Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/668/RF0dX9gJ1fhdahfPCQ0ezYMjaSs.roa
File: RF0dX9gJ1fhdahfPCQ0ezYMjaSs.roa (raw, json)
Hash identifier: 7rWWgLOoTh0fByzD5ng6ur9FJDQ/wV+hzBcKgtNT0+I=
Subject key identifier: 44:5D:1D:5F:D8:09:D5:F8:5D:6A:17:CF:09:0D:1E:CD:83:23:69:2B
Certificate issuer: /CN=F556EC334102047BEDBA0C0DDB4DC930E07A9058
Certificate serial: 21
Authority key identifier: F5:56:EC:33:41:02:04:7B:ED:BA:0C:0D:DB:4D:C9:30:E0:7A:90:58
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/9VbsM0ECBHvtugwN203JMOB6kFg.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/668/RF0dX9gJ1fhdahfPCQ0ezYMjaSs.roa
Signing time: Sun 01 May 2022 01:31:32 +0000
ROA not before: Sun 01 May 2022 01:31:32 +0000
ROA not after: Thu 27 Apr 2023 09:52:34 +0000
asID: 17948
IP address blocks: 203.145.120.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33 (0x21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F556EC334102047BEDBA0C0DDB4DC930E07A9058
Validity
Not Before: May 1 01:31:32 2022 GMT
Not After : Apr 27 09:52:34 2023 GMT
Subject: CN=445D1D5FD809D5F85D6A17CF090D1ECD8323692B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:b3:aa:36:24:c5:1c:a2:a6:4b:60:ee:83:cd:
da:da:21:a5:61:86:57:76:23:e2:91:1c:0d:9f:4d:
ec:6e:f0:a8:fe:8f:11:c0:ed:80:6c:07:72:be:bb:
1b:bd:02:03:a4:39:6b:f7:ee:4f:6b:4c:db:c9:93:
42:f0:83:bc:10:a1:74:7e:3e:67:2d:ea:13:f4:ab:
da:7d:4b:0a:4e:5d:64:55:14:64:d5:12:b3:b2:c4:
c7:29:9d:67:40:5a:66:0e:24:a9:d6:bf:2e:62:fd:
f6:8c:1a:01:8b:ff:06:7a:c3:32:cf:9f:55:d3:b2:
32:b2:91:07:e5:b5:d5:b9:99:1a:da:5e:2e:2a:cf:
79:61:19:46:91:64:b9:97:87:30:ca:6b:ea:50:98:
67:e2:1a:68:af:f1:e5:13:3a:e8:a4:05:0e:18:a9:
e7:22:92:4d:5e:59:55:f4:de:75:d4:30:30:67:d5:
4b:27:79:db:4a:db:15:98:84:94:42:b2:95:b8:88:
ce:37:6e:31:ea:87:30:5b:3e:c1:65:8d:63:0d:57:
2e:fb:6c:5b:76:66:e1:e4:75:dd:77:5e:1a:89:31:
70:d9:5e:fb:7e:4a:72:42:4d:31:f2:66:85:9a:51:
8c:3d:57:41:95:ea:47:99:82:52:3f:c0:eb:c5:e5:
71:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:5D:1D:5F:D8:09:D5:F8:5D:6A:17:CF:09:0D:1E:CD:83:23:69:2B
X509v3 Authority Key Identifier:
keyid:F5:56:EC:33:41:02:04:7B:ED:BA:0C:0D:DB:4D:C9:30:E0:7A:90:58
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/668/9VbsM0ECBHvtugwN203JMOB6kFg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/9VbsM0ECBHvtugwN203JMOB6kFg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/668/RF0dX9gJ1fhdahfPCQ0ezYMjaSs.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.145.120.0/21
