Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/TBnqqLt3G_4qAxG0aFVhZZF0k20.roa
File: TBnqqLt3G_4qAxG0aFVhZZF0k20.roa (raw, json)
Hash identifier: kzK28nZHyiIt2NvJK0QKb9SaE3wO5zxY1XikI14jbe0=
Subject key identifier: 4C:19:EA:A8:BB:77:1B:FE:2A:03:11:B4:68:55:61:65:91:74:93:6D
Certificate issuer: /CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA
Certificate serial: 57
Authority key identifier: 04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/TBnqqLt3G_4qAxG0aFVhZZF0k20.roa
Signing time: Sun 01 Jan 2023 01:29:34 +0000
ROA not before: Sun 01 Jan 2023 01:29:34 +0000
ROA not after: Fri 15 Dec 2023 01:30:02 +0000
asID: 2527
IP address blocks: 207.65.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87 (0x57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA
Validity
Not Before: Jan 1 01:29:34 2023 GMT
Not After : Dec 15 01:30:02 2023 GMT
Subject: CN=4C19EAA8BB771BFE2A0311B4685561659174936D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:43:83:4c:28:61:fa:f5:47:94:64:ae:28:fa:
f7:c4:15:66:b2:01:b4:6c:00:13:a9:ba:87:c6:f4:
0c:2e:d2:9d:9a:c0:97:0e:e1:de:27:d5:45:9a:8a:
15:46:fc:a8:f2:a1:ca:94:41:71:de:72:11:63:5d:
e1:55:18:bc:23:83:fa:a8:d2:dd:48:2f:4b:38:85:
7f:08:a4:9e:69:f6:43:27:5c:a9:88:07:0d:20:ca:
5f:82:7e:90:60:b4:9c:c1:32:b8:c6:e0:39:63:78:
fe:93:86:bd:50:91:8f:4a:0d:a4:69:a4:62:0a:ec:
ba:65:4e:4d:6e:70:de:46:89:f9:64:c6:29:f8:53:
1a:33:a3:50:2e:6c:fe:43:3f:fa:2d:7d:e9:a0:ee:
72:2a:3d:fb:19:bc:5c:47:c4:ee:36:63:e1:4d:2a:
70:36:92:ae:7d:59:cd:00:ed:9d:8b:df:e3:bc:f5:
1e:0d:f3:0f:a8:2f:f0:c5:77:b9:f6:69:c1:68:34:
d9:31:0e:ff:e2:d4:d2:2f:97:81:c0:8f:e1:55:1f:
32:88:2c:d7:50:54:ac:41:ff:a1:a4:9a:b8:c3:72:
57:18:cd:78:f4:ce:b5:48:55:0f:e4:be:c9:2a:b2:
42:b3:04:7f:8c:7c:d3:62:1d:0d:16:93:f8:f7:d5:
3c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:19:EA:A8:BB:77:1B:FE:2A:03:11:B4:68:55:61:65:91:74:93:6D
X509v3 Authority Key Identifier:
keyid:04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/TBnqqLt3G_4qAxG0aFVhZZF0k20.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
207.65.128.0/17
Signature Algorithm: sha256WithRSAEncryption
74:74:f6:49:88:09:68:8f:b0:c9:9f:c1:84:20:74:32:27:bf:
87:5a:8f:2f:7d:f9:4a:bd:0b:21:84:d0:7b:cc:0a:da:2d:ac:
dd:67:27:d4:2d:4c:fc:0f:8b:78:8d:18:89:68:df:3b:10:82:
08:9a:7d:7c:dd:ec:9d:e6:a3:46:09:b0:fa:08:c1:59:30:43:
3b:4e:fd:38:64:94:52:06:09:54:0b:28:a3:e5:2f:02:48:77:
