Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/CjAPCFRAff0PjsTZ3F1Fd1yj7A8.roa
File: CjAPCFRAff0PjsTZ3F1Fd1yj7A8.roa (raw, json)
Hash identifier: fMSkunwhkvG5FEnaYiF575hnuBwLxDYZY+1TMwXr0i8=
Subject key identifier: 0A:30:0F:08:54:40:7D:FD:0F:8E:C4:D9:DC:5D:45:77:5C:A3:EC:0F
Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D
Certificate serial: C0
Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CjAPCFRAff0PjsTZ3F1Fd1yj7A8.roa
Signing time: Sun 01 Jan 2023 01:29:31 +0000
ROA not before: Sun 01 Jan 2023 01:29:31 +0000
ROA not after: Fri 15 Dec 2023 01:30:02 +0000
asID: 2527
IP address blocks: 223.132.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 192 (0xc0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D
Validity
Not Before: Jan 1 01:29:31 2023 GMT
Not After : Dec 15 01:30:02 2023 GMT
Subject: CN=0A300F0854407DFD0F8EC4D9DC5D45775CA3EC0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:39:06:eb:7d:74:e6:98:f9:42:89:20:8b:c8:
53:3b:e4:19:79:39:3e:1a:83:04:dd:a7:93:e1:87:
4b:b2:47:0e:af:cc:f2:ec:45:55:72:2b:2a:5f:22:
91:90:11:56:e0:03:dd:d6:f3:08:f8:c7:48:74:34:
55:70:af:85:1d:85:46:48:5e:ab:91:1c:c8:41:47:
b0:bd:df:ea:15:10:21:18:6d:77:4e:30:b4:17:22:
78:8e:5e:09:95:ed:f2:d9:72:26:13:a4:44:0a:aa:
b0:3c:4b:53:36:0d:4a:69:dd:f7:26:8a:e8:9e:fb:
49:ae:af:ed:b8:1b:76:15:0e:c2:92:73:4d:68:df:
0b:92:cb:c9:86:4c:96:8d:28:79:0f:aa:f4:5d:83:
6a:c8:99:07:1f:30:64:cf:31:66:d3:28:61:28:f0:
0e:e5:97:41:a8:7a:a4:c0:fc:4b:23:b0:8d:9b:7f:
2d:ac:33:17:bf:63:29:19:2a:39:22:de:b4:a9:1b:
2d:b9:b8:8d:93:44:eb:fe:6d:54:f7:3a:f7:64:74:
65:ad:90:61:a3:f0:8d:3e:22:8a:53:20:a3:c1:43:
4b:1f:93:9e:d7:cf:f6:13:51:e5:bd:43:de:dd:df:
72:a0:d4:69:d4:3b:0f:f0:fe:6f:82:7a:cf:c6:dd:
f2:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:30:0F:08:54:40:7D:FD:0F:8E:C4:D9:DC:5D:45:77:5C:A3:EC:0F
X509v3 Authority Key Identifier:
keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CjAPCFRAff0PjsTZ3F1Fd1yj7A8.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
223.132.0.0/14
Signature Algorithm: sha256WithRSAEncryption
66:d8:7b:9e:e8:42:65:86:01:a7:b9:41:29:f4:4b:df:52:ef:
c7:b5:5f:f0:61:5b:6b:08:77:44:60:85:46:b2:17:77:ff:11:
72:1c:9d:cd:05:75:0a:dc:fd:ea:b2:bf:ef:a1:eb:59:03:f1:
81:b5:1f:14:91:dd:f1:19:39:e7:0f:88:23:cb:61:13:ba:f5:
52:7b:f7:4a:8d:b3:75:1d:f5:7f:1d:f6:79:29:93:18:ee:3e:
3d:58:2c:d5:ae:90:fb:86:75:41:68:a1:b7:6e:1f:6a:b4:79:
04:a8:41:e2:35:4c:b5:86:e2:eb:96:a0:a8:99:86:e9:39:ce:
4d:8f:8d:78:2f:79:35:bf:a7:49:e9:63:42:12:77:91:9a:ea:
29:fd:a7:87:47:75:e9:1e:2d:b5:86:d0:4d:cb:22:53:11:4e:
a2:6a:28:d7:6a:24:4c:46:af:1d:eb:30:bf:ea:83:ad:b8:ae:
46:e5:02:af:c1:ec:dd:00:4a:3c:bf:99:71:dd:3a:f8:8b:f8:
0d:d8:99:9e:be:12:67:bf:03:e5:a1:49:b4:c2:cf:ce:1c:ed:
71:a3:d2:83:07:77:d8:81:75:0e:9f:78:48:60:71:6c:26:6d:
f7:3d:fc:12:5f:bc:eb:e0:be:60:ae:92:12:2e:6a:40:7c:f8:
78:c5:17:62
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDk1
QTE4MkZBMThENDU4MjMzMjg0QUE4REM4OEJEMDc1RTVENzAyRDAeFw0yMzAxMDEw
MTI5MzFaFw0yMzEyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDBBMzAwRjA4NTQ0MDdE
RkQwRjhFQzREOURDNUQ0NTc3NUNBM0VDMEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDFOQbrfXTmmPlCiSCLyFM75Bl5OT4agwTdp5Phh0uyRw6vzPLs
RVVyKypfIpGQEVbgA93W8wj4x0h0NFVwr4UdhUZIXquRHMhBR7C93+oVECEYbXdO
MLQXIniOXgmV7fLZciYTpEQKqrA8S1M2DUpp3fcmiuie+0mur+24G3YVDsKSc01o
3wuSy8mGTJaNKHkPqvRdg2rImQcfMGTPMWbTKGEo8A7ll0GoeqTA/EsjsI2bfy2s
Mxe/YykZKjki3rSpGy25uI2TROv+bVT3OvdkdGWtkGGj8I0+IopTIKPBQ0sfk57X
z/YTUeW9Q97d33Kg1GnUOw/w/m+Ces/G3fJZAgMBAAGjggIhMIICHTAdBgNVHQ4E
FgQUCjAPCFRAff0PjsTZ3F1Fd1yj7A8wHwYDVR0jBBgwFoAUCVoYL6GNRYIzKEqo
3Ii9B15dcC0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg
WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzQzL0NWb1lMNkdOUllJektFcW8zSWk5QjE1ZGNDMC5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0NWb1lMNkdOUllJektFcW8zSWk5QjE1
ZGNDMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr
BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC80My9DakFQQ0ZSQWZmMFBqc1RaM0YxRmQxeWo3QTgucm9hMEYG
CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk
cC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAF
AwMC34QwDQYJKoZIhvcNAQELBQADggEBAGbYe57oQmWGAae5QSn0S99S78e1X/Bh
W2sId0RghUayF3f/EXIcnc0FdQrc/eqyv++h61kD8YG1HxSR3fEZOecPiCPLYRO6
9VJ790qNs3Ud9X8d9nkpkxjuPj1YLNWukPuGdUFoobduH2q0eQSoQeI1TLWG4uuW
oKiZhuk5zk2PjXgveTW/p0npY0ISd5Ga6in9p4dHdekeLbWG0E3LIlMRTqJqKNdq
JExGrx3rML/qg624rkblAq/B7N0ASjy/mXHdOviL+A3YmZ6+Eme/A+WhSbTCz84c
7XGj0oMHd9iBdQ6feEhgcWwmbfc9/BJfvOvgvmCukhIuakB8+HjFF2I=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:10 2024 by rpki-client on console-ams.rpki-client.org