Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/aA2pzcuV3uCBuTJOxAPUm9sGWSA.roa
File: aA2pzcuV3uCBuTJOxAPUm9sGWSA.roa (raw, json)
Hash identifier: J957I0JLt+hY04WtpxZB+dVQ5SRwjq8RCrgVRG3ktmc=
Subject key identifier: 68:0D:A9:CD:CB:95:DE:E0:81:B9:32:4E:C4:03:D4:9B:DB:06:59:20
Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Certificate serial: 011B
Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/aA2pzcuV3uCBuTJOxAPUm9sGWSA.roa
Signing time: Tue 30 May 2023 16:14:20 +0000
ROA not before: Tue 30 May 2023 16:14:20 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 240a:6b:f200::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 283 (0x11b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Validity
Not Before: May 30 16:14:20 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=680DA9CDCB95DEE081B9324EC403D49BDB065920
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:54:1a:48:96:d0:71:0c:eb:03:3c:3d:04:aa:
02:8f:29:cb:b4:ba:c8:03:18:6c:c8:47:b9:7f:85:
cc:f6:10:a2:fb:a7:e3:64:3e:91:bf:f7:bc:d7:28:
1c:07:45:c3:ad:e1:bf:92:fa:c4:fa:bd:b2:72:2d:
7a:1b:13:8d:f0:4d:23:fc:ca:3a:de:32:06:39:b0:
5d:bd:03:7b:74:23:db:97:f1:d4:9c:81:77:d8:e3:
85:3a:13:d2:83:45:01:84:12:5a:c5:1d:ee:24:32:
86:eb:63:6a:f4:f0:e7:d2:50:2b:42:55:e8:e9:21:
ec:00:7a:b3:37:bb:e3:9e:80:d9:6a:ed:60:a5:b9:
f1:8c:f3:08:f6:32:5d:d9:be:fd:72:14:04:aa:10:
a5:b6:f1:d6:79:33:c4:1b:25:b6:34:11:48:6c:fa:
ef:26:48:63:6d:98:1d:be:5b:e0:64:ff:77:ed:9e:
83:f4:06:90:64:66:d3:74:2c:c0:7b:8c:95:00:58:
a2:ac:8f:c0:91:33:b9:93:76:42:c9:6d:14:67:d2:
86:0c:cd:24:98:c7:ab:c9:52:13:85:aa:3b:2e:5c:
7e:29:87:92:08:e5:ac:7e:7c:e6:81:74:ab:16:4a:
8c:56:45:67:9c:7a:c3:c3:da:d5:a1:43:78:21:e4:
e2:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:0D:A9:CD:CB:95:DE:E0:81:B9:32:4E:C4:03:D4:9B:DB:06:59:20
X509v3 Authority Key Identifier:
keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/aA2pzcuV3uCBuTJOxAPUm9sGWSA.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
240a:6b:f200::/40
Signature Algorithm: sha256WithRSAEncryption
05:03:8f:eb:9c:7f:73:2c:c3:aa:97:66:be:36:80:b0:ea:e5:
69:44:66:8b:a9:4b:1a:5d:ee:d6:d7:9c:46:4c:c2:c0:c1:52:
85:12:05:af:fb:a5:00:8f:7f:05:12:51:64:4e:b3:21:02:d0:
71:cf:5a:ca:03:75:3f:b7:c5:ff:22:c9:fd:47:d1:bc:aa:b6:
60:46:a5:52:69:a1:f3:e4:d4:b2:fe:2f:99:2d:51:c9:00:b2:
f4:16:36:47:4b:83:40:57:b7:1f:51:f1:20:01:b3:ab:7a:73:
b1:e7:68:10:51:6f:aa:2c:e6:02:7c:b2:0c:1c:1a:de:fd:ef:
5e:27:d6:60:c1:96:51:32:9a:1d:86:7e:eb:41:a8:ab:0f:31:
72:94:95:f6:74:cd:6d:87:a4:bd:77:1d:31:d0:07:2d:3a:4a:
af:66:4f:30:1b:24:19:84:6a:fa:2e:14:86:e8:0f:62:f9:71:
9a:c7:78:7e:9c:30:73:21:ec:11:08:86:f3:73:2e:54:b0:d6:
22:33:7f:fb:86:4e:b3:d4:aa:4a:a3:7c:45:5e:e0:3e:b9:bb:
14:71:6c:20:c6:3d:46:60:09:c0:9f:ae:2d:ce:08:cc:54:f2:
ca:af:93:8f:ef:5a:ea:a4:96:d8:87:53:b2:a5:7f:28:c1:6a:
5c:4c:63:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:50 2024 by rpki-client on console-fra.rpki-client.org