Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/IQHSi973gQqMp0yzXjVnzPphJgU.roa
File: IQHSi973gQqMp0yzXjVnzPphJgU.roa (raw, json)
Hash identifier: Jrj3hULH/SLlZzbBpdhtCqnSvzjtg4b9XFttivNmJtM=
Subject key identifier: 21:01:D2:8B:DE:F7:81:0A:8C:A7:4C:B3:5E:35:67:CC:FA:61:26:05
Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Certificate serial: 0203
Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/IQHSi973gQqMp0yzXjVnzPphJgU.roa
Signing time: Tue 30 May 2023 17:40:23 +0000
ROA not before: Tue 30 May 2023 17:40:23 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 240a:6b:ce00::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 515 (0x203)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Validity
Not Before: May 30 17:40:23 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=2101D28BDEF7810A8CA74CB35E3567CCFA612605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:44:16:28:b1:6e:f4:5b:75:ca:c8:a5:83:f5:
6c:32:b9:67:5b:d7:db:0e:1d:28:07:06:0c:a0:6e:
9a:75:d6:63:17:3d:97:c0:9f:fb:fb:1d:6b:af:38:
25:7c:09:20:01:bf:7b:64:41:4b:75:92:72:1f:28:
f7:f5:42:18:04:84:dc:fa:28:42:5e:9f:11:2a:a9:
9d:91:81:78:58:54:48:10:a5:e7:79:de:b7:68:7c:
f4:fb:71:0d:82:1e:48:c0:4f:29:3c:1f:e3:cb:a4:
1c:9b:64:f8:db:7f:bf:3f:11:c2:95:86:33:ed:ed:
7f:43:87:52:7e:90:23:ab:e5:4d:7e:e6:3f:3c:37:
99:80:0e:a6:d6:b7:59:1e:8b:61:5d:80:96:16:b4:
1b:80:2f:5e:f8:b1:68:61:11:ed:36:c3:0e:a2:83:
ea:22:4b:b6:1a:de:85:b5:85:36:84:4d:f5:80:e1:
d6:31:bf:db:62:13:65:9b:d8:5a:28:56:ee:dc:af:
50:28:2d:08:92:c7:74:ef:87:5a:6b:e1:ad:86:22:
eb:52:63:08:5d:59:7f:c3:64:b6:0a:55:b0:6a:6f:
a8:a3:2f:d4:02:77:ca:47:8c:0b:96:da:99:11:2c:
8e:e7:a3:0d:32:24:21:51:68:a2:ce:c9:20:c6:ff:
8a:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:01:D2:8B:DE:F7:81:0A:8C:A7:4C:B3:5E:35:67:CC:FA:61:26:05
X509v3 Authority Key Identifier:
keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/IQHSi973gQqMp0yzXjVnzPphJgU.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
240a:6b:ce00::/40
Signature Algorithm: sha256WithRSAEncryption
09:fd:03:75:48:e1:26:59:f0:9b:a2:79:7a:4a:d8:7d:9e:47:
ac:e0:95:24:7f:bf:09:c4:a3:44:ef:8c:92:3f:04:9d:38:cc:
e9:8e:cd:49:3b:b2:7d:13:ba:f5:92:6a:2e:bd:9c:aa:48:79:
7f:2b:18:f1:fa:c2:2e:e9:5d:e1:32:73:fa:d9:24:b6:cc:88:
4e:14:f9:34:bd:fe:40:53:0e:93:85:e6:ce:cd:01:98:8f:5e:
32:62:d7:38:06:4e:61:05:02:cd:ca:75:aa:b2:65:0c:8c:bd:
94:00:c0:ae:fc:1b:2f:a9:3f:0a:78:bb:b4:05:96:34:f3:a8:
8f:8a:fe:b9:93:f3:1e:20:76:f2:7e:54:51:6a:40:38:2b:75:
24:bf:a9:08:d7:d6:f1:18:64:cd:ad:ec:ea:ed:28:df:5a:45:
a9:21:36:d2:dc:b1:c3:24:f7:ac:3e:b3:fa:48:2e:7e:7f:a9:
ef:1f:e1:c3:ec:49:99:93:4b:45:a4:3f:44:2d:e9:8e:cb:87:
20:79:a0:83:d5:ec:a6:86:16:b7:17:e1:9f:4b:b9:37:01:15:
0f:90:4f:b9:07:5c:72:31:58:1d:f6:7a:2d:dc:e1:34:13:37:
07:74:2d:fe:71:30:2a:ca:bb:4d:34:dd:7a:2c:53:cf:f4:0c:
2b:fc:bb:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:57 2024 by rpki-client on console-ams.rpki-client.org