Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/ST5xotoXaWV23Tvog-gRtch53U8.roa
File: ST5xotoXaWV23Tvog-gRtch53U8.roa (raw, json)
Hash identifier: M9cNp+74+gMmj7x4ymUxahT+VNnlDhi+O+KqMdxHL2M=
Subject key identifier: 49:3E:71:A2:DA:17:69:65:76:DD:3B:E8:83:E8:11:B5:C8:79:DD:4F
Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Certificate serial: 01BB
Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/ST5xotoXaWV23Tvog-gRtch53U8.roa
Signing time: Tue 30 May 2023 17:36:32 +0000
ROA not before: Tue 30 May 2023 17:36:32 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 240a:6b:8700::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 443 (0x1bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Validity
Not Before: May 30 17:36:32 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=493E71A2DA17696576DD3BE883E811B5C879DD4F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c7:96:28:b1:15:bc:3b:90:05:a4:2b:c0:eb:
c2:a8:6e:5a:12:92:27:e0:4f:3b:24:fa:e5:58:cf:
89:1e:21:52:8e:ce:fc:9f:62:df:6d:bf:d0:fd:04:
84:0f:e0:d3:05:2e:f0:07:ae:c7:66:a0:8a:48:5e:
e9:a9:84:5f:41:4d:4a:8d:c5:96:ad:54:36:40:e9:
d2:40:62:41:e5:f2:28:88:18:54:33:e6:2f:90:53:
4e:ee:1a:c4:13:18:b3:45:42:08:75:ee:32:02:b6:
e0:15:17:2e:c4:d0:87:8f:ac:48:fa:4a:35:8a:48:
70:05:88:14:7f:80:d4:30:d8:01:c9:e4:d0:90:f6:
30:00:f4:93:e2:4c:db:0c:8f:b7:fe:6f:c8:3c:4c:
f1:1c:fb:ac:8d:f5:3d:b1:56:1f:35:e7:25:ce:27:
bf:39:3a:da:50:b1:77:42:4c:66:7e:b6:28:33:7c:
ca:5a:7a:69:a1:f1:61:35:f3:ad:4b:2c:51:62:43:
8f:9d:e2:f7:67:a5:1b:2c:86:80:01:ae:65:53:5e:
fc:9e:2a:87:55:f8:ef:8f:b8:1f:da:63:4c:33:ed:
f4:5f:e6:4d:e0:a9:02:22:d8:df:8e:75:e6:37:28:
99:78:6a:05:c4:a3:df:81:f1:2f:a8:b2:ba:4e:4a:
0b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:3E:71:A2:DA:17:69:65:76:DD:3B:E8:83:E8:11:B5:C8:79:DD:4F
X509v3 Authority Key Identifier:
keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/ST5xotoXaWV23Tvog-gRtch53U8.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
240a:6b:8700::/40
Signature Algorithm: sha256WithRSAEncryption
81:1e:3c:35:a9:77:50:97:bf:3f:f2:7b:fa:67:3d:a3:2c:f4:
c6:fc:75:38:99:fc:49:e5:96:d2:9f:98:2e:24:d6:cb:69:b2:
5a:ff:2f:63:60:32:72:ca:7f:07:38:9d:43:34:75:56:49:a1:
48:0f:83:8d:cb:54:f6:c5:78:64:3e:7e:5d:d9:99:20:53:3f:
19:d1:2c:09:16:44:94:9d:1f:3e:3a:a3:86:9e:53:17:96:3c:
87:f0:2d:8f:99:df:c1:63:48:6e:13:bd:f8:ef:c9:84:d8:14:
af:2d:c3:fc:df:8b:34:17:b6:2c:15:b5:7c:9c:4e:7d:a5:d8:
22:01:bc:61:64:79:74:45:8a:ab:dd:7c:03:0c:43:db:4f:f9:
fc:15:47:79:5b:04:5e:3a:79:ba:f7:e8:bd:9f:f8:6e:cf:eb:
15:30:dc:25:11:7a:3a:6b:51:f5:3d:7c:d8:77:54:b0:7b:6d:
a2:fd:ca:ed:9f:0b:69:ce:9b:a6:cd:ab:57:3a:73:ad:37:16:
3a:d0:56:a2:a2:9b:a4:6e:16:98:66:7b:3a:6d:4e:66:7b:7a:
fc:62:d8:62:7c:f7:47:66:1e:3e:06:76:e0:9a:db:6f:e7:a8:
d7:78:fb:f2:5e:34:93:89:fe:fe:d3:07:84:c9:b7:1d:47:00:
98:0a:83:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:57 2024 by rpki-client on console-ams.rpki-client.org