fb:14:22:5b:38:
d4:be:f1:f1:48:7a:dd:8d:cd:15:c0:ad:fd:a3:e7:
a1:6b:a8:19:0d:73:11:8a:ca:7d:95:c0:1e:4f:e6:
4c:6f:5c:c1:0c:36:53:f7:58:7c:4d:0a:d1:ed:de:
cd:d1:30:64:37:4f:2b:f2:da:ed:b7:53:07:ce:ea:
2b:e0:5f:de:f2:38:79:78:36:d7:99:93:7d:3f:39:
8e:ce:30:e0:ef:64:7b:c7:72:e3:c5:5b:5d:b2:bd:
1e:7f:16:93:fa:c8:a1:9b:82:f1:63:fa:3f:fc:eb:
39:75:e4:85:0c:9b:52:c3:05:7a:61:cc:cd:c6:2b:
a0:97:63:57:59:87:e9:f9:55:6d:9e:11:f5:cb:32:
b0:a2:a9:93:60:d0:a7:d2:6b:0e:4a:2c:5e:10:04:
b7:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:D1:07:08:DB:CC:83:5F:3D:1B:8A:4C:25:38:53:25:9F:D3:BE:BA
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/d9EHCNvMg189G4pMJThTJZ_Tvro.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.66.96.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:65:6b:9c:fb:bd:ae:5d:61:96:df:e0:d2:89:4a:ab:b5:59:
dd:1d:e9:9a:60:60:d6:e5:94:f2:35:02:ee:70:12:59:08:e9:
7f:66:d2:93:e8:22:49:b7:af:32:7c:9b:74:37:22:08:b2:84:
a5:f3:e2:b7:d9:bd:a6:87:36:df:0e:a5:46:86:e4:38:32:70:
ba:d1:24:a4:71:32:58:40:4c:ed:f4:68:41:ab:7d:53:d4:6e:
b8:5c:5c:66:be:62:62:b6:e3:fd:2a:5c:63:0d:f7:46:c0:09:
e0:43:69:4b:2b:2c:2a:2d:85:5c:f5:84:86:6c:9c:ad:c4:a5:
4d:2a:60:c9:a1:30:42:3f:03:43:20:3f:a1:c4:69:92:01:c0:
d6:12:ea:0a:f1:a4:17:fc:53:41:d5:23:a8:43:d8:98:82:ad:
ed:9b:0c:cb:aa:0d:ec:bf:73:8b:85:6b:a3:90:8d:68:7a:96:
bd:64:4f:2d:d8:e2:58:9e:ed:f0:86:a3:b4:6f:3d:20:e2:36:
8c:af:6b:da:58:dd:51:5b:ed:b1:c1:ca:51:0d:6f:15:ba:e7:
f4:33:aa:20:3b:a9:ed:20:e3:34:ba:a4:f8:71:42:27:a4:1d:
1a:11:07:36:92:9b:92:3f:1f:76:99:c1:8a:c5:27:1a:c5:d4:
47:10:2e:dd
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBWTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2OTY1
QjBCMjBEREUwN0E0Qzk3OEUyNDA3M0VBMEUxMTE3QjM3NDczMB4XDTIzMDMyNzE2
MDQzMFoXDTI0MDMxNDAxMzAwMlowMzExMC8GA1UEAxMoNzdEMTA3MDhEQkNDODM1
RjNEMUI4QTRDMjUzODUzMjU5RkQzQkVCQTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAM7Suo3vAWEzffxEbRgZer7CuDRGa9/M311dOgABh8xQYKXG7CHA
qLRENR2tFhuZtBE8TDb44W2SFjsFO/AoZBnpc6r6FB0+/1gx4UDzxTW40bWCSHEn
jm2sIqkA9rMwROh9YPsUIls41L7x8Uh63Y3NFcCt/aPnoWuoGQ1zEYrKfZXAHk/m
TG9cwQw2U/dYfE0K0e3ezdEwZDdPK/La7bdTB87qK+Bf3vI4eXg215mTfT85js4w
4O9ke8dy48VbXbK9Hn8Wk/rIoZuC8WP6P/zrOXXkhQybUsMFemHMzcYroJdjV1mH
6flVbZ4R9csysKKpk2DQp9JrDkosXhAEt2cCAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBR30QcI28yDXz0bikwlOFMln9O+ujAfBgNVHSMEGDAWgBRpZbCyDd4HpMl44kBz
6g4RF7N0czAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMzA5L2FXV3dzZzNlQjZUSmVPSkFjLW9PRVJlemRITS5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2FXV3dzZzNlQjZUSmVPSkFjLW9PRVJl
emRITS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC8zMDkvZDlFSENOdk1nMTg5RzRwTUpUaFRKWl9UdnJvLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAgFCYDANBgkqhkiG9w0BAQsFAAOCAQEAuWVrnPu9rl1hlt/g0olKq7VZ3R3p
mmBg1uWU8jUC7nASWQjpf2bSk+giSbevMnybdDciCLKEpfPit9m9poc23w6lRobk
ODJwutEkpHEyWEBM7fRoQat9U9RuuFxcZr5iYrbj/SpcYw33RsAJ4ENpSyssKi2F
XPWEhmycrcSlTSpgyaEwQj8DQyA/ocRpkgHA1hLqCvGkF/xTQdUjqEPYmIKt7ZsM
y6oN7L9zi4Vro5CNaHqWvWRPLdjiWJ7t8IajtG89IOI2jK9r2ljdUVvtscHKUQ1v
Fbrn9DOqIDup7SDjNLqk+HFCJ6QdGhEHNpKbkj8fdpnBisUnGsXURxAu3Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:52 2024 by rpki-client on console-fra.rpki-client.org