Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/897/Tp3k5cYM4FQUch4cvRbP4mcFzk4.roa
File: Tp3k5cYM4FQUch4cvRbP4mcFzk4.roa (raw, json)
Hash identifier: O8OGK/TqcJ72Ezaute72L/aJiLQa8VmM1dbEcpeaaY8=
Subject key identifier: 4E:9D:E4:E5:C6:0C:E0:54:14:72:1E:1C:BD:16:CF:E2:67:05:CE:4E
Certificate issuer: /CN=D6900F1E3126E609EF4F1A0FB855EB4DE4E3A18A
Certificate serial: 40
Authority key identifier: D6:90:0F:1E:31:26:E6:09:EF:4F:1A:0F:B8:55:EB:4D:E4:E3:A1:8A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1pAPHjEm5gnvTxoPuFXrTeTjoYo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/Tp3k5cYM4FQUch4cvRbP4mcFzk4.roa
Signing time: Fri 01 Dec 2023 01:29:55 +0000
ROA not before: Fri 01 Dec 2023 01:29:55 +0000
ROA not after: Thu 14 Nov 2024 01:30:03 +0000
asID: 9621
IP address blocks: 157.120.96.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64 (0x40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D6900F1E3126E609EF4F1A0FB855EB4DE4E3A18A
Validity
Not Before: Dec 1 01:29:55 2023 GMT
Not After : Nov 14 01:30:03 2024 GMT
Subject: CN=4E9DE4E5C60CE05414721E1CBD16CFE26705CE4E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e2:3c:28:45:c6:b8:17:73:3a:38:42:ff:de:
28:06:d3:c1:57:e6:17:ef:9f:58:77:5e:44:87:84:
18:76:e8:75:72:d7:21:24:3a:9d:15:28:dd:f0:f1:
59:9a:db:07:3e:8d:bd:44:75:86:77:59:62:81:45:
16:44:3d:3d:12:1a:eb:66:da:88:45:b5:91:e1:aa:
45:02:bf:22:24:c8:23:5e:be:a2:11:16:7a:04:a7:
fb:7e:b7:f3:12:28:d8:f2:84:1f:69:9d:16:4a:a4:
c4:1f:a7:85:15:7e:74:53:39:c0:fd:05:02:fe:e4:
90:3f:99:4c:5c:73:d7:b7:27:4e:0a:76:1b:e1:1e:
47:6e:07:b5:5a:6b:9d:31:2c:03:97:d8:49:7c:a4:
12:24:6f:6e:5c:c8:42:0b:8e:e6:55:a9:24:c3:60:
49:42:b3:15:02:88:a9:e2:bb:37:cb:06:4e:52:1a:
75:b8:78:b7:06:58:b4:df:8c:d5:d7:2e:9b:47:41:
34:83:b0:f9:ad:a4:e1:ff:3b:25:2a:ca:30:37:2a:
1c:b1:05:3c:e3:de:ef:43:17:85:2d:a9:42:0f:3f:
18:ab:65:be:af:45:4f:ee:88:32:cf:5b:db:21:73:
cf:88:d7:a6:e3:9d:ad:ca:35:ce:0d:f9:fe:97:28:
a0:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:9D:E4:E5:C6:0C:E0:54:14:72:1E:1C:BD:16:CF:E2:67:05:CE:4E
X509v3 Authority Key Identifier:
keyid:D6:90:0F:1E:31:26:E6:09:EF:4F:1A:0F:B8:55:EB:4D:E4:E3:A1:8A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/1pAPHjEm5gnvTxoPuFXrTeTjoYo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1pAPHjEm5gnvTxoPuFXrTeTjoYo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/Tp3k5cYM4FQUch4cvRbP4mcFzk4.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.120.96.0/20
