Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/BmxhFyD96cNXmlFrx45667W3f3U.roa
File: BmxhFyD96cNXmlFrx45667W3f3U.roa (raw, json)
Hash identifier: sDTDzkxYoUmj5xa6S6B2UJeQpqkXDVZfbt9X8pcb0AM=
Subject key identifier: 06:6C:61:17:20:FD:E9:C3:57:9A:51:6B:C7:8E:7A:EB:B5:B7:7F:75
Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Certificate serial: 0466
Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/BmxhFyD96cNXmlFrx45667W3f3U.roa
Signing time: Thu 13 Apr 2023 09:57:58 +0000
ROA not before: Thu 13 Apr 2023 09:57:58 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 10010
IP address blocks: 220.216.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1126 (0x466)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Validity
Not Before: Apr 13 09:57:58 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=066C611720FDE9C3579A516BC78E7AEBB5B77F75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:7c:5a:7e:7f:44:8b:2b:99:31:47:cb:d6:39:
b6:fb:06:6c:f0:6a:08:76:72:ff:f0:55:70:cf:ab:
a5:bc:a7:4f:bf:f0:ce:78:be:22:65:89:0a:96:ca:
44:dc:33:32:4c:87:95:5b:94:74:d8:81:3a:af:c0:
08:c2:58:77:ac:78:7d:1d:99:4e:72:55:6c:79:5a:
4d:2a:e9:88:49:d0:77:70:44:c3:5a:ec:e7:49:14:
d6:6e:c1:1b:00:2f:41:96:1f:f9:23:4a:ed:3f:18:
a8:e0:f4:eb:a0:b4:42:0e:d2:aa:f3:4e:16:80:fe:
bc:09:89:4f:42:7d:0b:77:6f:19:f4:b6:df:15:12:
d8:63:9d:01:9a:5c:05:69:f1:67:d8:d0:72:e1:54:
25:f4:55:c0:ca:32:5b:c5:d6:06:0c:5a:b1:1e:ce:
bf:32:dd:7a:f1:a8:6e:07:59:49:6d:cb:c0:95:d3:
54:7f:84:50:9b:8b:00:e2:d6:5b:9b:a6:0c:f4:4d:
08:76:5c:84:d5:cc:b3:c8:69:c2:ba:2d:c4:bf:5f:
08:42:9c:9d:7c:43:f0:39:4b:8f:5e:4f:74:bc:ba:
b9:98:d1:44:e5:ca:2e:68:74:97:de:95:49:a3:bc:
b8:65:d9:54:ec:31:e1:ad:61:b9:9c:c2:b8:31:d3:
16:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:6C:61:17:20:FD:E9:C3:57:9A:51:6B:C7:8E:7A:EB:B5:B7:7F:75
X509v3 Authority Key Identifier:
keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/BmxhFyD96cNXmlFrx45667W3f3U.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.216.0.0/19
Signature Algorithm: sha256WithRSAEncryption
03:c7:99:bb:1a:cf:67:e8:c6:19:ca:19:ec:18:54:d5:a0:ca:
7a:c1:36:20:c1:9f:78:d4:d8:27:8b:54:c5:2d:17:98:f6:8e:
fb:6d:49:08:17:6e:cb:6b:62:5d:74:cb:23:7d:99:5a:0f:a1:
9b:78:64:9f:c0:e2:0d:0b:4a:a8:fd:05:00:dc:97:40:55:47:
96:f3:52:49:9c:dd:5b:8a:09:29:b4:7e:8a:00:39:c4:12:6e:
49:2c:37:14:e2:07:57:11:1c:7c:da:16:51:79:65:46:4f:5c:
6b:b6:6d:2f:cf:44:9b:3d:0d:98:1b:fd:40:44:3b:cd:17:22:
fc:0c:0f:d4:2b:38:5f:4b:02:9f:f7:18:70:1d:76:5a:2e:45:
f1:ea:b9:1a:6f:dd:71:28:c3:e7:3c:15:4b:2c:5d:91:8f:70:
8f:ce:63:b7:82:95:c4:df:58:7b:74:e0:48:01:14:81:85:a6:
f6:27:ed:31:0a:e4:94:e1:a0:e5:fd:f1:93:d3:a8:b1:c0:f6:
62:68:aa:0e:59:f5:41:d7:c3:15:e8:ef:3e:0c:05:d4:11:86:
46:7a:20:37:69:05:bc:68:39:52:06:02:4f:c7:60:44:42:93:
0c:22:4f:dd:ae:12:b5:dc:be:f3:b5:65:11:f7:16:cf:0f:88:
cc:0d:39:e5
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICBGYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJE
Q0Q1MjZCMDlFNzg5N0Y3MUZFMDQ4NThCRTc1QzA2RUM0RjEzQTAeFw0yMzA0MTMw
OTU3NThaFw0yNDAzMTQwMTMwMDJaMDMxMTAvBgNVBAMTKDA2NkM2MTE3MjBGREU5
QzM1NzlBNTE2QkM3OEU3QUVCQjVCNzdGNzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDjfFp+f0SLK5kxR8vWObb7Bmzwagh2cv/wVXDPq6W8p0+/8M54
viJliQqWykTcMzJMh5VblHTYgTqvwAjCWHeseH0dmU5yVWx5Wk0q6YhJ0HdwRMNa
7OdJFNZuwRsAL0GWH/kjSu0/GKjg9OugtEIO0qrzThaA/rwJiU9CfQt3bxn0tt8V
EthjnQGaXAVp8WfY0HLhVCX0VcDKMlvF1gYMWrEezr8y3XrxqG4HWUlty8CV01R/
hFCbiwDi1lubpgz0TQh2XITVzLPIacK6LcS/XwhCnJ18Q/A5S49eT3S8urmY0UTl
yi5odJfelUmjvLhl2VTsMeGtYbmcwrgx0xYJAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUBmxhFyD96cNXmlFrx45667W3f3UwHwYDVR0jBBgwFoAUu9zVJrCeeJf3H+BI
WL51wG7E8TowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzU0NS91OXpWSnJDZWVKZjNILUJJV0w1MXdHN0U4VG8uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91OXpWSnJDZWVKZjNILUJJV0w1MXdH
N0U4VG8uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvNTQ1L0JteGhGeUQ5NmNOWG1sRnJ4NDU2NjdXM2YzVS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAXc2AAwDQYJKoZIhvcNAQELBQADggEBAAPHmbsaz2foxhnKGewYVNWgynrB
NiDBn3jU2CeLVMUtF5j2jvttSQgXbstrYl10yyN9mVoPoZt4ZJ/A4g0LSqj9BQDc
l0BVR5bzUkmc3VuKCSm0fooAOcQSbkksNxTiB1cRHHzaFlF5ZUZPXGu2bS/PRJs9
DZgb/UBEO80XIvwMD9QrOF9LAp/3GHAddlouRfHquRpv3XEow+c8FUssXZGPcI/O
Y7eClcTfWHt04EgBFIGFpvYn7TEK5JThoOX98ZPTqLHA9mJoqg5Z9UHXwxXo7z4M
BdQRhkZ6IDdpBbxoOVIGAk/HYERCkwwiT92uErXcvvO1ZRH3Fs8PiMwNOeU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:54 2024 by rpki-client on console-fra.rpki-client.org