Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/512/rLyh20uni6rVQVsnD29qmDk14sQ.roa
File: rLyh20uni6rVQVsnD29qmDk14sQ.roa (raw, json)
Hash identifier: s9i3FsgcvpyBlLDqClpUy8Hxe5NiL5lcUih3VcaAwIU=
Subject key identifier: AC:BC:A1:DB:4B:A7:8B:AA:D5:41:5B:27:0F:6F:6A:98:39:35:E2:C4
Certificate issuer: /CN=BAED0E35A7B58DAC2159F7F1CD740A54B9E8B407
Certificate serial: 15
Authority key identifier: BA:ED:0E:35:A7:B5:8D:AC:21:59:F7:F1:CD:74:0A:54:B9:E8:B4:07
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uu0ONae1jawhWffxzXQKVLnotAc.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/512/rLyh20uni6rVQVsnD29qmDk14sQ.roa
Signing time: Wed 27 Sep 2023 04:29:51 +0000
ROA not before: Wed 27 Sep 2023 04:29:51 +0000
ROA not after: Sat 14 Sep 2024 01:30:03 +0000
asID: 55376
IP address blocks: 202.223.24.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21 (0x15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BAED0E35A7B58DAC2159F7F1CD740A54B9E8B407
Validity
Not Before: Sep 27 04:29:51 2023 GMT
Not After : Sep 14 01:30:03 2024 GMT
Subject: CN=ACBCA1DB4BA78BAAD5415B270F6F6A983935E2C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e9:e6:aa:fd:ee:56:05:14:f1:16:be:88:cc:
38:a0:e1:1c:e4:2b:b0:2d:68:17:b5:61:6e:0e:ac:
a2:6f:0f:f7:e8:f1:ff:ff:06:15:50:cf:ad:6c:2e:
55:f4:4d:63:f6:0c:ef:7e:b7:69:84:c4:36:e4:a6:
22:74:b2:9f:63:5d:f3:0c:f3:3c:0f:3d:49:a6:19:
e4:e3:71:82:4f:9a:33:74:02:4b:fc:28:fb:86:ee:
ee:28:16:d9:8f:f0:90:dd:fe:a1:ed:64:66:ff:3a:
be:b4:cf:31:51:1a:bb:45:80:23:19:40:a3:c0:21:
73:10:f7:19:d9:37:47:82:93:a3:ee:6b:28:69:bc:
bf:58:02:54:63:cd:f0:33:e7:0d:14:24:b7:99:fd:
68:16:af:fc:9e:7b:0a:c4:e3:b7:33:f7:bd:15:bc:
79:e4:6f:fd:5a:7e:1a:8f:0b:fb:2b:32:06:d6:72:
1a:56:1a:a8:06:b2:4a:31:e9:ec:8e:4f:f1:03:52:
50:b1:89:a5:a3:22:5b:15:7b:63:f1:16:ea:8e:0d:
ee:b7:6c:76:14:db:dd:ba:c1:ee:19:8e:b2:fa:b9:
91:ee:c5:6c:28:52:83:10:4b:88:4f:7f:1a:4d:e0:
03:7a:d0:d2:cb:ec:aa:cf:93:28:90:3f:5f:36:11:
8f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:BC:A1:DB:4B:A7:8B:AA:D5:41:5B:27:0F:6F:6A:98:39:35:E2:C4
X509v3 Authority Key Identifier:
keyid:BA:ED:0E:35:A7:B5:8D:AC:21:59:F7:F1:CD:74:0A:54:B9:E8:B4:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/512/uu0ONae1jawhWffxzXQKVLnotAc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uu0ONae1jawhWffxzXQKVLnotAc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/512/rLyh20uni6rVQVsnD29qmDk14sQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.223.24.0/22