Signature Algorithm: sha256WithRSAEncryption
a6:d7:03:a0:ee:4e:2c:d6:26:43:8d:4f:32:b8:7f:96:9b:f5:
37:1b:da:ab:14:59:60:a9:28:54:26:11:a3:9b:6a:72:ca:46:
9f:b8:b5:84:88:9b:9a:71:aa:f6:2e:b5:f8:be:39:02:6f:91:
17:be:dc:bc:ac:35:2d:8b:65:fb:ab:d1:14:c5:09:2a:2b:2d:
9c:2c:b1:5d:c2:0e:41:ce:11:fd:e0:1a:b0:86:77:95:43:8e:
35:c1:64:83:e1:cb:16:59:17:18:e9:39:52:a5:3e:be:a7:f6:
a8:8a:95:a9:ca:44:b7:4f:15:5c:71:19:55:43:01:85:e4:98:
87:98:1b:ba:0b:e7:b1:fc:d5:17:d3:7c:78:1e:f9:c4:aa:97:
fc:83:52:28:45:26:35:62:2e:ad:ff:7c:c8:a3:26:e5:46:0a:
5f:1e:44:15:b0:e4:da:7c:0a:76:e8:fb:64:6a:18:12:d1:ce:
04:65:fc:58:f7:5f:7d:34:ff:c6:b8:76:87:da:52:5f:6c:5a:
07:2d:65:7f:3e:f1:ce:07:e4:f8:a4:06:a3:13:4c:e9:a4:04:
e0:63:57:22:f8:c8:0e:2f:dc:1f:cf:16:73:bc:b1:a2:27:85:
f8:27:72:81:6c:63:c9:81:7c:f5:c3:40:55:5b:9d:d9:62:00:
00:ca:0d:29
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBQDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhENjkw
MEYxRTMxMjZFNjA5RUY0RjFBMEZCODU1RUI0REU0RTNBMThBMB4XDTIzMTIwMTAx
Mjk1NVoXDTI0MTExNDAxMzAwM1owMzExMC8GA1UEAxMoNEU5REU0RTVDNjBDRTA1
NDE0NzIxRTFDQkQxNkNGRTI2NzA1Q0U0RTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALniPChFxrgXczo4Qv/eKAbTwVfmF++fWHdeRIeEGHbodXLXISQ6
nRUo3fDxWZrbBz6NvUR1hndZYoFFFkQ9PRIa62baiEW1keGqRQK/IiTII16+ohEW
egSn+3638xIo2PKEH2mdFkqkxB+nhRV+dFM5wP0FAv7kkD+ZTFxz17cnTgp2G+Ee
R24HtVprnTEsA5fYSXykEiRvblzIQguO5lWpJMNgSUKzFQKIqeK7N8sGTlIadbh4
twZYtN+M1dcum0dBNIOw+a2k4f87JSrKMDcqHLEFPOPe70MXhS2pQg8/GKtlvq9F
T+6IMs9b2yFzz4jXpuOdrco1zg35/pcooBUCAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBROneTlxgzgVBRyHhy9Fs/iZwXOTjAfBgNVHSMEGDAWgBTWkA8eMSbmCe9PGg+4
VetN5OOhijAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvODk3LzFwQVBIakVtNWdudlR4b1B1RlhyVGVUam9Zby5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzFwQVBIakVtNWdudlR4b1B1RlhyVGVU
am9Zby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC84OTcvVHAzazVjWU00RlFVY2g0Y3ZSYlA0bWNGems0LnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEBJ14YDANBgkqhkiG9w0BAQsFAAOCAQEAptcDoO5OLNYmQ41PMrh/lpv1Nxva
qxRZYKkoVCYRo5tqcspGn7i1hIibmnGq9i61+L45Am+RF77cvKw1LYtl+6vRFMUJ
KistnCyxXcIOQc4R/eAasIZ3lUOONcFkg+HLFlkXGOk5UqU+vqf2qIqVqcpEt08V
XHEZVUMBheSYh5gbugvnsfzVF9N8eB75xKqX/INSKEUmNWIurf98yKMm5UYKXx5E
FbDk2nwKduj7ZGoYEtHOBGX8WPdffTT/xrh2h9pSX2xaBy1lfz7xzgfk+KQGoxNM
6aQE4GNXIvjIDi/cH88Wc7yxoieF+CdygWxjyYF89cNAVVud2WIAAMoNKQ==
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:31:54 2025 by rpki-client