Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/tJ1Mtxd5pa_VrRn9mDfCyGYkMPM.roa
File: tJ1Mtxd5pa_VrRn9mDfCyGYkMPM.roa (raw, json)
Hash identifier: GzUZnkPj28+xJWNqbIgcLWCuh1Ehvt1mYjFTIO/7GYI=
Subject key identifier: B4:9D:4C:B7:17:79:A5:AF:D5:AD:19:FD:98:37:C2:C8:66:24:30:F3
Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Certificate serial: 2A
Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/tJ1Mtxd5pa_VrRn9mDfCyGYkMPM.roa
Signing time: Tue 30 May 2023 16:02:07 +0000
ROA not before: Tue 30 May 2023 16:02:07 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 240a:6b:4a00::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42 (0x2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Validity
Not Before: May 30 16:02:07 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=B49D4CB71779A5AFD5AD19FD9837C2C8662430F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:3c:92:99:7a:29:0e:06:10:22:39:5c:d9:19:
47:74:69:89:1c:68:a2:7a:a0:df:f0:6c:52:8d:94:
33:a4:39:43:61:d2:5f:ee:b6:d0:80:a0:e7:86:1b:
12:ca:6e:4b:0b:51:35:2a:c2:e1:b4:aa:a3:27:0c:
12:dd:85:fb:db:00:df:52:2b:01:37:5b:18:5a:d0:
73:ed:86:ed:ee:3b:ae:cd:d0:fa:59:35:e8:56:1d:
d6:26:cf:4c:b3:6c:aa:b7:1c:f9:f9:04:6a:a1:04:
79:85:44:6a:e6:7c:7c:fb:31:a5:e9:82:d7:c1:dc:
45:8b:40:2f:72:9d:43:4b:8b:a6:94:ad:c5:04:57:
30:84:1b:df:3b:33:d5:c6:ed:6b:4c:3d:cb:9d:0a:
55:f5:90:15:b6:fd:d5:da:2c:c9:57:09:e9:f7:97:
5e:a1:02:ec:a9:22:23:28:c1:6d:01:fa:c2:2c:bf:
52:65:d5:0e:c0:e3:86:7d:7a:96:9b:01:a5:f3:d5:
35:40:c0:db:ff:c5:6d:ba:0f:4a:32:8d:d8:77:cc:
31:37:f7:98:ab:1e:83:33:e7:4a:c1:c4:6a:42:0f:
1c:c9:a0:0f:02:d6:ba:e7:6d:55:11:5f:2a:71:a2:
ef:c6:a9:58:0e:a6:64:af:6c:04:15:ee:bf:50:7b:
3b:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:9D:4C:B7:17:79:A5:AF:D5:AD:19:FD:98:37:C2:C8:66:24:30:F3
X509v3 Authority Key Identifier:
keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/tJ1Mtxd5pa_VrRn9mDfCyGYkMPM.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
240a:6b:4a00::/40
Signature Algorithm: sha256WithRSAEncryption
28:ad:7a:9f:6b:32:00:90:ae:a1:5c:88:c0:22:48:bb:a6:02:
7a:02:23:e3:2b:84:53:ce:f6:ef:8f:25:73:37:bb:28:60:90:
27:b4:55:44:b3:52:3b:96:9c:e1:89:36:86:6c:1d:fa:7a:ac:
6e:06:58:17:32:b4:34:0e:fe:e0:1f:b9:c5:a0:f2:70:fd:20:
89:de:9d:bb:ed:01:03:ea:f5:e9:ce:03:fd:3e:79:2d:0a:83:
d4:c2:f0:76:42:c5:ce:47:f8:bb:f6:7c:65:d9:8e:da:0e:c0:
6a:11:b2:b1:a9:8a:85:08:7d:37:01:97:79:0c:4f:05:42:eb:
4c:44:2c:53:af:df:bf:63:00:08:b7:e4:b5:8a:c4:68:fc:97:
34:42:f5:eb:94:17:de:ba:eb:93:df:2d:6f:e4:0e:c7:a1:35:
23:40:a3:c0:b9:5b:20:7e:00:77:3e:67:84:fc:5b:a0:d6:c7:
c3:9c:66:00:73:54:5d:44:4b:4b:55:0a:17:75:70:b3:e9:c7:
1e:38:b4:31:c9:93:a3:ee:0d:57:78:a0:7b:28:b4:cb:5c:6e:
6a:48:ff:9f:7e:28:e0:28:ea:c9:7b:e1:e8:d8:2c:69:46:3e:
12:80:67:50:78:e6:1a:aa:08:8e:3a:83:1c:33:9a:32:66:a5:
fa:a8:d6:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:58 2024 by rpki-client on console-ams.rpki-client.org