Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/3xCMwU7k1B0A9Q3vN0ujYnmksCU.roa
File: 3xCMwU7k1B0A9Q3vN0ujYnmksCU.roa (raw, json)
Hash identifier: sBr00vYUtvBLOlUZalQ0Z3vH4RLT8+8i/ie+Nsil2bM=
Subject key identifier: DF:10:8C:C1:4E:E4:D4:1D:00:F5:0D:EF:37:4B:A3:62:79:A4:B0:25
Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Certificate serial: 0127
Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/3xCMwU7k1B0A9Q3vN0ujYnmksCU.roa
Signing time: Tue 30 May 2023 17:29:55 +0000
ROA not before: Tue 30 May 2023 17:29:55 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 240a:6b:800::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 295 (0x127)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Validity
Not Before: May 30 17:29:55 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=DF108CC14EE4D41D00F50DEF374BA36279A4B025
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:11:a0:83:ac:f3:4e:f8:5f:1d:83:a6:32:95:
e5:77:0c:6e:22:e5:4d:cc:f3:41:da:65:82:90:47:
8d:00:1b:a5:23:86:2f:6e:78:8d:db:23:cd:ce:cb:
cd:ee:89:ce:3e:45:e9:e9:5f:39:19:fc:96:74:ac:
91:4e:05:01:0d:61:83:11:df:c5:c2:b8:bd:f4:83:
6c:ad:1d:ae:d0:42:be:6e:c6:01:fd:3c:cd:33:4a:
14:b9:e3:1d:46:af:b1:e9:a1:80:bd:6a:9b:1e:39:
fc:fc:86:94:02:fc:a8:e3:16:45:fa:6f:09:fa:ba:
81:6c:07:0d:38:c6:2f:57:63:53:2b:87:bd:c8:46:
c6:d0:ca:2b:6f:b3:8a:99:d9:31:f0:6d:c0:3f:01:
7f:f7:c0:f6:cc:26:38:14:1c:3e:a5:5b:2d:9a:66:
34:fd:db:1c:7c:06:9e:d1:f2:1c:b5:e9:71:e5:51:
2b:99:b6:bd:62:65:4f:35:a1:e5:9b:1b:a3:1b:f0:
08:b0:6d:6a:c5:f1:5b:54:13:e4:0c:fb:a0:1d:ad:
bf:0f:ee:dd:72:5c:b7:a3:07:85:64:d4:9a:9a:26:
55:1d:2c:4a:84:b1:aa:36:c9:f9:78:43:18:5b:14:
ee:44:65:05:93:13:08:dd:b7:03:9d:fd:4e:84:b8:
e5:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:10:8C:C1:4E:E4:D4:1D:00:F5:0D:EF:37:4B:A3:62:79:A4:B0:25
X509v3 Authority Key Identifier:
keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/3xCMwU7k1B0A9Q3vN0ujYnmksCU.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
240a:6b:800::/40
Signature Algorithm: sha256WithRSAEncryption
54:07:be:d7:00:eb:5a:3f:f6:ed:bc:4e:09:20:23:50:28:17:
b0:a4:e7:88:37:05:09:5a:8d:85:8a:10:7e:db:f8:4f:b5:8d:
1d:fa:0e:60:ef:85:1d:dd:db:0f:39:80:ce:3a:35:16:33:f4:
3c:a4:03:fe:1b:c1:65:4a:11:d2:02:d8:72:65:49:af:a7:e3:
fd:48:f5:e8:ad:94:2b:56:9b:9c:89:f6:2d:ed:a3:32:9c:81:
38:ad:6f:cf:68:05:65:8a:b0:6f:f9:37:52:96:c9:78:b3:0b:
a2:a8:ea:a3:46:fa:df:99:b8:e7:86:ac:a7:a0:9e:b4:9b:69:
13:b8:87:13:0b:19:f8:a3:ea:8a:d3:a6:98:dd:a2:70:7d:1f:
22:b3:b9:19:a4:f3:13:df:17:60:43:e4:48:b5:d8:ed:d1:90:
ff:a8:4d:48:f8:d2:ed:03:d6:10:91:e2:79:c0:6d:c6:21:9b:
eb:29:62:6c:c1:b0:f8:fe:0f:ef:4d:3c:fe:c4:e7:c9:04:16:
8b:51:49:aa:a8:b3:a0:63:9b:75:cb:23:c7:01:f5:4c:91:c5:
86:46:a3:17:61:dd:ab:54:27:d0:ca:a8:6a:5c:a1:51:1f:2f:
f1:5b:0c:03:8c:dc:1c:eb:6b:47:ad:40:8b:e6:eb:11:51:3c:
e0:d6:f8:cd
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgICAScwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy
NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yMzA1MzAx
NzI5NTVaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKERGMTA4Q0MxNEVFNEQ0
MUQwMEY1MERFRjM3NEJBMzYyNzlBNEIwMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCxEaCDrPNO+F8dg6YyleV3DG4i5U3M80HaZYKQR40AG6Ujhi9u
eI3bI83Oy83uic4+RenpXzkZ/JZ0rJFOBQENYYMR38XCuL30g2ytHa7QQr5uxgH9
PM0zShS54x1Gr7HpoYC9apseOfz8hpQC/KjjFkX6bwn6uoFsBw04xi9XY1Mrh73I
RsbQyitvs4qZ2THwbcA/AX/3wPbMJjgUHD6lWy2aZjT92xx8Bp7R8hy16XHlUSuZ
tr1iZU81oeWbG6Mb8AiwbWrF8VtUE+QM+6Adrb8P7t1yXLejB4Vk1JqaJlUdLEqE
sao2yfl4QxhbFO5EZQWTEwjdtwOd/U6EuOWNAgMBAAGjggIqMIICJjAdBgNVHQ4E
FgQU3xCMwU7k1B0A9Q3vN0ujYnmksCUwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7
BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g
W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI
KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y
eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt
WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj
BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw
L0E5MUE3MzgxMDAwMC8zMDEyOS8zeENNd1U3azFCMEE5UTN2TjB1allubWtzQ1Uu
cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu
anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO
BAIAAjAIAwYAJAoAawgwDQYJKoZIhvcNAQELBQADggEBAFQHvtcA61o/9u28Tgkg
I1AoF7Ck54g3BQlajYWKEH7b+E+1jR36DmDvhR3d2w85gM46NRYz9DykA/4bwWVK
EdIC2HJlSa+n4/1I9eitlCtWm5yJ9i3tozKcgTitb89oBWWKsG/5N1KWyXizC6Ko
6qNG+t+ZuOeGrKegnrSbaRO4hxMLGfij6orTppjdonB9HyKzuRmk8xPfF2BD5Ei1
2O3RkP+oTUj40u0D1hCR4nnAbcYhm+spYmzBsPj+D+9NPP7E58kEFotRSaqos6Bj
m3XLI8cB9UyRxYZGoxdh3atUJ9DKqGpcoVEfL/FbDAOM3Bzra0etQIvm6xFRPODW
+M0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:49 2024 by rpki-client on console-fra.rpki-client.org