Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/heYYOc1-ygxivfK8Az52qDCZ6T8.roa
File: heYYOc1-ygxivfK8Az52qDCZ6T8.roa (raw, json)
Hash identifier: LfYb75BfRbo7jeTD45AqVP3nUQXuOF1t5muo15iecV8=
Subject key identifier: 85:E6:18:39:CD:7E:CA:0C:62:BD:F2:BC:03:3E:76:A8:30:99:E9:3F
Certificate issuer: /CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA
Certificate serial: 37
Authority key identifier: 04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/heYYOc1-ygxivfK8Az52qDCZ6T8.roa
Signing time: Tue 01 Feb 2022 01:31:11 +0000
ROA not before: Tue 01 Feb 2022 01:31:11 +0000
ROA not after: Sun 15 Jan 2023 01:30:03 +0000
asID: 2527
IP address blocks: 159.28.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55 (0x37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA
Validity
Not Before: Feb 1 01:31:11 2022 GMT
Not After : Jan 15 01:30:03 2023 GMT
Subject: CN=85E61839CD7ECA0C62BDF2BC033E76A83099E93F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:13:46:6d:bd:82:a6:12:42:ac:9a:1d:49:ff:
8f:ee:5c:ba:c9:6b:08:af:b1:23:23:a5:2f:bb:0c:
4f:11:61:85:57:1a:1c:83:b3:0e:ba:2e:1b:c5:30:
33:50:fe:9a:fb:28:cf:e0:22:da:e9:48:6f:15:b8:
59:0b:62:73:eb:55:b4:44:ef:15:77:d2:91:65:a8:
76:78:49:36:31:04:17:6d:80:38:60:f6:24:fd:5b:
86:2c:03:8a:7d:d0:53:88:05:89:9e:05:81:c8:f4:
55:c3:e6:c3:9f:5e:82:fa:26:b0:45:43:69:71:c1:
4b:b9:b7:16:fa:2e:4a:75:ae:a9:b8:5f:e5:cc:0d:
0b:49:57:e8:92:b5:a7:fe:2e:fb:d7:fb:f5:db:2f:
70:0c:18:7d:d3:98:12:ec:bf:6a:37:75:41:8f:4c:
d0:63:21:68:b1:24:ae:1f:ef:5d:b3:54:85:01:b5:
4d:72:9a:4c:e8:c5:45:a5:81:17:31:00:02:4c:49:
ef:d5:07:ff:c5:c3:9c:fd:af:4d:7d:ee:16:62:a2:
55:66:1b:3a:da:42:b8:6e:ff:99:bd:35:56:23:b4:
95:89:5a:c0:eb:da:bd:67:63:01:9f:3d:5c:9d:b8:
f7:da:f1:d3:a2:2e:69:74:f2:5a:e5:69:d2:15:33:
60:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:E6:18:39:CD:7E:CA:0C:62:BD:F2:BC:03:3E:76:A8:30:99:E9:3F
X509v3 Authority Key Identifier:
keyid:04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/heYYOc1-ygxivfK8Az52qDCZ6T8.roa
sbgp-ipAddrBlock: critical
IPv4:
159.28.64.0/18
Signature Algorithm: sha256WithRSAEncryption
a3:07:48:c2:ed:8b:c1:5f:3b:6e:82:96:62:4d:b2:82:44:05:
ef:f2:70:30:b7:a6:6a:3b:1e:08:f5:1c:f6:7a:87:0d:f7:22:
22:f3:86:24:01:ca:a5:99:c6:4d:4b:a3:ae:e8:af:55:da:03:
85:93:7d:01:ae:c8:e5:d7:33:79:87:4e:07:a8:aa:80:b5:a5:
84:d1:8e:ed:4e:85:1a:55:e5:53:58:cd:6e:19:fa:cd:c6:3a:
