Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/ZzH3-ghZ-CXVKJvFbri_UmbJ2BA.roa
File: ZzH3-ghZ-CXVKJvFbri_UmbJ2BA.roa (raw, json)
Hash identifier: SLcUhrxEc+QblfDhmR2XwzpoWrMKnqrpj/A9f7F0e0o=
Subject key identifier: 67:31:F7:FA:08:59:F8:25:D5:28:9B:C5:6E:B8:BF:52:66:C9:D8:10
Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Certificate serial: 0242
Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/ZzH3-ghZ-CXVKJvFbri_UmbJ2BA.roa
Signing time: Tue 30 May 2023 17:42:32 +0000
ROA not before: Tue 30 May 2023 17:42:32 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 240a:6b:d200::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 578 (0x242)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Validity
Not Before: May 30 17:42:32 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=6731F7FA0859F825D5289BC56EB8BF5266C9D810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:b3:7e:f4:1f:3a:29:20:78:e0:b3:9d:f9:ac:
d2:9c:72:c7:49:3f:b6:47:ab:f7:eb:5d:e7:ee:56:
97:12:35:1a:1e:e0:10:b5:f9:a0:ba:22:a6:18:c6:
96:ef:21:e3:b3:2a:50:df:dc:01:25:6f:a8:6a:81:
d4:ca:2f:75:97:c9:c6:6c:4d:20:0b:cd:3b:09:1f:
87:32:6e:06:63:5e:2d:d9:0f:e2:7c:ea:c5:40:2e:
9a:01:bd:11:c3:5f:af:1b:8e:6a:64:4f:d3:e1:44:
3b:f2:97:90:2a:b7:6b:a6:2d:9d:25:f7:2e:de:ba:
0d:3e:0b:26:c2:c3:f3:14:ac:bd:d9:2a:fc:c8:31:
ed:a6:6b:ad:67:a5:8d:60:e3:c2:4f:e9:0a:22:00:
98:51:dc:66:65:0e:68:e8:15:62:63:bb:df:dd:47:
52:7c:1c:ab:23:07:af:07:4b:71:2e:d4:a9:54:50:
e4:cd:bc:be:19:a3:15:f5:28:d4:bf:28:a8:67:56:
01:c7:e0:22:e4:3f:3d:5f:b2:f8:6a:20:15:10:be:
44:8a:58:e9:43:1a:f3:98:3c:0e:a9:41:fc:85:d7:
c1:aa:5c:88:1c:6f:3e:b7:2d:90:a7:e5:1e:dd:4f:
3f:a9:e2:f9:d0:66:08:ef:19:44:a3:fd:a0:01:27:
51:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:31:F7:FA:08:59:F8:25:D5:28:9B:C5:6E:B8:BF:52:66:C9:D8:10
X509v3 Authority Key Identifier:
keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/ZzH3-ghZ-CXVKJvFbri_UmbJ2BA.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
240a:6b:d200::/40
Signature Algorithm: sha256WithRSAEncryption
ca:3b:0d:8c:67:e2:35:83:9a:d2:53:e1:97:bc:db:ce:6a:50:
b3:a5:2f:a9:b1:c9:73:ab:62:f2:93:9e:67:08:ec:1a:e2:eb:
25:64:24:0c:8b:ea:81:dc:dd:c6:a5:4c:74:b5:49:97:43:d4:
a7:7f:ec:a3:64:c5:1e:8d:41:dc:f7:64:df:56:71:cc:43:05:
3f:ea:ba:05:bd:98:b0:dd:f0:1a:51:e3:7a:c5:09:59:a7:00:
85:74:36:11:55:ba:8e:c7:19:5a:39:44:4d:7a:7b:c5:c1:7d:
3f:6f:ac:02:90:22:57:f4:ad:1d:74:8b:23:90:06:4f:0c:78:
07:21:ef:8a:6e:0c:9e:0a:39:17:17:84:11:20:d0:f1:e2:f0:
2d:45:74:37:07:17:3f:40:2c:37:46:2a:e2:48:2b:12:66:34:
b5:be:22:6a:94:a1:6e:9a:7a:b2:46:28:f9:f1:d1:3c:b5:9c:
36:1d:cf:fe:b9:cf:d4:2f:aa:bb:5d:3d:71:41:29:bb:6d:6f:
01:1e:a3:af:b3:a4:b1:31:ee:2a:e0:cd:a2:44:71:9f:fd:54:
fd:6e:cb:1e:70:3d:34:04:56:18:fa:4d:26:43:5c:8b:64:01:
71:ae:97:e9:48:5e:cb:23:99:de:7a:73:ed:8d:d3:8f:c6:22:
74:74:7c:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:57 2024 by rpki-client on console-ams.rpki-client.org