Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/loXiiQ_sn9weIeBAzKQyOnKhH_0.roa
File: loXiiQ_sn9weIeBAzKQyOnKhH_0.roa (raw, json)
Hash identifier: zRTDYH/Gssbqz7djeddtyC5M1PB+knrnvQVL+OLmDaw=
Subject key identifier: 96:85:E2:89:0F:EC:9F:DC:1E:21:E0:40:CC:A4:32:3A:72:A1:1F:FD
Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D
Certificate serial: D0
Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/loXiiQ_sn9weIeBAzKQyOnKhH_0.roa
Signing time: Sun 01 Jan 2023 01:29:40 +0000
ROA not before: Sun 01 Jan 2023 01:29:40 +0000
ROA not after: Fri 15 Dec 2023 01:30:02 +0000
asID: 2527
IP address blocks: 219.98.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 208 (0xd0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D
Validity
Not Before: Jan 1 01:29:40 2023 GMT
Not After : Dec 15 01:30:02 2023 GMT
Subject: CN=9685E2890FEC9FDC1E21E040CCA4323A72A11FFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4c:28:5f:19:7b:2b:5c:6a:7f:f9:4b:f3:d1:
73:13:c5:e9:55:45:a8:ae:4e:e5:aa:95:2f:1b:50:
21:81:fa:a5:93:cb:2a:41:1a:82:1a:08:96:45:9c:
90:57:d6:6c:9b:db:ac:96:bc:d2:3b:0e:45:3d:a2:
7f:67:b8:96:7f:2a:2f:b6:8c:6e:d4:bc:a9:f7:17:
7a:ee:43:7e:bc:02:14:4c:57:cb:08:22:04:a7:e5:
29:ff:bf:8a:c8:a1:a6:64:e0:5f:19:93:74:4a:b0:
d7:03:0a:05:4b:be:9f:1e:5e:ab:f7:26:d9:59:22:
d7:fe:64:8b:94:ff:b9:fd:5b:77:35:9e:dd:e1:c2:
b9:37:c4:00:71:c1:3d:ce:61:6b:fc:38:ea:42:4f:
bc:ce:26:03:70:07:b4:ac:3a:5d:a4:a0:aa:69:f4:
a1:60:25:7c:6d:b8:ec:31:20:ab:b9:78:13:92:a7:
69:ad:7f:0c:3b:bd:44:a0:7e:9c:25:73:f9:f5:04:
c7:fb:b2:20:5b:95:ed:24:8d:69:a0:9e:4e:dc:e4:
d6:8a:2c:e0:c8:80:f7:1f:fc:9a:8e:8b:09:6f:8a:
a9:74:0c:90:03:26:d3:77:21:8e:9c:05:ce:bb:2e:
86:5f:d1:2d:ac:d4:29:d1:30:a3:d0:52:bc:f4:43:
c6:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:85:E2:89:0F:EC:9F:DC:1E:21:E0:40:CC:A4:32:3A:72:A1:1F:FD
X509v3 Authority Key Identifier:
keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/loXiiQ_sn9weIeBAzKQyOnKhH_0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
219.98.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6c:8f:cc:0b:ef:f1:6e:01:af:aa:1f:97:8a:f9:de:f3:31:64:
b6:83:8b:c8:ca:15:33:cb:db:fe:ff:64:0e:8a:95:f3:d3:72:
fd:da:1c:3a:21:20:96:5a:df:ed:6c:17:c7:dc:1f:b9:0e:da:
f3:a7:3b:45:7a:da:b2:42:81:fa:26:ae:6d:a8:76:85:86:2d:
3d:89:09:bf:18:e9:80:da:fa:1a:3c:73:26:bc:62:87:46:2a:
e1:9c:18:86:f1:cd:1d:48:20:5a:29:4a:07:27:e6:c1:85:f5:
31:d2:19:46:a8:ea:52:ec:2c:2d:11:56:c2:ec:ed:e1:6c:f7:
67:ba:5f:64:86:a1:8f:b0:66:0a:02:64:7e:a8:24:ab:44:7f:
a2:4e:30:94:e6:6e:f2:73:9f:8a:6e:a8:45:7f:4b:5b:89:85:
e6:32:33:d3:33:2f:c4:95:5d:ce:f8:68:65:fc:19:ab:9f:f9:
ac:b7:81:88:0f:84:2f:21:56:4d:a6:87:1b:d9:56:fd:ea:76:
df:7e:fb:7f:0c:f6:ae:46:3b:06:58:e7:0e:58:7f:72:c9:07:
e6:e7:99:97:70:15:5e:5e:23:19:9a:0b:e9:b1:e6:79:18:2b:
fe:1d:cf:0f:9b:91:07:28:bb:a1:12:8e:ce:a1:3f:4a:31:fc:
37:46:6e:c2
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgICANAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDk1
QTE4MkZBMThENDU4MjMzMjg0QUE4REM4OEJEMDc1RTVENzAyRDAeFw0yMzAxMDEw
MTI5NDBaFw0yMzEyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDk2ODVFMjg5MEZFQzlG
REMxRTIxRTA0MENDQTQzMjNBNzJBMTFGRkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCtTChfGXsrXGp/+Uvz0XMTxelVRaiuTuWqlS8bUCGB+qWTyypB
GoIaCJZFnJBX1myb26yWvNI7DkU9on9nuJZ/Ki+2jG7UvKn3F3ruQ368AhRMV8sI
IgSn5Sn/v4rIoaZk4F8Zk3RKsNcDCgVLvp8eXqv3JtlZItf+ZIuU/7n9W3c1nt3h
wrk3xABxwT3OYWv8OOpCT7zOJgNwB7SsOl2koKpp9KFgJXxtuOwxIKu5eBOSp2mt
fww7vUSgfpwlc/n1BMf7siBble0kjWmgnk7c5NaKLODIgPcf/JqOiwlviql0DJAD
JtN3IY6cBc67LoZf0S2s1CnRMKPQUrz0Q8aHAgMBAAGjggIhMIICHTAdBgNVHQ4E
FgQUloXiiQ/sn9weIeBAzKQyOnKhH/0wHwYDVR0jBBgwFoAUCVoYL6GNRYIzKEqo
3Ii9B15dcC0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg
WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzQzL0NWb1lMNkdOUllJektFcW8zSWk5QjE1ZGNDMC5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0NWb1lMNkdOUllJektFcW8zSWk5QjE1
ZGNDMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr
BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC80My9sb1hpaVFfc245d2VJZUJBektReU9uS2hIXzAucm9hMEYG
CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk
cC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAF
AwMA22IwDQYJKoZIhvcNAQELBQADggEBAGyPzAvv8W4Br6ofl4r53vMxZLaDi8jK
FTPL2/7/ZA6KlfPTcv3aHDohIJZa3+1sF8fcH7kO2vOnO0V62rJCgfomrm2odoWG
LT2JCb8Y6YDa+ho8cya8YodGKuGcGIbxzR1IIFopSgcn5sGF9THSGUao6lLsLC0R
VsLs7eFs92e6X2SGoY+wZgoCZH6oJKtEf6JOMJTmbvJzn4puqEV/S1uJheYyM9Mz
L8SVXc74aGX8Gauf+ay3gYgPhC8hVk2mhxvZVv3qdt9++38M9q5GOwZY5w5Yf3LJ
B+bnmZdwFV5eIxmaC+mx5nkYK/4dzw+bkQcou6ESjs6hP0ox/DdGbsI=
-----END CERTIFICATE-----
Generated at Thu Mar 13 01:42:14 2025 by rpki-client