Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/539/yE51blxwtJwnW-Beq8FARPkIefs.roa
File: yE51blxwtJwnW-Beq8FARPkIefs.roa (raw, json)
Hash identifier: DyU2ZcjS8HWP5e8UFJMK5aGV0Uy5eCNCpCLbWQrAEX4=
Subject key identifier: C8:4E:75:6E:5C:70:B4:9C:27:5B:E0:5E:AB:C1:40:44:F9:08:79:FB
Certificate issuer: /CN=B8DD1D6D77FF33931BF748BA9BF0EBF4939D8031
Certificate serial: 3C
Authority key identifier: B8:DD:1D:6D:77:FF:33:93:1B:F7:48:BA:9B:F0:EB:F4:93:9D:80:31
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uN0dbXf_M5Mb90i6m_Dr9JOdgDE.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/yE51blxwtJwnW-Beq8FARPkIefs.roa
Signing time: Fri 31 May 2024 01:28:09 +0000
ROA not before: Fri 31 May 2024 01:28:09 +0000
ROA not after: Thu 15 May 2025 01:30:03 +0000
asID: 55900
IP address blocks: 109.236.0.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60 (0x3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B8DD1D6D77FF33931BF748BA9BF0EBF4939D8031
Validity
Not Before: May 31 01:28:09 2024 GMT
Not After : May 15 01:30:03 2025 GMT
Subject: CN=C84E756E5C70B49C275BE05EABC14044F90879FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:87:29:a2:a9:df:13:b6:34:d1:b1:80:24:7c:
d1:29:d9:2a:37:11:15:b1:45:9a:9f:37:30:35:6c:
02:5a:98:6d:5a:1a:ce:95:9e:8a:aa:27:51:29:f6:
21:20:4a:4e:49:d1:9b:86:f9:8b:61:7c:41:82:d3:
8b:cf:48:be:bd:2d:93:9b:69:e5:87:4d:56:80:e3:
86:6b:52:72:a4:01:05:ca:4b:5c:32:14:04:37:69:
88:d8:7b:3f:d1:0e:8d:5d:53:26:ca:3b:ea:ad:b2:
02:e1:3c:e2:46:ac:89:78:8d:4c:81:f1:23:95:28:
9b:b4:b3:f8:f8:e3:cd:a9:ac:ca:65:57:1b:5e:39:
7f:b8:b3:32:c7:e4:1d:9a:e3:3a:0e:16:d5:27:52:
cc:fc:8f:92:53:6a:6f:99:f6:48:f6:4f:4e:f9:e0:
56:0a:1a:d3:7e:3a:b2:3c:c9:b1:75:86:83:2f:63:
ba:63:76:98:4a:3d:2c:6f:8c:c8:48:dd:10:e0:65:
82:62:6d:08:f1:07:7b:a5:ed:76:9c:90:ad:ba:1d:
fe:0d:6d:86:44:63:9a:af:19:36:aa:f5:ee:40:ec:
f3:2f:e4:11:51:5e:68:0d:8b:df:da:d0:94:0f:1b:
81:48:58:f3:60:4e:08:47:c6:b2:5b:e4:65:8c:a5:
c0:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:4E:75:6E:5C:70:B4:9C:27:5B:E0:5E:AB:C1:40:44:F9:08:79:FB
X509v3 Authority Key Identifier:
keyid:B8:DD:1D:6D:77:FF:33:93:1B:F7:48:BA:9B:F0:EB:F4:93:9D:80:31
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/uN0dbXf_M5Mb90i6m_Dr9JOdgDE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uN0dbXf_M5Mb90i6m_Dr9JOdgDE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/yE51blxwtJwnW-Beq8FARPkIefs.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
