Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/iYpU6DcdFCIMxqDjxG2kDa0UeMc.roa
File: iYpU6DcdFCIMxqDjxG2kDa0UeMc.roa (raw, json)
Hash identifier: GWlxfAJTa2YNKfrPCh3UBXbk+2gWI3Wif+Sw3b/YRTM=
Subject key identifier: 89:8A:54:E8:37:1D:14:22:0C:C6:A0:E3:C4:6D:A4:0D:AD:14:78:C7
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0162
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iYpU6DcdFCIMxqDjxG2kDa0UeMc.roa
Signing time: Wed 24 May 2023 16:31:25 +0000
ROA not before: Wed 24 May 2023 16:31:25 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.98.8.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 354 (0x162)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:31:25 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=898A54E8371D14220CC6A0E3C46DA40DAD1478C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:e5:ad:21:70:11:98:80:99:b1:e1:83:7d:12:
f6:51:91:e6:67:c8:75:06:73:7b:fd:7c:02:c1:00:
c8:c4:d6:42:ac:2f:6b:95:76:eb:81:fd:78:ab:4a:
68:81:6e:3b:7f:c6:09:12:36:ff:8d:6e:e7:8c:f3:
e0:f9:80:d1:3c:a5:ff:55:f8:dd:98:e3:64:a4:45:
e1:24:73:dd:33:54:85:82:89:5f:af:f2:0b:91:18:
61:51:7c:53:9f:f6:99:94:26:c7:c2:1f:38:bb:55:
9a:8b:0a:d1:8e:dd:14:db:64:37:f6:ff:06:54:26:
d1:a9:ca:6e:b5:90:68:1d:92:66:fe:b2:24:79:07:
ad:57:eb:bd:0c:ed:a9:0b:5a:6f:cb:91:30:c8:25:
38:5f:d5:21:d7:5e:83:64:37:fd:12:40:2d:33:51:
f5:b2:af:2e:2f:b8:8b:5c:48:bf:18:01:25:3e:4f:
a1:a6:18:19:75:a7:7d:d7:33:53:93:15:f4:94:ce:
71:28:76:a4:7d:be:d1:94:8c:c7:90:20:38:48:57:
e9:39:6d:f0:36:0b:3f:9d:33:10:19:54:40:d9:b3:
d0:d0:af:47:58:3e:b4:a1:d9:13:b6:82:50:58:34:
41:aa:c3:0b:d7:64:24:51:7d:9b:2a:8b:c2:44:4d:
8d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:8A:54:E8:37:1D:14:22:0C:C6:A0:E3:C4:6D:A4:0D:AD:14:78:C7
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iYpU6DcdFCIMxqDjxG2kDa0UeMc.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.8.0/22
Signature Algorithm: sha256WithRSAEncryption
bc:41:bf:b9:60:e6:a7:b4:2a:34:14:f0:70:56:f3:e2:c6:a0:
75:0f:d0:35:1d:82:4b:a0:80:3b:c6:7e:4b:cb:41:5f:c8:30:
fd:e6:6b:c3:59:f4:57:b4:c3:79:0b:1a:2f:f6:30:df:2b:cc:
61:8c:78:50:d2:75:81:41:91:3d:48:fc:0b:f3:ed:1e:4d:6f:
95:36:dc:2f:d5:49:d8:53:d9:66:9d:d4:ef:3b:65:45:cc:08:
0d:08:e6:42:51:34:ec:3b:2a:68:e7:39:b7:4a:0c:0a:6e:23:
84:35:b8:28:9e:ec:61:1b:99:aa:95:e5:bd:32:57:d6:84:55:
96:cf:48:da:37:96:d9:d3:2f:e6:0b:6c:4c:b4:a1:a4:eb:19:
42:cc:8b:cf:c2:2d:59:18:9c:06:2b:6d:d6:b7:af:84:66:dd:
e1:4d:0d:be:99:fe:a9:05:f6:3d:d1:9d:d7:dd:34:2c:bb:fe:
25:fd:83:39:96:69:e5:49:c3:89:bd:cb:23:34:0b:2a:2b:11:
72:ac:7a:1f:92:4a:64:d0:23:30:a0:a6:58:c0:17:aa:4f:1e:
13:56:42:42:65:ba:3c:88:da:06:07:71:e9:68:7c:a0:94:e4:
63:84:a2:09:b2:ca:dc:93:cd:a5:ac:76:b8:a7:c3:b8:5e:ee:
88:65:b5:f4
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MjQx
NjMxMjVaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDg5OEE1NEU4MzcxRDE0
MjIwQ0M2QTBFM0M0NkRBNDBEQUQxNDc4QzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDs5a0hcBGYgJmx4YN9EvZRkeZnyHUGc3v9fALBAMjE1kKsL2uV
duuB/XirSmiBbjt/xgkSNv+NbueM8+D5gNE8pf9V+N2Y42SkReEkc90zVIWCiV+v
8guRGGFRfFOf9pmUJsfCHzi7VZqLCtGO3RTbZDf2/wZUJtGpym61kGgdkmb+siR5
B61X670M7akLWm/LkTDIJThf1SHXXoNkN/0SQC0zUfWyry4vuItcSL8YASU+T6Gm
GBl1p33XM1OTFfSUznEodqR9vtGUjMeQIDhIV+k5bfA2Cz+dMxAZVEDZs9DQr0dY
PrSh2RO2glBYNEGqwwvXZCRRfZsqi8JETY2LAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUiYpU6DcdFCIMxqDjxG2kDa0UeMcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L2lZcFU2RGNkRkNJTXhxRGp4RzJrRGEwVWVNYy5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAIxYggwDQYJKoZIhvcNAQELBQADggEBALxBv7lg5qe0KjQU8HBW8+LGoHUP
0DUdgkuggDvGfkvLQV/IMP3ma8NZ9Fe0w3kLGi/2MN8rzGGMeFDSdYFBkT1I/Avz
7R5Nb5U23C/VSdhT2Wad1O87ZUXMCA0I5kJRNOw7KmjnObdKDApuI4Q1uCie7GEb
maqV5b0yV9aEVZbPSNo3ltnTL+YLbEy0oaTrGULMi8/CLVkYnAYrbda3r4Rm3eFN
Db6Z/qkF9j3RndfdNCy7/iX9gzmWaeVJw4m9yyM0CyorEXKseh+SSmTQIzCgpljA
F6pPHhNWQkJlujyI2gYHcelofKCU5GOEogmyytyTzaWsdrinw7he7ohltfQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:02 2024 by rpki-client on console-ams.rpki-client.org