Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/kS_iHG5VjaKZKH0PAC4z_gvX3V8.roa
File: kS_iHG5VjaKZKH0PAC4z_gvX3V8.roa (raw, json)
Hash identifier: 1lFlnEIvQfZe1h/rt8Gm6M1wwmvDir7F5x/TJelzW8U=
Subject key identifier: 91:2F:E2:1C:6E:55:8D:A2:99:28:7D:0F:00:2E:33:FE:0B:D7:DD:5F
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0355
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/kS_iHG5VjaKZKH0PAC4z_gvX3V8.roa
Signing time: Thu 01 Jun 2023 17:56:32 +0000
ROA not before: Thu 01 Jun 2023 17:56:32 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.106.80.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 853 (0x355)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 17:56:32 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=912FE21C6E558DA299287D0F002E33FE0BD7DD5F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:45:3a:67:7d:47:ae:0f:3e:d6:ad:d7:19:a9:
d9:29:c6:ca:b9:36:20:33:08:23:5d:3b:f2:73:af:
31:49:b3:21:0e:5b:a9:b4:97:5d:70:d5:73:4d:2e:
e5:91:38:39:73:83:e2:e6:be:0b:02:c4:fb:bd:15:
2a:51:bd:cd:4e:58:a2:c9:50:0e:db:9a:c7:a4:d8:
85:b7:4b:08:be:7f:50:3f:15:43:c8:4b:95:36:d6:
2e:fb:d4:8d:f3:31:42:a7:66:2f:03:88:e9:59:fd:
32:5a:27:99:3e:44:31:84:fc:36:f3:c9:df:75:23:
f0:11:5d:16:b0:3c:bb:79:dd:58:6f:c3:b2:a0:2d:
99:2e:18:df:e3:2a:cc:a7:8f:8b:b3:d5:68:42:19:
a9:e1:fb:23:61:9d:96:61:04:29:6a:0d:a0:9f:d7:
14:3c:14:b9:a5:41:07:d0:07:08:73:9b:40:0b:62:
7c:5c:0a:bc:24:f0:ab:d6:94:f6:29:fd:9b:fe:8e:
61:d5:03:12:75:1f:df:fa:74:56:39:02:04:cd:a7:
29:f1:fd:23:4b:bb:5f:d3:36:53:7d:19:5c:a3:5e:
85:cc:4f:ed:56:3b:ea:d0:e1:a0:1a:f2:3b:25:87:
5d:3d:bb:df:fa:e7:71:69:f1:d9:db:91:3d:74:da:
84:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:2F:E2:1C:6E:55:8D:A2:99:28:7D:0F:00:2E:33:FE:0B:D7:DD:5F
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/kS_iHG5VjaKZKH0PAC4z_gvX3V8.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.106.80.0/21
Signature Algorithm: sha256WithRSAEncryption
d3:6f:de:a7:f7:a6:39:65:3b:ca:e8:66:c8:60:97:04:25:ce:
ec:8f:68:ae:3f:98:c6:06:f1:e4:f5:04:33:25:18:3c:8f:fe:
13:21:5f:53:81:d2:de:dd:5a:c0:fd:16:8e:f0:c4:13:37:24:
58:5a:dc:80:6b:14:28:c1:47:94:b1:cf:76:5c:d0:88:31:f8:
dd:24:ec:8f:6d:a9:db:8e:a7:83:2f:f7:3e:d1:da:26:ec:e0:
2a:30:85:bf:a7:79:f3:a6:02:a2:fa:87:84:d4:c6:8d:97:ff:
b5:f0:c1:bb:c9:24:1a:7b:cf:c0:7f:35:70:7a:18:9a:e0:d5:
91:d0:94:a8:f8:12:de:ec:52:51:c6:be:b0:49:78:0b:d9:4a:
15:90:ca:db:d3:ae:eb:ce:b4:d8:be:f0:75:59:b6:c2:7f:94:
14:85:48:ca:22:ef:c7:cb:a3:26:03:bb:f1:ff:f4:cb:58:de:
5e:d5:90:e7:9d:82:37:af:7c:c4:2b:00:a7:52:14:93:67:76:
e7:3d:38:7a:63:86:3b:a8:dd:60:b5:e6:71:99:dd:77:06:ea:
88:14:71:28:66:d2:99:8e:f0:3a:60:95:83:ce:e8:b6:02:67:
1e:a3:40:31:7e:6c:94:99:b7:2b:fc:23:c3:7b:ce:85:91:85:
e2:bb:7c:d2
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICA1UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA2MDEx
NzU2MzJaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDkxMkZFMjFDNkU1NThE
QTI5OTI4N0QwRjAwMkUzM0ZFMEJEN0RENUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDORTpnfUeuDz7WrdcZqdkpxsq5NiAzCCNdO/JzrzFJsyEOW6m0
l11w1XNNLuWRODlzg+LmvgsCxPu9FSpRvc1OWKLJUA7bmsek2IW3Swi+f1A/FUPI
S5U21i771I3zMUKnZi8DiOlZ/TJaJ5k+RDGE/Dbzyd91I/ARXRawPLt53Vhvw7Kg
LZkuGN/jKsynj4uz1WhCGanh+yNhnZZhBClqDaCf1xQ8FLmlQQfQBwhzm0ALYnxc
Crwk8KvWlPYp/Zv+jmHVAxJ1H9/6dFY5AgTNpynx/SNLu1/TNlN9GVyjXoXMT+1W
O+rQ4aAa8jslh109u9/653Fp8dnbkT102oSJAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUkS/iHG5VjaKZKH0PAC4z/gvX3V8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L2tTX2lIRzVWamFLWktIMFBBQzR6X2d2WDNWOC5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAMxalAwDQYJKoZIhvcNAQELBQADggEBANNv3qf3pjllO8roZshglwQlzuyP
aK4/mMYG8eT1BDMlGDyP/hMhX1OB0t7dWsD9Fo7wxBM3JFha3IBrFCjBR5Sxz3Zc
0Igx+N0k7I9tqduOp4Mv9z7R2ibs4Cowhb+nefOmAqL6h4TUxo2X/7XwwbvJJBp7
z8B/NXB6GJrg1ZHQlKj4Et7sUlHGvrBJeAvZShWQytvTruvOtNi+8HVZtsJ/lBSF
SMoi78fLoyYDu/H/9MtY3l7VkOedgjevfMQrAKdSFJNnduc9OHpjhjuo3WC15nGZ
3XcG6ogUcShm0pmO8DpglYPO6LYCZx6jQDF+bJSZtyv8I8N7zoWRheK7fNI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:52 2024 by rpki-client on console-fra.rpki-client.org