Signature Algorithm: sha256WithRSAEncryption
56:b6:fc:2b:f5:58:81:18:de:a8:e8:5f:ee:55:c7:2b:9d:aa:
b2:58:62:65:f0:d4:f1:a0:3b:fb:6d:c5:c8:d7:b9:61:af:05:
f9:09:50:70:d5:42:cf:7c:1d:0b:3d:fc:1c:8a:ca:36:58:6c:
1d:9c:94:14:dd:04:0c:2c:e0:31:5e:ef:fb:2b:08:c5:c5:fe:
08:ba:9e:d1:2d:a0:a6:64:0e:71:2c:5a:cd:ea:63:0e:70:a0:
1a:2e:26:c3:08:39:8a:dd:7a:9a:9c:22:3b:6b:af:ec:54:28:
c2:3e:c9:fc:a6:13:1e:0d:21:6a:80:72:29:6f:c7:d7:d5:ab:
93:c1:7d:c3:2a:ab:4d:e9:ea:3c:f1:93:40:25:07:17:5c:b9:
90:6b:59:2e:6a:1e:b4:a1:5a:db:36:2c:e4:3a:4c:27:d1:82:
51:ff:bb:b3:b8:b0:2e:94:13:4a:21:13:e0:87:84:f5:7c:26:
40:27:74:5a:ce:3d:78:75:54:20:9c:08:ae:e5:f0:9b:2a:66:
a6:2e:ef:de:21:c4:d1:73:b0:6d:e8:c2:41:7a:a8:5f:e9:4a:
62:61:b9:66:1c:45:f6:8c:a9:76:77:e4:a6:19:47:58:cf:d7:
53:13:7e:8e:1b:bb:6e:39:78:4e:01:b2:a3:c9:56:82:73:83:
27:b5:e3:d7
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBITANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGNTU2
RUMzMzQxMDIwNDdCRURCQTBDMEREQjREQzkzMEUwN0E5MDU4MB4XDTIyMDUwMTAx
MzEzMloXDTIzMDQyNzA5NTIzNFowMzExMC8GA1UEAxMoNDQ1RDFENUZEODA5RDVG
ODVENkExN0NGMDkwRDFFQ0Q4MzIzNjkyQjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAOGzqjYkxRyipktg7oPN2tohpWGGV3Yj4pEcDZ9N7G7wqP6PEcDt
gGwHcr67G70CA6Q5a/fuT2tM28mTQvCDvBChdH4+Zy3qE/Sr2n1LCk5dZFUUZNUS
s7LExymdZ0BaZg4kqda/LmL99owaAYv/BnrDMs+fVdOyMrKRB+W11bmZGtpeLirP
eWEZRpFkuZeHMMpr6lCYZ+IaaK/x5RM66KQFDhip5yKSTV5ZVfTeddQwMGfVSyd5
20rbFZiElEKylbiIzjduMeqHMFs+wWWNYw1XLvtsW3Zm4eR13XdeGokxcNle+35K
ckJNMfJmhZpRjD1XQZXqR5mCUj/A68XlcU0CAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBREXR1f2AnV+F1qF88JDR7NgyNpKzAfBgNVHSMEGDAWgBT1VuwzQQIEe+26DA3b
Tckw4HqQWDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvNjY4LzlWYnNNMEVDQkh2dHVnd04yMDNKTU9CNmtGZy5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzlWYnNNMEVDQkh2dHVnd04yMDNKTU9C
NmtGZy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC82NjgvUkYwZFg5Z0oxZmhkYWhmUENRMGV6WU1qYVNzLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEA8uReDANBgkqhkiG9w0BAQsFAAOCAQEAVrb8K/VYgRjeqOhf7lXHK52qslhi
ZfDU8aA7+23FyNe5Ya8F+QlQcNVCz3wdCz38HIrKNlhsHZyUFN0EDCzgMV7v+ysI
xcX+CLqe0S2gpmQOcSxazepjDnCgGi4mwwg5it16mpwiO2uv7FQowj7J/KYTHg0h
aoByKW/H19Wrk8F9wyqrTenqPPGTQCUHF1y5kGtZLmoetKFa2zYs5DpMJ9GCUf+7
s7iwLpQTSiET4IeE9XwmQCd0Ws49eHVUIJwIruXwmypmpi7v3iHE0XOwbejCQXqo
X+lKYmG5ZhxF9oypdnfkphlHWM/XUxN+jhu7bjl4TgGyo8lWgnODJ7Xj1w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:55 2024 by rpki-client on console-fra.rpki-client.org