Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/942/2HLQnIqfKRsB2xVziGEPYjfYaAw.roa
File: 2HLQnIqfKRsB2xVziGEPYjfYaAw.roa (raw, json)
Hash identifier: z7jkEo8bocKCNK0MFkwPLSiVWGay/kLJY4ng1TBA5wc=
Subject key identifier: D8:72:D0:9C:8A:9F:29:1B:01:DB:15:73:88:61:0F:62:37:D8:68:0C
Certificate issuer: /CN=8A1E725176BFD9ABDA5CCB7B21A10B8F8DB7D578
Certificate serial: 1A
Authority key identifier: 8A:1E:72:51:76:BF:D9:AB:DA:5C:CB:7B:21:A1:0B:8F:8D:B7:D5:78
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ih5yUXa_2avaXMt7IaELj4231Xg.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/942/2HLQnIqfKRsB2xVziGEPYjfYaAw.roa
Signing time: Thu 06 Apr 2023 02:52:54 +0000
ROA not before: Thu 06 Apr 2023 02:52:54 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 37908
IP address blocks: 118.103.128.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26 (0x1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8A1E725176BFD9ABDA5CCB7B21A10B8F8DB7D578
Validity
Not Before: Apr 6 02:52:54 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=D872D09C8A9F291B01DB157388610F6237D8680C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:05:2d:15:9c:e1:37:d4:77:6b:11:e0:19:50:
de:fc:00:8e:44:2f:6b:d9:09:d4:bc:f7:1a:33:87:
02:59:a3:e9:25:09:1b:40:c3:2a:b1:c3:5d:96:20:
ce:1d:d5:b0:fe:38:df:d0:32:39:00:da:ab:77:78:
76:22:86:6f:70:86:93:a7:04:b0:49:29:63:c4:33:
ae:ee:e4:77:b8:cd:fd:4a:ee:20:a5:6d:2a:66:c6:
5f:99:63:63:76:b0:6b:55:e5:8e:b0:bd:2d:8e:06:
0c:63:5d:03:5f:84:f4:03:07:7d:a2:5b:eb:b4:58:
e6:37:46:0c:b2:92:af:be:ff:5f:6c:cc:5e:11:bb:
61:94:84:87:f8:eb:ac:e0:5f:6a:2c:f9:c7:b2:e8:
bb:da:e7:dd:a5:5b:51:84:ab:d1:ed:68:48:38:0d:
15:99:77:62:cb:83:73:f9:4d:d8:b8:94:89:b0:f2:
a8:da:ed:b3:8f:68:c1:d2:ec:ef:7a:f6:fb:10:12:
30:fc:9f:03:4c:51:97:60:80:07:31:29:96:5d:20:
56:a9:e7:af:b7:ec:48:99:7c:3a:25:f7:d9:89:95:
af:57:cd:0f:b2:dd:b1:9b:1d:e0:b8:6e:c8:a4:88:
a2:20:d2:78:d3:ce:b1:4c:1d:ad:d0:0b:cd:5d:08:
0b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:72:D0:9C:8A:9F:29:1B:01:DB:15:73:88:61:0F:62:37:D8:68:0C
X509v3 Authority Key Identifier:
keyid:8A:1E:72:51:76:BF:D9:AB:DA:5C:CB:7B:21:A1:0B:8F:8D:B7:D5:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/942/ih5yUXa_2avaXMt7IaELj4231Xg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ih5yUXa_2avaXMt7IaELj4231Xg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/942/2HLQnIqfKRsB2xVziGEPYjfYaAw.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
118.103.128.0/21
