Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/11207/KtcgH8Mh3oh7vyocJ9zvE_zKEkY.roa
File: KtcgH8Mh3oh7vyocJ9zvE_zKEkY.roa (raw, json)
Hash identifier: 8G/T5DXzrAET74pRYxBhrNhKQ4oOFLR10eeCWF5kQGg=
Subject key identifier: 2A:D7:20:1F:C3:21:DE:88:7B:BF:2A:1C:27:DC:EF:13:FC:CA:12:46
Certificate issuer: /CN=B79C47CD54D327D3C1777CF5E41F162C9876BB65
Certificate serial: 41
Authority key identifier: B7:9C:47:CD:54:D3:27:D3:C1:77:7C:F5:E4:1F:16:2C:98:76:BB:65
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/t5xHzVTTJ9PBd3z15B8WLJh2u2U.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11207/KtcgH8Mh3oh7vyocJ9zvE_zKEkY.roa
Signing time: Thu 13 Apr 2023 09:52:36 +0000
ROA not before: Thu 13 Apr 2023 09:52:36 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 55391
IP address blocks: 103.2.248.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65 (0x41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B79C47CD54D327D3C1777CF5E41F162C9876BB65
Validity
Not Before: Apr 13 09:52:36 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=2AD7201FC321DE887BBF2A1C27DCEF13FCCA1246
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:57:82:d9:63:9b:56:08:9a:a1:6b:40:f4:8d:
22:1a:ae:56:81:19:13:9a:36:67:c1:58:b3:bf:61:
81:b5:7a:fc:12:1d:26:f8:bb:ff:8c:79:5e:10:cb:
5b:18:ba:df:01:b2:6c:38:96:a5:4c:07:d3:95:42:
cc:17:ad:8d:71:9e:5b:e0:aa:18:ef:0e:10:4d:d7:
38:bf:31:af:b4:9d:89:e8:36:5a:d7:c3:f4:10:45:
63:7b:57:05:1e:3e:8a:9c:5f:62:35:e8:04:54:0a:
91:0e:9b:4e:37:f9:eb:b6:4f:ba:29:db:2b:12:57:
f9:9e:1b:dd:65:10:5a:58:18:93:0f:14:35:64:6a:
00:11:7b:71:fd:c0:07:e4:3b:b3:98:48:51:1a:bd:
36:49:60:98:97:41:62:78:f9:35:e9:f7:f6:17:bf:
2d:45:7f:1a:8c:94:f8:f2:cd:5e:74:a3:b2:ed:76:
5c:45:e0:30:5a:ef:96:2b:f7:f6:78:15:73:99:a7:
51:ec:43:7a:c6:1f:ef:a8:db:76:33:4b:b1:b1:af:
d8:7b:6e:4e:f4:bf:30:c8:3d:60:d2:98:0f:4b:a5:
55:71:ac:24:00:a0:52:77:ad:72:38:de:b6:5b:d3:
e2:af:d8:d7:e8:8d:4c:0f:63:0c:ed:90:ad:51:b1:
b2:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:D7:20:1F:C3:21:DE:88:7B:BF:2A:1C:27:DC:EF:13:FC:CA:12:46
X509v3 Authority Key Identifier:
keyid:B7:9C:47:CD:54:D3:27:D3:C1:77:7C:F5:E4:1F:16:2C:98:76:BB:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11207/t5xHzVTTJ9PBd3z15B8WLJh2u2U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/t5xHzVTTJ9PBd3z15B8WLJh2u2U.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11207/KtcgH8Mh3oh7vyocJ9zvE_zKEkY.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.2.248.0/22
Signature Algorithm: sha256WithRSAEncryption
59:9f:dc:ea:9f:ae:2a:0d:94:e6:97:ea:45:6d:7b:3b:a6:80:
