Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/bA227BBTNHrH_WwUYSj_ywqLdoU.roa
File: bA227BBTNHrH_WwUYSj_ywqLdoU.roa (raw, json)
Hash identifier: TP91RJuPeLjHxeKXkoDrCoKiZSzLPsc2eugAb7qG8sg=
Subject key identifier: 6C:0D:B6:EC:10:53:34:7A:C7:FD:6C:14:61:28:FF:CB:0A:8B:76:85
Certificate issuer: /CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA
Certificate serial: 5D
Authority key identifier: 04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/bA227BBTNHrH_WwUYSj_ywqLdoU.roa
Signing time: Sun 01 Jan 2023 01:31:05 +0000
ROA not before: Sun 01 Jan 2023 01:31:05 +0000
ROA not after: Fri 15 Dec 2023 01:30:02 +0000
asID: 2527
IP address blocks: 159.28.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93 (0x5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA
Validity
Not Before: Jan 1 01:31:05 2023 GMT
Not After : Dec 15 01:30:02 2023 GMT
Subject: CN=6C0DB6EC1053347AC7FD6C146128FFCB0A8B7685
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:65:78:3b:22:e6:11:fb:eb:1b:0b:59:df:17:
ef:d1:b5:a3:a1:88:68:b1:4b:4f:7e:d4:b5:f9:fa:
f1:02:a8:ba:71:ed:2a:15:f8:6d:e7:bd:4a:13:bf:
7b:88:65:62:88:bf:20:64:7b:04:dd:02:37:3d:d0:
39:9d:fa:7f:b7:b4:93:fd:ee:98:1f:80:81:45:0b:
c1:7d:8d:76:f9:9e:3b:c1:e9:88:f9:75:3a:3f:32:
07:4b:81:54:4a:9c:ed:09:ed:83:3a:eb:98:df:c5:
56:ac:ef:e0:f8:34:3d:ea:9c:23:6f:4a:93:6f:14:
11:f5:13:ee:91:b4:d8:36:2f:2e:e2:06:54:13:c3:
b7:9f:f0:ee:70:92:3c:2a:b6:78:b9:40:50:08:90:
b5:f4:de:dc:36:eb:96:fe:b8:37:f8:6c:86:ac:7d:
ae:86:7d:67:4e:8c:d0:15:ba:42:c2:68:59:37:f0:
17:c9:dd:56:0f:aa:fe:72:d2:32:8a:2e:43:97:46:
31:b1:09:68:32:be:5d:62:a9:3b:88:4a:80:71:58:
90:ae:8e:29:90:7e:7d:a1:7c:2e:2a:35:e7:39:af:
5a:9b:c2:03:1e:94:2d:76:a6:19:0f:0f:d1:42:75:
e6:24:5e:18:9a:79:9c:63:fe:88:32:1d:35:50:03:
90:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:0D:B6:EC:10:53:34:7A:C7:FD:6C:14:61:28:FF:CB:0A:8B:76:85
X509v3 Authority Key Identifier:
keyid:04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/bA227BBTNHrH_WwUYSj_ywqLdoU.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
159.28.128.0/17
Signature Algorithm: sha256WithRSAEncryption
01:c0:09:74:16:a6:17:e1:1b:7b:55:94:fc:d0:ec:98:36:47:
59:56:e6:59:e0:22:8c:73:a8:99:7d:67:5f:10:f2:eb:12:c1:
ec:a4:dd:58:30:cb:63:4c:ec:10:4b:94:d8:b8:aa:ff:ad:c2:
4f:cd:e9:18:8e:38:8d:b8:02:d7:f4:36:0d:0d:f4:a8:75:7f:
09:5a:08:94:72:14:7d:1c:1d:c2:f3:8f:2d:6e:57:45:ba:52:
