Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/cKPNhqG-rwEKq2r5ZGYadzthSQQ.roa
File: cKPNhqG-rwEKq2r5ZGYadzthSQQ.roa (raw, json)
Hash identifier: OgMOblL+u8CODso+B/H3Cv1Aiu/W9KBQ4wuRKiMWGJQ=
Subject key identifier: 70:A3:CD:86:A1:BE:AF:01:0A:AB:6A:F9:64:66:1A:77:3B:61:49:04
Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D
Certificate serial: 011A
Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/cKPNhqG-rwEKq2r5ZGYadzthSQQ.roa
Signing time: Fri 01 Dec 2023 01:31:52 +0000
ROA not before: Fri 01 Dec 2023 01:31:52 +0000
ROA not after: Thu 14 Nov 2024 01:30:03 +0000
asID: 2527
IP address blocks: 182.168.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 282 (0x11a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D
Validity
Not Before: Dec 1 01:31:52 2023 GMT
Not After : Nov 14 01:30:03 2024 GMT
Subject: CN=70A3CD86A1BEAF010AAB6AF964661A773B614904
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:d8:bd:3c:2f:ee:43:af:63:27:67:43:da:83:
cd:02:0a:67:cc:7e:88:fb:b6:b1:f9:df:47:02:c2:
7f:55:dc:b3:a3:d7:75:5b:59:ef:3c:30:aa:26:cb:
28:eb:94:4e:a3:d7:6a:6a:32:30:7b:cb:87:fe:f3:
0e:11:26:41:0d:d9:17:fe:3c:85:88:a4:c7:d9:d3:
cd:72:b5:6a:30:5b:ce:5b:92:24:0f:a1:e0:68:ad:
56:e2:ee:f4:72:c6:56:b8:ee:3e:09:d8:dd:53:4a:
c0:da:31:1a:7e:63:87:46:50:4d:81:66:b1:10:84:
ce:d2:5f:3b:7f:15:4e:95:da:c8:dc:ec:db:91:a6:
40:bb:8e:41:73:2e:e2:2c:2a:f4:26:c4:b2:a5:5f:
0d:8e:d0:5d:a2:ce:e9:3d:e8:ba:b7:19:fc:78:35:
bc:a8:4c:55:34:09:78:72:2f:3b:5c:18:0e:0b:53:
bb:d5:2f:b3:dc:27:7e:98:50:e4:3f:97:fe:d5:58:
f1:fc:c2:30:eb:e4:d6:bd:80:18:1e:a0:58:9e:c2:
b2:93:79:ec:c7:5b:78:a1:1a:a2:cf:53:97:3a:58:
9d:65:30:a4:4d:db:11:12:05:f5:02:31:47:91:f3:
a6:0e:d4:4e:55:4e:a4:b8:1a:b2:36:8e:2c:3b:b4:
97:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:A3:CD:86:A1:BE:AF:01:0A:AB:6A:F9:64:66:1A:77:3B:61:49:04
X509v3 Authority Key Identifier:
keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/cKPNhqG-rwEKq2r5ZGYadzthSQQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
182.168.0.0/14
Signature Algorithm: sha256WithRSAEncryption
00:06:84:48:09:94:de:82:66:01:40:12:f3:42:d4:20:34:e2:
7d:78:28:17:6b:e5:57:e7:a3:a4:55:5b:eb:1f:2f:69:c0:c7:
e1:87:2e:9e:4b:31:a5:8f:67:60:c6:81:dc:bb:c4:0d:2b:18:
ba:f6:87:c9:96:f7:fe:7d:25:6d:4f:e6:f4:45:5a:e8:1c:73:
fe:f7:89:0f:3e:78:6c:4e:04:bb:e9:59:b8:c0:48:80:8e:05:
79:47:e4:a7:9a:78:e4:c3:a3:28:af:49:5e:4a:c7:20:d1:f7:
e1:d5:5f:cd:db:a7:66:28:0e:45:0f:4a:e5:ea:92:c2:f7:4b:
fb:a6:41:68:bb:14:75:77:db:ba:48:cc:ca:13:39:12:c0:8e:
bb:fd:63:ef:91:2b:b3:04:4a:aa:36:a1:2d:0f:e1:03:e4:55:
1d:33:b9:9f:40:c9:47:35:0c:3e:9f:0e:99:27:5a:fa:65:61:
cc:57:dd:2f:5b:f3:50:ea:39:00:f8:8c:f3:8d:8e:4f:cf:49:
e8:ac:c1:cc:72:50:c9:31:65:44:16:22:58:c9:d5:00:f2:bb:
f4:d0:f8:f2:fe:b2:e0:27:e4:9c:a9:0d:af:90:2e:7f:d2:08:
fd:6f:a9:6c:f9:15:b0:9b:78:1a:45:97:d3:61:01:1b:e4:ae:
20:ce:62:b7
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgICARowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDk1
QTE4MkZBMThENDU4MjMzMjg0QUE4REM4OEJEMDc1RTVENzAyRDAeFw0yMzEyMDEw
MTMxNTJaFw0yNDExMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDcwQTNDRDg2QTFCRUFG
MDEwQUFCNkFGOTY0NjYxQTc3M0I2MTQ5MDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDx2L08L+5Dr2MnZ0Pag80CCmfMfoj7trH530cCwn9V3LOj13Vb
We88MKomyyjrlE6j12pqMjB7y4f+8w4RJkEN2Rf+PIWIpMfZ081ytWowW85bkiQP
oeBorVbi7vRyxla47j4J2N1TSsDaMRp+Y4dGUE2BZrEQhM7SXzt/FU6V2sjc7NuR
pkC7jkFzLuIsKvQmxLKlXw2O0F2izuk96Lq3Gfx4NbyoTFU0CXhyLztcGA4LU7vV
L7PcJ36YUOQ/l/7VWPH8wjDr5Na9gBgeoFiewrKTeezHW3ihGqLPU5c6WJ1lMKRN
2xESBfUCMUeR86YO1E5VTqS4GrI2jiw7tJd1AgMBAAGjggIhMIICHTAdBgNVHQ4E
FgQUcKPNhqG+rwEKq2r5ZGYadzthSQQwHwYDVR0jBBgwFoAUCVoYL6GNRYIzKEqo
3Ii9B15dcC0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg
WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzQzL0NWb1lMNkdOUllJektFcW8zSWk5QjE1ZGNDMC5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0NWb1lMNkdOUllJektFcW8zSWk5QjE1
ZGNDMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr
BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC80My9jS1BOaHFHLXJ3RUtxMnI1WkdZYWR6dGhTUVEucm9hMEYG
CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk
cC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAF
AwMCtqgwDQYJKoZIhvcNAQELBQADggEBAAAGhEgJlN6CZgFAEvNC1CA04n14KBdr
5Vfno6RVW+sfL2nAx+GHLp5LMaWPZ2DGgdy7xA0rGLr2h8mW9/59JW1P5vRFWugc
c/73iQ8+eGxOBLvpWbjASICOBXlH5KeaeOTDoyivSV5KxyDR9+HVX83bp2YoDkUP
SuXqksL3S/umQWi7FHV327pIzMoTORLAjrv9Y++RK7MESqo2oS0P4QPkVR0zuZ9A
yUc1DD6fDpknWvplYcxX3S9b81DqOQD4jPONjk/PSeiswcxyUMkxZUQWIljJ1QDy
u/TQ+PL+suAn5JypDa+QLn/SCP1vqWz5FbCbeBpFl9NhARvkriDOYrc=
-----END CERTIFICATE-----
Generated at Thu Mar 13 01:42:08 2025 by rpki-client