Signature Algorithm: sha256WithRSAEncryption
6c:fc:3a:20:fe:1b:32:51:c7:cf:17:ec:3d:b9:65:55:ce:06:
1a:77:9a:dd:cb:de:36:9d:7a:68:4a:42:ea:7d:3d:4b:ac:6e:
40:2c:55:10:22:78:76:aa:94:a8:92:f1:b2:f8:f2:ae:8e:73:
d5:29:59:6f:1b:92:ce:f5:96:e8:17:85:5d:ad:c9:d2:ca:7e:
5a:ec:9b:97:e7:0b:ad:08:6f:d0:13:90:8b:34:56:c9:f4:92:
11:aa:e6:ac:e1:c9:51:6d:dc:07:2a:d3:cc:b5:cb:95:6e:9c:
b9:2d:85:2f:3c:cc:98:da:80:d2:8b:49:16:b5:75:76:fd:38:
4d:a6:fa:d0:af:4f:9c:ba:e9:71:27:9e:56:5e:5a:ee:5e:d8:
9f:60:40:dc:be:fb:a8:2d:67:dd:4a:8b:c6:8f:09:3c:23:82:
f9:4f:4a:9f:07:4b:5c:7a:46:6f:90:ba:72:47:5d:5d:07:bc:
dc:55:76:6f:e8:45:d5:38:5d:0a:03:b6:26:f1:23:1f:9c:ef:
17:08:08:d5:89:d3:ce:b2:0d:9f:21:d8:64:e2:65:11:b3:08:
05:4b:0a:af:33:ff:63:7e:39:48:9c:88:96:04:6d:0f:2b:24:
95:49:d6:ab:7e:59:61:bf:be:d7:d0:ba:21:57:4e:a1:3c:99:
c4:23:f3:41
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBGjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4QTFF
NzI1MTc2QkZEOUFCREE1Q0NCN0IyMUExMEI4RjhEQjdENTc4MB4XDTIzMDQwNjAy
NTI1NFoXDTI0MDMxNDAxMzAwMlowMzExMC8GA1UEAxMoRDg3MkQwOUM4QTlGMjkx
QjAxREIxNTczODg2MTBGNjIzN0Q4NjgwQzCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALYFLRWc4TfUd2sR4BlQ3vwAjkQva9kJ1Lz3GjOHAlmj6SUJG0DD
KrHDXZYgzh3VsP4439AyOQDaq3d4diKGb3CGk6cEsEkpY8Qzru7kd7jN/UruIKVt
KmbGX5ljY3awa1XljrC9LY4GDGNdA1+E9AMHfaJb67RY5jdGDLKSr77/X2zMXhG7
YZSEh/jrrOBfaiz5x7Lou9rn3aVbUYSr0e1oSDgNFZl3YsuDc/lN2LiUibDyqNrt
s49owdLs73r2+xASMPyfA0xRl2CABzEpll0gVqnnr7fsSJl8OiX32YmVr1fND7Ld
sZsd4LhuyKSIoiDSeNPOsUwdrdALzV0IC68CAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBTYctCcip8pGwHbFXOIYQ9iN9hoDDAfBgNVHSMEGDAWgBSKHnJRdr/Zq9pcy3sh
oQuPjbfVeDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvOTQyL2loNXlVWGFfMmF2YVhNdDdJYUVMajQyMzFYZy5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2loNXlVWGFfMmF2YVhNdDdJYUVMajQy
MzFYZy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC85NDIvMkhMUW5JcWZLUnNCMnhWemlHRVBZamZZYUF3LnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEA3ZngDANBgkqhkiG9w0BAQsFAAOCAQEAbPw6IP4bMlHHzxfsPbllVc4GGnea
3cveNp16aEpC6n09S6xuQCxVECJ4dqqUqJLxsvjyro5z1SlZbxuSzvWW6BeFXa3J
0sp+Wuybl+cLrQhv0BOQizRWyfSSEarmrOHJUW3cByrTzLXLlW6cuS2FLzzMmNqA
0otJFrV1dv04Tab60K9PnLrpcSeeVl5a7l7Yn2BA3L77qC1n3UqLxo8JPCOC+U9K
nwdLXHpGb5C6ckddXQe83FV2b+hF1ThdCgO2JvEjH5zvFwgI1YnTzrINnyHYZOJl
EbMIBUsKrzP/Y345SJyIlgRtDysklUnWq35ZYb++19C6IVdOoTyZxCPzQQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:15 2024 by rpki-client on console-ams.rpki-client.org