Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/s1y2vPcvtapAhXikQtO80MySeDA.roa
File: s1y2vPcvtapAhXikQtO80MySeDA.roa (raw, json)
Hash identifier: A6HxkjeSMUYis6Ha7wgyKKjETegS097bXdrmw3IXCP8=
Subject key identifier: B3:5C:B6:BC:F7:2F:B5:AA:40:85:78:A4:42:D3:BC:D0:CC:92:78:30
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0389
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/s1y2vPcvtapAhXikQtO80MySeDA.roa
Signing time: Thu 01 Jun 2023 17:57:38 +0000
ROA not before: Thu 01 Jun 2023 17:57:38 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.104.24.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 905 (0x389)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 17:57:38 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=B35CB6BCF72FB5AA408578A442D3BCD0CC927830
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b7:2d:c5:b8:9d:ca:f3:5e:b5:e4:4b:15:59:
6e:22:9d:b2:8c:ae:2c:5a:c0:20:e1:07:93:f1:a5:
c3:55:05:66:f0:f9:16:6b:29:de:a7:e0:df:72:7e:
88:60:17:30:14:dd:67:0f:4d:ff:c9:13:25:f6:5d:
28:8c:17:77:f1:eb:48:a5:4d:c4:d4:fb:0f:8d:02:
fa:be:88:23:a6:66:5e:3e:21:22:e4:0f:05:cd:d5:
09:79:c5:74:f3:77:52:22:68:05:27:26:b8:80:cf:
e9:4b:66:81:14:ea:07:73:5d:2b:20:4d:31:a1:3c:
27:96:2f:25:ac:22:e0:dd:e9:7a:f4:ad:54:b6:35:
1a:14:c0:f0:ae:29:c0:62:5d:8e:b6:73:95:df:84:
ad:ed:39:5c:cb:7c:6a:a0:91:61:2c:8e:50:4d:22:
f1:00:66:31:a1:9c:06:1a:ca:48:e5:c1:16:0e:f5:
5b:fb:d2:1b:77:5d:b3:55:07:81:14:bc:15:bb:61:
bf:82:c4:bd:fb:e6:56:1e:c4:f5:ec:c0:77:8e:a8:
cf:99:43:70:c6:e9:e0:ef:bb:d4:c7:89:86:35:55:
be:52:21:3c:2e:87:46:bd:b7:62:ff:16:6d:41:8c:
db:2a:64:0c:b5:04:5b:ac:6b:72:18:9f:bf:e1:bc:
d7:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:5C:B6:BC:F7:2F:B5:AA:40:85:78:A4:42:D3:BC:D0:CC:92:78:30
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/s1y2vPcvtapAhXikQtO80MySeDA.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.104.24.0/23
Signature Algorithm: sha256WithRSAEncryption
db:86:ac:e2:1a:78:f5:4f:b8:ef:39:5b:20:11:fc:a5:52:9a:
05:1a:2a:65:1d:2d:a3:f8:df:80:93:46:23:20:dd:93:1c:c8:
54:51:b5:aa:f6:29:f8:e2:58:44:d3:e3:5b:87:ef:72:37:fc:
5a:1c:35:47:c9:6b:92:43:aa:a7:cf:86:b0:fc:d3:35:93:bb:
52:16:58:bc:b7:19:9a:c3:88:27:46:2a:eb:9b:77:99:21:34:
f4:e5:22:10:58:18:49:52:d0:3c:cf:65:c4:f6:7e:53:ba:13:
36:39:2a:85:52:29:98:bc:ef:46:35:15:02:b0:6a:fa:ac:33:
e9:65:24:8a:fe:b3:35:25:ca:c5:40:60:4b:25:ef:45:9f:8e:
24:e7:ef:8f:02:a7:82:47:b1:a9:c4:17:36:ee:b9:27:6a:af:
98:6b:30:73:9a:77:1d:1b:73:ea:fc:41:42:f1:ef:0f:e9:d5:
7b:9d:81:6b:73:9e:71:9a:59:c2:14:6d:c3:cd:c5:e7:0d:26:
1e:74:33:52:94:82:58:71:1a:3a:e4:ac:da:c1:86:e6:4c:99:
3c:64:2c:80:ac:06:1b:7a:50:af:b5:b2:f5:3a:86:86:60:3b:
6b:7a:a4:38:e6:bb:fb:8a:7b:04:b9:b1:28:60:3b:13:bb:8d:
83:7e:e4:36
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICA4kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA2MDEx
NzU3MzhaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKEIzNUNCNkJDRjcyRkI1
QUE0MDg1NzhBNDQyRDNCQ0QwQ0M5Mjc4MzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCsty3FuJ3K81615EsVWW4inbKMrixawCDhB5PxpcNVBWbw+RZr
Kd6n4N9yfohgFzAU3WcPTf/JEyX2XSiMF3fx60ilTcTU+w+NAvq+iCOmZl4+ISLk
DwXN1Ql5xXTzd1IiaAUnJriAz+lLZoEU6gdzXSsgTTGhPCeWLyWsIuDd6Xr0rVS2
NRoUwPCuKcBiXY62c5XfhK3tOVzLfGqgkWEsjlBNIvEAZjGhnAYaykjlwRYO9Vv7
0ht3XbNVB4EUvBW7Yb+CxL375lYexPXswHeOqM+ZQ3DG6eDvu9THiYY1Vb5SITwu
h0a9t2L/Fm1BjNsqZAy1BFusa3IYn7/hvNc5AgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUs1y2vPcvtapAhXikQtO80MySeDAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L3MxeTJ2UGN2dGFwQWhYaWtRdE84ME15U2VEQS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAExaBgwDQYJKoZIhvcNAQELBQADggEBANuGrOIaePVPuO85WyAR/KVSmgUa
KmUdLaP434CTRiMg3ZMcyFRRtar2KfjiWETT41uH73I3/FocNUfJa5JDqqfPhrD8
0zWTu1IWWLy3GZrDiCdGKuubd5khNPTlIhBYGElS0DzPZcT2flO6EzY5KoVSKZi8
70Y1FQKwavqsM+llJIr+szUlysVAYEsl70WfjiTn748Cp4JHsanEFzbuuSdqr5hr
MHOadx0bc+r8QULx7w/p1XudgWtznnGaWcIUbcPNxecNJh50M1KUglhxGjrkrNrB
huZMmTxkLICsBht6UK+1svU6hoZgO2t6pDjmu/uKewS5sShgOxO7jYN+5DY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:03 2024 by rpki-client on console-ams.rpki-client.org