Signature Algorithm: sha256WithRSAEncryption
95:d6:51:38:7a:c0:e6:65:bd:c0:c2:20:c9:a8:57:69:38:6a:
f3:41:1d:3b:9b:d1:33:c1:f2:55:f8:b0:d9:1b:25:47:e0:2b:
d4:6c:b8:2d:b4:16:3e:04:39:48:fa:e7:be:9a:fe:6e:23:8c:
35:2f:d7:a0:1e:84:6e:8c:94:d8:59:b2:71:20:d3:58:99:ed:
f6:67:04:32:a8:c8:cf:bd:df:22:c3:8a:41:c9:87:fb:6e:fe:
fd:a7:80:61:01:40:3d:bb:94:22:66:8b:dc:35:49:61:88:6b:
29:43:0f:42:a6:78:2b:14:94:a0:e5:6e:b8:59:e0:f6:a6:c7:
40:38:55:c1:e6:e9:fc:04:b9:82:79:a9:39:33:f7:c5:37:c7:
87:44:ac:0d:44:c8:86:6f:d2:62:1c:09:e5:84:07:32:52:77:
3f:c4:27:2c:f3:76:e2:1d:81:8f:cf:c9:e9:cd:b6:42:7d:28:
ba:ce:50:32:45:aa:4d:1a:66:ae:c9:9f:ed:e3:65:a3:a5:ab:
51:d0:7c:5c:1e:8d:63:db:83:57:09:2c:f7:95:d8:2f:f0:00:
4f:5b:e8:ad:26:cc:a1:31:fe:e7:52:77:63:d7:d3:91:06:48:
1a:c9:06:9a:0b:cd:f9:c9:90:90:4f:4f:2e:bc:65:6c:f5:8f:
b6:56:dd:96
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBFTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCQUVE
MEUzNUE3QjU4REFDMjE1OUY3RjFDRDc0MEE1NEI5RThCNDA3MB4XDTIzMDkyNzA0
Mjk1MVoXDTI0MDkxNDAxMzAwM1owMzExMC8GA1UEAxMoQUNCQ0ExREI0QkE3OEJB
QUQ1NDE1QjI3MEY2RjZBOTgzOTM1RTJDNDCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBANLp5qr97lYFFPEWvojMOKDhHOQrsC1oF7Vhbg6som8P9+jx//8G
FVDPrWwuVfRNY/YM7363aYTENuSmInSyn2Nd8wzzPA89SaYZ5ONxgk+aM3QCS/wo
+4bu7igW2Y/wkN3+oe1kZv86vrTPMVEau0WAIxlAo8AhcxD3Gdk3R4KTo+5rKGm8
v1gCVGPN8DPnDRQkt5n9aBav/J57CsTjtzP3vRW8eeRv/Vp+Go8L+ysyBtZyGlYa
qAaySjHp7I5P8QNSULGJpaMiWxV7Y/EW6o4N7rdsdhTb3brB7hmOsvq5ke7FbChS
gxBLiE9/Gk3gA3rQ0svsqs+TKJA/XzYRjwUCAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBSsvKHbS6eLqtVBWycPb2qYOTXixDAfBgNVHSMEGDAWgBS67Q41p7WNrCFZ9/HN
dApUuei0BzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvNTEyL3V1ME9OYWUxamF3aFdmZnh6WFFLVkxub3RBYy5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3V1ME9OYWUxamF3aFdmZnh6WFFLVkxu
b3RBYy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC81MTIvckx5aDIwdW5pNnJWUVZzbkQyOXFtRGsxNHNRLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAsrfGDANBgkqhkiG9w0BAQsFAAOCAQEAldZROHrA5mW9wMIgyahXaThq80Ed
O5vRM8HyVfiw2RslR+Ar1Gy4LbQWPgQ5SPrnvpr+biOMNS/XoB6EboyU2FmycSDT
WJnt9mcEMqjIz73fIsOKQcmH+27+/aeAYQFAPbuUImaL3DVJYYhrKUMPQqZ4KxSU
oOVuuFng9qbHQDhVwebp/AS5gnmpOTP3xTfHh0SsDUTIhm/SYhwJ5YQHMlJ3P8Qn
LPN24h2Bj8/J6c22Qn0ous5QMkWqTRpmrsmf7eNlo6WrUdB8XB6NY9uDVwks95XY
L/AAT1vorSbMoTH+51J3Y9fTkQZIGskGmgvN+cmQkE9PLrxlbPWPtlbdlg==
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:23:18 2025 by rpki-client