Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/kdvzB0x60NBaRazPc60AmpNXlBw.roa
File: kdvzB0x60NBaRazPc60AmpNXlBw.roa (raw, json)
Hash identifier: Qzb7TTW4FDnLWpuSTK2IROFd8eos3KQrGsQZxOkZMFo=
Subject key identifier: 91:DB:F3:07:4C:7A:D0:D0:5A:45:AC:CF:73:AD:00:9A:93:57:94:1C
Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Certificate serial: 01E5
Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/kdvzB0x60NBaRazPc60AmpNXlBw.roa
Signing time: Tue 30 May 2023 17:38:29 +0000
ROA not before: Tue 30 May 2023 17:38:29 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 240a:6b:fb00::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 485 (0x1e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Validity
Not Before: May 30 17:38:29 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=91DBF3074C7AD0D05A45ACCF73AD009A9357941C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e9:af:eb:93:d2:e9:76:c5:83:6a:3e:75:f2:
0d:7a:0b:5f:6c:fc:1a:ea:10:9d:49:4c:3e:62:7b:
e7:3b:ba:0e:3b:62:cb:1c:81:f3:2f:72:e1:56:12:
5c:bd:c1:9c:23:b8:67:a4:4a:8e:96:9c:48:d8:54:
e1:e9:d5:72:5e:9c:05:95:ce:73:a3:d2:9c:88:10:
99:b5:b3:9a:5f:a5:ff:87:cb:0d:84:fd:fb:d0:de:
91:91:de:63:f1:af:34:dd:85:20:37:3e:d9:09:37:
42:1c:e7:b2:fc:9e:9b:2e:e5:41:29:10:ee:9f:fb:
99:43:1c:0b:1c:37:d3:e8:ea:80:1e:ff:0d:8e:66:
fd:e5:54:9c:77:52:6b:6e:4e:c6:8f:f4:5e:7e:f2:
47:f9:9d:ce:fb:e1:47:5c:7b:97:4a:75:58:89:5a:
83:cf:ff:37:7e:81:22:a8:de:10:81:3a:b3:20:fb:
9a:80:79:e7:cd:f7:d3:f6:ef:fc:cd:85:0f:ca:8e:
4f:e1:08:07:5b:6d:96:f0:51:76:95:a6:ae:66:44:
3e:f1:90:a5:95:32:d9:ee:cb:76:81:7e:48:ee:0d:
a6:3f:36:92:dc:1a:19:3e:fc:bf:23:0c:a2:a7:3b:
87:de:a7:18:f0:a2:52:1f:7a:56:f9:dc:10:80:3a:
36:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:DB:F3:07:4C:7A:D0:D0:5A:45:AC:CF:73:AD:00:9A:93:57:94:1C
X509v3 Authority Key Identifier:
keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/kdvzB0x60NBaRazPc60AmpNXlBw.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
240a:6b:fb00::/40
Signature Algorithm: sha256WithRSAEncryption
bf:9e:eb:5f:cc:7c:ef:33:24:33:ff:e2:56:09:6d:65:23:e1:
a0:53:3d:45:82:ee:e3:bf:a3:3e:d5:1f:0d:b1:62:52:c1:b1:
d4:52:af:30:5a:ba:ee:7d:f4:02:bf:49:9f:5f:97:22:50:34:
24:9e:60:eb:53:49:60:58:ad:f1:b4:f6:df:2d:0d:bf:d1:91:
c9:9b:fe:25:9c:6a:72:75:76:75:0c:da:d1:50:47:95:8d:8f:
0c:44:ba:2d:ac:ca:16:f6:1b:5c:ad:92:e7:57:a9:2f:50:9e:
2e:d9:34:cb:01:e5:50:5b:19:ed:1d:c0:fe:66:26:87:a4:96:
a5:a4:9b:54:5f:c3:e0:11:02:da:8a:b7:8e:4f:f4:bb:8a:4e:
f6:0d:62:26:a7:f7:6e:60:f8:6d:43:8e:45:6d:53:ce:cc:9c:
d6:97:5e:02:e7:b7:9b:b0:83:5e:56:d1:76:93:31:eb:2f:5e:
e2:88:c6:75:68:fd:91:42:5c:ab:ea:cd:af:16:00:db:b3:66:
d0:32:78:97:f4:da:df:a5:ab:b0:d0:0b:e4:b2:4d:bd:3e:cc:
8b:5c:6e:02:48:29:f6:64:ec:55:ed:41:a6:72:ab:3f:56:24:
2d:15:5d:86:89:03:b3:70:15:dc:a9:41:2e:77:5a:6e:50:6f:
90:a1:1a:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:50 2024 by rpki-client on console-fra.rpki-client.org