c9:4f:1b:08:ca:4b:36:3d:c7:51:8a:16:0c:55:3b:49:b2:77:
7a:da:83:6f:c7:cc:49:c5:62:73:63:bf:24:c5:7b:f1:50:55:
9a:fd:6f:4a:77:54:94:42:86:56:06:84:91:bf:50:0f:56:be:
3e:6e:6c:ed:17:f7:bb:c1:11:4e:09:5e:0a:7c:16:b6:48:46:
65:c4:41:26:ff:c8:ca:6a:cc:9e:d2:a4:30:52:f6:e7:28:77:
1b:4a:9e:bd:1c:95:09:58:19:bd:87:bb:70:b8:86:9d:56:14:
31:b2:43:c2:e5:1d:3b:57:f9:f8:03:58:bc:87:ec:75:b8:12:
e6:37:86:c0:4f:84:82:28:ff:3e:02:cb:c2:e1:ac:1b:90:6a:
ec:bd:1f:b1:59:d4:17:1c:95:1f:76:32:57:ae:74:00:fa:6a:
c0:3d:8b:47
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgIBXTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwNENB
N0YzNUFGMUE4RjUyNTc1QTlGRUZGRjIxQzRBNDcwODBEREZBMB4XDTIzMDEwMTAx
MzEwNVoXDTIzMTIxNTAxMzAwMlowMzExMC8GA1UEAxMoNkMwREI2RUMxMDUzMzQ3
QUM3RkQ2QzE0NjEyOEZGQ0IwQThCNzY4NTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAJtleDsi5hH76xsLWd8X79G1o6GIaLFLT37Utfn68QKounHtKhX4
bee9ShO/e4hlYoi/IGR7BN0CNz3QOZ36f7e0k/3umB+AgUULwX2NdvmeO8HpiPl1
Oj8yB0uBVEqc7QntgzrrmN/FVqzv4Pg0PeqcI29Kk28UEfUT7pG02DYvLuIGVBPD
t5/w7nCSPCq2eLlAUAiQtfTe3Dbrlv64N/hshqx9roZ9Z06M0BW6QsJoWTfwF8nd
Vg+q/nLSMoouQ5dGMbEJaDK+XWKpO4hKgHFYkK6OKZB+faF8Lio15zmvWpvCAx6U
LXamGQ8P0UJ15iReGJp5nGP+iDIdNVADkHUCAwEAAaOCAiIwggIeMB0GA1UdDgQW
BBRsDbbsEFM0esf9bBRhKP/LCot2hTAfBgNVHSMEGDAWgBQEyn81rxqPUldan+//
IcSkcIDd+jAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY
oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvNDMvQk1wX05hOGFqMUpYV3Bfdl95SEVwSENBM2ZvLmNybDBtBggrBgEF
BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p
Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvQk1wX05hOGFqMUpYV3Bfdl95SEVwSENB
M2ZvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG
AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx
QTczODEwMDAwLzQzL2JBMjI3QkJUTkhySF9Xd1VZU2pfeXdxTGRvVS5yb2EwRgYI
KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw
L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAefHIAwDQYJKoZIhvcNAQELBQADggEBAAHACXQWphfhG3tVlPzQ7Jg2R1lW5lng
IoxzqJl9Z18Q8usSweyk3Vgwy2NM7BBLlNi4qv+twk/N6RiOOI24Atf0Ng0N9Kh1
fwlaCJRyFH0cHcLzjy1uV0W6UslPGwjKSzY9x1GKFgxVO0myd3rag2/HzEnFYnNj
vyTFe/FQVZr9b0p3VJRChlYGhJG/UA9Wvj5ubO0X97vBEU4JXgp8FrZIRmXEQSb/
yMpqzJ7SpDBS9ucodxtKnr0clQlYGb2Hu3C4hp1WFDGyQ8LlHTtX+fgDWLyH7HW4
EuY3hsBPhIIo/z4Cy8LhrBuQauy9H7FZ1BcclR92MleudAD6asA9i0c=
-----END CERTIFICATE-----
Generated at Thu Mar 13 01:46:13 2025 by rpki-client