3f:20:5d:7a:0c:da:16:e8:8d:01:05:fb:dc:2c:8d:67:d4:30:
1a:9b:e5:c3:35:ad:d6:70:f1:87:ab:9e:36:b2:11:99:92:08:
fa:ff:77:9b:86:e6:6c:fe:54:4f:45:dd:8d:9e:b2:2a:2d:db:
cd:f8:c1:0f:57:09:2e:b3:ae:98:c3:16:14:03:b4:0d:9f:96:
19:34:bb:57:c9:31:e7:1e:6f:0e:d8:0a:05:53:4a:95:66:c9:
d0:85:ff:06:54:3f:4c:1b:14:33:d7:94:19:ed:e0:55:bf:eb:
8f:bb:34:ed:bf:f3:63:26:cd:24:e9:47:06:87:18:6e:ce:13:
9b:47:de:ea:34:15:a8:89:ea:85:24:08:3d:a6:ea:1c:1c:5c:
6f:8e:d9:5f:99:f0:f4:26:c5:30:db:09:2f:47:3a:8f:62:2e:
0b:17:9b:5e
-----BEGIN CERTIFICATE-----
MIIEujCCA6KgAwIBAgIBNzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwNENB
N0YzNUFGMUE4RjUyNTc1QTlGRUZGRjIxQzRBNDcwODBEREZBMB4XDTIyMDIwMTAx
MzExMVoXDTIzMDExNTAxMzAwM1owMzExMC8GA1UEAxMoODVFNjE4MzlDRDdFQ0Ew
QzYyQkRGMkJDMDMzRTc2QTgzMDk5RTkzRjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALITRm29gqYSQqyaHUn/j+5cuslrCK+xIyOlL7sMTxFhhVcaHIOz
DrouG8UwM1D+mvsoz+Ai2ulIbxW4WQtic+tVtETvFXfSkWWodnhJNjEEF22AOGD2
JP1bhiwDin3QU4gFiZ4Fgcj0VcPmw59egvomsEVDaXHBS7m3FvouSnWuqbhf5cwN
C0lX6JK1p/4u+9f79dsvcAwYfdOYEuy/ajd1QY9M0GMhaLEkrh/vXbNUhQG1TXKa
TOjFRaWBFzEAAkxJ79UH/8XDnP2vTX3uFmKiVWYbOtpCuG7/mb01ViO0lYlawOva
vWdjAZ89XJ2499rx06IuaXTyWuVp0hUzYHcCAwEAAaOCAdcwggHTMB0GA1UdDgQW
BBSF5hg5zX7KDGK98rwDPnaoMJnpPzAfBgNVHSMEGDAWgBQEyn81rxqPUldan+//
IcSkcIDd+jAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY
oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvNDMvQk1wX05hOGFqMUpYV3Bfdl95SEVwSENBM2ZvLmNybDBtBggrBgEF
BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p
Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvQk1wX05hOGFqMUpYV3Bfdl95SEVwSENB
M2ZvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwcAYIKwYBBQUHAQsEZDBiMGAGCCsGAQUF
BzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzQzL2hlWVlPYzEteWd4aXZmSzhBejUycURDWjZUOC5yb2EwHwYIKwYB
BQUHAQcBAf8EEDAOMAwEAgABMAYDBAafHEAwDQYJKoZIhvcNAQELBQADggEBAKMH
SMLti8FfO26ClmJNsoJEBe/ycDC3pmo7Hgj1HPZ6hw33IiLzhiQByqWZxk1Lo67o
r1XaA4WTfQGuyOXXM3mHTgeoqoC1pYTRju1OhRpV5VNYzW4Z+s3GOj8gXXoM2hbo
jQEF+9wsjWfUMBqb5cM1rdZw8YernjayEZmSCPr/d5uG5mz+VE9F3Y2esiot2834
wQ9XCS6zrpjDFhQDtA2flhk0u1fJMecebw7YCgVTSpVmydCF/wZUP0wbFDPXlBnt
4FW/64+7NO2/82MmzSTpRwaHGG7OE5tH3uo0FaiJ6oUkCD2m6hwcXG+O2V+Z8PQm
xTDbCS9HOo9iLgsXm14=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:54 2024 by rpki-client on console-fra.rpki-client.org