99:be:43:a1:e1:bf:50:18:81:90:df:46:4f:63:5f:a5:a0:b0:
2f:e0:fb:ea:7e:49:fd:0e:0a:1f:a9:e0:38:0a:be:a6:8e:d7:
ae:34:45:09:32:9a:ff:c9:bd:7f:3d:a1:79:01:2b:dc:83:d8:
58:9f:79:56:f4:6a:82:86:62:55:b9:1a:a5:e5:fb:74:85:25:
0a:3b:46:9f:d5:6d:77:35:34:5b:d7:b2:3b:d6:e7:8b:30:f2:
c9:33:2d:21:a0:39:2f:b5:04:7b:39:aa:ae:ec:8c:a7:4e:0d:
a2:ea:f4:7e:d7:a5:e7:78:bb:a2:75:92:2c:59:3a:ed:b4:31:
f7:04:1c:6c:41:06:fc:86:38:1b:38:71:0e:b4:81:fa:72:ce:
1c:06:0d:35:b2:b4:b2:57:d7:75:d3:a4:c3:75:ee:49:b7:a8:
d0:f0:b7:e2
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgIBVzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwNENB
N0YzNUFGMUE4RjUyNTc1QTlGRUZGRjIxQzRBNDcwODBEREZBMB4XDTIzMDEwMTAx
MjkzNFoXDTIzMTIxNTAxMzAwMlowMzExMC8GA1UEAxMoNEMxOUVBQThCQjc3MUJG
RTJBMDMxMUI0Njg1NTYxNjU5MTc0OTM2RDCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAOJDg0woYfr1R5Rkrij698QVZrIBtGwAE6m6h8b0DC7SnZrAlw7h
3ifVRZqKFUb8qPKhypRBcd5yEWNd4VUYvCOD+qjS3UgvSziFfwiknmn2QydcqYgH
DSDKX4J+kGC0nMEyuMbgOWN4/pOGvVCRj0oNpGmkYgrsumVOTW5w3kaJ+WTGKfhT
GjOjUC5s/kM/+i196aDucio9+xm8XEfE7jZj4U0qcDaSrn1ZzQDtnYvf47z1Hg3z
D6gv8MV3ufZpwWg02TEO/+LU0i+XgcCP4VUfMogs11BUrEH/oaSauMNyVxjNePTO
tUhVD+S+ySqyQrMEf4x802IdDRaT+PfVPAUCAwEAAaOCAiIwggIeMB0GA1UdDgQW
BBRMGeqou3cb/ioDEbRoVWFlkXSTbTAfBgNVHSMEGDAWgBQEyn81rxqPUldan+//
IcSkcIDd+jAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY
oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvNDMvQk1wX05hOGFqMUpYV3Bfdl95SEVwSENBM2ZvLmNybDBtBggrBgEF
BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p
Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvQk1wX05hOGFqMUpYV3Bfdl95SEVwSENB
M2ZvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG
AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx
QTczODEwMDAwLzQzL1RCbnFxTHQzR180cUF4RzBhRlZoWlpGMGsyMC5yb2EwRgYI
KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw
L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAfPQYAwDQYJKoZIhvcNAQELBQADggEBAHR09kmICWiPsMmfwYQgdDInv4dajy99
+Uq9CyGE0HvMCtotrN1nJ9QtTPwPi3iNGIlo3zsQggiafXzd7J3mo0YJsPoIwVkw
QztO/ThklFIGCVQLKKPlLwJId5m+Q6Hhv1AYgZDfRk9jX6WgsC/g++p+Sf0OCh+p
4DgKvqaO1640RQkymv/JvX89oXkBK9yD2FifeVb0aoKGYlW5GqXl+3SFJQo7Rp/V
bXc1NFvXsjvW54sw8skzLSGgOS+1BHs5qq7sjKdODaLq9H7Xped4u6J1kixZOu20
MfcEHGxBBvyGOBs4cQ60gfpyzhwGDTWytLJX13XTpMN17km3qNDwt+I=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:54 2024 by rpki-client on console-fra.rpki-client.org