109.236.0.0/20
Signature Algorithm: sha256WithRSAEncryption
94:fb:0a:11:08:2d:6f:e2:d7:76:9c:bf:d2:29:63:44:ed:d0:
87:fc:6c:67:4b:fb:54:60:01:c7:dc:a8:20:58:a9:0d:98:16:
87:24:50:fe:f5:e9:ad:43:db:62:93:be:23:e5:b0:08:fd:e5:
17:92:7c:48:40:3d:10:65:ce:8b:d7:03:32:bb:9a:7e:36:96:
df:a9:d7:8f:03:16:6e:41:74:7e:11:07:36:bc:a7:8e:7b:fd:
eb:3f:68:f1:ee:ac:01:a4:1b:fa:09:3a:20:83:aa:63:fa:94:
0d:14:f0:cd:ae:40:a8:7c:c2:4a:38:43:64:9d:ac:92:aa:2c:
8b:a0:46:a5:55:36:db:0d:74:02:95:54:50:09:b0:d8:4b:cc:
59:47:a3:f5:9d:69:14:38:56:36:41:79:b5:de:9b:ab:ad:35:
ea:30:13:01:96:20:36:f5:b1:f5:70:84:36:53:05:41:8c:de:
73:c1:63:dd:38:19:3b:34:8f:72:0e:38:cc:64:a6:f6:bf:b5:
d8:89:aa:99:bb:eb:97:7d:45:3b:99:a6:ff:b1:60:9a:b9:41:
99:04:98:0d:3e:b0:b9:ac:29:d0:ca:ad:ac:ef:11:af:8a:d0:
93:7f:2e:82:9e:2c:f8:d9:fc:a0:c4:03:1e:7a:ec:c3:f5:42:
46:90:32:24
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBPDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCOERE
MUQ2RDc3RkYzMzkzMUJGNzQ4QkE5QkYwRUJGNDkzOUQ4MDMxMB4XDTI0MDUzMTAx
MjgwOVoXDTI1MDUxNTAxMzAwM1owMzExMC8GA1UEAxMoQzg0RTc1NkU1QzcwQjQ5
QzI3NUJFMDVFQUJDMTQwNDRGOTA4NzlGQjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAKCHKaKp3xO2NNGxgCR80SnZKjcRFbFFmp83MDVsAlqYbVoazpWe
iqonUSn2ISBKTknRm4b5i2F8QYLTi89Ivr0tk5tp5YdNVoDjhmtScqQBBcpLXDIU
BDdpiNh7P9EOjV1TJso76q2yAuE84kasiXiNTIHxI5Uom7Sz+PjjzamsymVXG145
f7izMsfkHZrjOg4W1SdSzPyPklNqb5n2SPZPTvngVgoa0346sjzJsXWGgy9jumN2
mEo9LG+MyEjdEOBlgmJtCPEHe6XtdpyQrbod/g1thkRjmq8ZNqr17kDs8y/kEVFe
aA2L39rQlA8bgUhY82BOCEfGslvkZYylwC0CAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBTITnVuXHC0nCdb4F6rwUBE+Qh5+zAfBgNVHSMEGDAWgBS43R1td/8zkxv3SLqb
8Ov0k52AMTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvNTM5L3VOMGRiWGZfTTVNYjkwaTZtX0RyOUpPZGdERS5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3VOMGRiWGZfTTVNYjkwaTZtX0RyOUpP
ZGdERS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC81MzkveUU1MWJseHd0SnduVy1CZXE4RkFSUGtJZWZzLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEBG3sADANBgkqhkiG9w0BAQsFAAOCAQEAlPsKEQgtb+LXdpy/0iljRO3Qh/xs
Z0v7VGABx9yoIFipDZgWhyRQ/vXprUPbYpO+I+WwCP3lF5J8SEA9EGXOi9cDMrua
fjaW36nXjwMWbkF0fhEHNrynjnv96z9o8e6sAaQb+gk6IIOqY/qUDRTwza5AqHzC
SjhDZJ2skqosi6BGpVU22w10ApVUUAmw2EvMWUej9Z1pFDhWNkF5td6bq6016jAT
AZYgNvWx9XCENlMFQYzec8Fj3TgZOzSPcg44zGSm9r+12Imqmbvrl31FO5mm/7Fg
mrlBmQSYDT6wuawp0MqtrO8Rr4rQk38ugp4s+Nn8oMQDHnrsw/VCRpAyJA==
-----END CERTIFICATE-----
Generated at Fri Jun 6 17:40:56 2025 by rpki-client