Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/Bns5Iy6AGqzl1Fxu-iP-OUVJ3bs.roa
File: Bns5Iy6AGqzl1Fxu-iP-OUVJ3bs.roa (raw, json)
Hash identifier: 9nMsTWkjphaApD/b4+Ucvzg1R0WeBs1GPs+C55rp7tA=
Subject key identifier: 06:7B:39:23:2E:80:1A:AC:E5:D4:5C:6E:FA:23:FE:39:45:49:DD:BB
Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Certificate serial: 0238
Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/Bns5Iy6AGqzl1Fxu-iP-OUVJ3bs.roa
Signing time: Tue 30 May 2023 17:42:27 +0000
ROA not before: Tue 30 May 2023 17:42:27 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 240a:6b:8b00::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 568 (0x238)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Validity
Not Before: May 30 17:42:27 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=067B39232E801AACE5D45C6EFA23FE394549DDBB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:f8:01:23:61:70:a7:7a:f2:1b:64:d6:74:9a:
09:e0:88:ae:dc:e7:ad:65:83:8b:21:d0:ad:1b:f4:
d4:36:44:8d:1c:e7:7b:ca:c5:96:54:91:c6:91:92:
0d:41:70:ee:3b:d0:76:3d:09:fe:cd:dc:0c:99:36:
84:56:48:64:62:a3:8e:fb:b1:80:a5:82:21:57:c7:
96:7c:9f:a3:a7:f0:b2:13:e9:4a:c5:01:70:c7:de:
31:2e:9a:45:2b:4f:6d:70:26:cd:db:b0:64:1d:8d:
a9:70:35:9c:5b:05:04:42:ef:88:59:72:d8:4a:3d:
6f:66:e5:fa:93:1f:1f:35:82:c4:f0:21:1f:76:c9:
55:c6:c1:8b:61:8e:3c:61:bd:38:e8:7c:54:e3:ed:
44:95:ec:15:4c:c9:cb:71:9b:1c:44:46:78:eb:af:
6a:e4:95:0f:5f:1c:cf:14:c1:a4:04:70:c8:46:c2:
bb:8b:10:da:07:d9:9c:95:00:b4:23:73:69:79:81:
9e:88:36:8c:46:e4:09:58:7b:69:29:41:e3:af:de:
f8:8e:c4:bc:a7:e3:b9:18:33:6f:fc:be:2f:6e:0d:
03:35:f5:69:05:61:43:8d:71:91:f5:c2:ca:70:ad:
91:1a:72:e8:f4:a3:e4:86:14:36:1a:03:03:3d:b0:
e1:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:7B:39:23:2E:80:1A:AC:E5:D4:5C:6E:FA:23:FE:39:45:49:DD:BB
X509v3 Authority Key Identifier:
keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/Bns5Iy6AGqzl1Fxu-iP-OUVJ3bs.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
240a:6b:8b00::/40
Signature Algorithm: sha256WithRSAEncryption
a5:c2:ff:2f:8a:b4:c0:e9:ae:e3:01:e1:b7:7b:37:2d:58:57:
dd:11:7e:9d:5d:a1:66:db:c5:2b:71:4f:66:25:d6:ec:51:4a:
f7:cf:e2:85:ae:98:2d:18:31:09:5d:f7:3f:0f:fb:81:ca:fd:
23:b6:5a:03:b6:24:17:b0:15:e7:d0:1a:a8:b1:56:a3:3e:c2:
d6:e2:c0:94:6c:7e:cf:fc:86:f8:0a:7a:2e:a2:c5:e5:85:fd:
b3:9e:01:1b:a7:06:c3:bb:2d:4f:92:68:dc:48:0a:b2:eb:76:
da:1a:f6:fe:49:7b:3d:32:03:87:bd:86:60:57:68:b8:0f:48:
b6:c5:f7:dc:16:46:cc:e3:70:37:a2:4a:e3:90:87:49:23:9a:
0c:67:a3:35:36:63:32:7d:f2:e9:40:23:a0:0e:23:54:88:89:
bb:87:9c:8b:89:e4:5b:92:4a:04:3f:c5:76:4c:2f:76:9f:a3:
44:c6:24:65:2b:48:92:b6:ec:4a:a9:51:44:7b:09:fe:0d:1c:
26:89:ac:a5:93:2e:5e:4e:f8:0a:70:1a:95:c5:d4:eb:26:42:
f6:ee:ab:70:e3:dc:d4:ce:bc:c5:a4:01:14:9e:3e:b2:bc:2f:
af:d1:c1:2d:0e:32:e9:24:a3:ab:5f:4b:ef:e8:12:9d:a5:f6:
47:52:4e:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:29:08 2025 by rpki-client