2b:d6:6a:0d:80:b6:53:3e:1d:e5:ca:51:cd:e7:f1:7b:a9:3c:
d6:ca:47:ad:2c:83:35:9e:59:5b:9e:ed:4d:d1:81:56:7b:c0:
25:77:e9:71:00:98:0f:f1:8e:e1:c2:69:1e:2f:61:b5:6b:2e:
e6:e4:0e:c5:a3:2a:3c:f3:6f:5f:a3:a3:4c:6d:97:19:6e:05:
ba:a0:72:c3:50:16:5b:8d:45:b2:78:ef:e7:81:7d:9c:44:b9:
30:55:b8:c3:df:41:64:f4:d4:c0:0c:e2:29:30:e4:2d:5b:6e:
bf:66:e6:91:17:12:75:21:42:62:6f:01:b9:be:67:5b:80:c5:
be:98:de:94:7f:fa:dc:9c:fc:50:cd:23:93:f4:9a:49:46:f1:
b5:42:4a:0f:bd:e2:a4:70:6a:ea:27:cd:ff:ba:70:90:6c:9f:
be:f1:3b:72:d5:35:d6:0a:35:cd:c2:26:ad:d6:29:54:32:73:
c6:26:79:18:39:be:81:1c:13:99:04:0f:56:05:b9:ba:8b:b8:
bf:bc:79:63:84:18:82:30:49:c1:8e:b2:f2:50:ab:5c:cb:54:
91:24:b8:59:30:2c:b8:8f:c6:55:f6:f7:08:6f:9c:22:11:af:
d5:5b:5e:d7
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgIBQTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCNzlD
NDdDRDU0RDMyN0QzQzE3NzdDRjVFNDFGMTYyQzk4NzZCQjY1MB4XDTIzMDQxMzA5
NTIzNloXDTI0MDMxNDAxMzAwMlowMzExMC8GA1UEAxMoMkFENzIwMUZDMzIxREU4
ODdCQkYyQTFDMjdEQ0VGMTNGQ0NBMTI0NjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAL1Xgtljm1YImqFrQPSNIhquVoEZE5o2Z8FYs79hgbV6/BIdJvi7
/4x5XhDLWxi63wGybDiWpUwH05VCzBetjXGeW+CqGO8OEE3XOL8xr7Sdieg2WtfD
9BBFY3tXBR4+ipxfYjXoBFQKkQ6bTjf567ZPuinbKxJX+Z4b3WUQWlgYkw8UNWRq
ABF7cf3AB+Q7s5hIURq9NklgmJdBYnj5Nen39he/LUV/GoyU+PLNXnSjsu12XEXg
MFrvliv39ngVc5mnUexDesYf76jbdjNLsbGv2HtuTvS/MMg9YNKYD0ulVXGsJACg
UnetcjjetlvT4q/Y1+iNTA9jDO2QrVGxsq0CAwEAAaOCAigwggIkMB0GA1UdDgQW
BBQq1yAfwyHeiHu/Khwn3O8T/MoSRjAfBgNVHSMEGDAWgBS3nEfNVNMn08F3fPXk
HxYsmHa7ZTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb
oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMTEyMDcvdDV4SHpWVFRKOVBCZDN6MTVCOFdMSmgydTJVLmNybDBtBggr
BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5
Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdDV4SHpWVFRKOVBCZDN6MTVCOFdM
SmgydTJVLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG
CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv
QTkxQTczODEwMDAwLzExMjA3L0t0Y2dIOE1oM29oN3Z5b2NKOXp2RV96S0VrWS5y
b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q
cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE
AgABMAYDBAJnAvgwDQYJKoZIhvcNAQELBQADggEBAFmf3OqfrioNlOaX6kVtezum
gCvWag2AtlM+HeXKUc3n8XupPNbKR60sgzWeWVue7U3RgVZ7wCV36XEAmA/xjuHC
aR4vYbVrLubkDsWjKjzzb1+jo0xtlxluBbqgcsNQFluNRbJ47+eBfZxEuTBVuMPf
QWT01MAM4ikw5C1bbr9m5pEXEnUhQmJvAbm+Z1uAxb6Y3pR/+tyc/FDNI5P0mklG
8bVCSg+94qRwauonzf+6cJBsn77xO3LVNdYKNc3CJq3WKVQyc8YmeRg5voEcE5kE
D1YFubqLuL+8eWOEGIIwScGOsvJQq1zLVJEkuFkwLLiPxlX29whvnCIRr9VbXtc=
-----END CERTIFICATE-----
Generated at Sat Apr 26 20:38:59 2025 by rpki-client