Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/ycKYj9VCBTtE-oWvsEC2Q4ERS8g.roa
File: ycKYj9VCBTtE-oWvsEC2Q4ERS8g.roa (raw, json)
Hash identifier: VBkWamLIYvMx8zxczUvYgNvXNBFZbc/GqiREjBa+Fzc=
Subject key identifier: C9:C2:98:8F:D5:42:05:3B:44:FA:85:AF:B0:40:B6:43:81:11:4B:C8
Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Certificate serial: 85
Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/ycKYj9VCBTtE-oWvsEC2Q4ERS8g.roa
Signing time: Tue 30 May 2023 16:06:26 +0000
ROA not before: Tue 30 May 2023 16:06:26 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 240a:6b:200::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133 (0x85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Validity
Not Before: May 30 16:06:26 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=C9C2988FD542053B44FA85AFB040B64381114BC8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:26:eb:71:2d:f9:cb:64:28:44:71:97:d5:09:
70:3b:56:3e:d3:2f:8c:ed:bf:9a:05:f4:74:fc:98:
96:9f:02:44:45:2c:68:b0:9b:b6:39:6f:6a:ab:bb:
82:89:c5:4b:2c:46:b6:ca:5b:b5:7b:6a:fb:4f:57:
10:f7:e6:32:64:a0:22:f7:ac:82:4d:ce:bb:60:51:
8a:6d:da:27:97:b1:ec:be:49:35:33:ef:e7:00:eb:
e7:91:72:5f:91:c0:89:b0:ad:83:35:3f:85:9c:f9:
88:b8:3e:f0:2a:ca:9a:95:b2:8e:0f:78:ae:0b:4a:
89:11:00:85:27:94:95:3a:93:85:bd:41:f7:19:f2:
5b:b6:84:d7:4a:6e:28:0f:f6:70:a5:ae:a0:6a:b3:
52:cc:9b:0e:46:2d:46:79:7e:04:a2:06:39:e9:cb:
82:df:c4:c3:46:fa:d5:21:d3:17:19:79:2f:0f:0c:
6e:08:b4:ea:b3:d7:69:f5:ee:86:c3:92:cc:22:91:
cf:fe:1e:f3:96:71:4b:e3:bb:f7:5f:a3:ce:d2:4c:
f7:76:48:31:69:3a:ea:bb:0f:fe:40:b1:37:1a:2d:
c3:52:be:b7:f1:e5:39:55:df:fd:00:16:6f:04:27:
96:92:62:bc:7f:ee:e0:19:55:cb:0e:aa:0a:10:40:
9b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:C2:98:8F:D5:42:05:3B:44:FA:85:AF:B0:40:B6:43:81:11:4B:C8
X509v3 Authority Key Identifier:
keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/ycKYj9VCBTtE-oWvsEC2Q4ERS8g.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
240a:6b:200::/40
Signature Algorithm: sha256WithRSAEncryption
12:ef:20:e6:f4:42:ff:61:8a:83:ef:a8:1f:f3:16:6a:d8:14:
74:57:44:ed:6b:40:8d:a6:02:32:cc:bf:ad:20:a1:54:6b:09:
ed:ef:6e:58:0f:07:fd:9b:8e:85:cd:41:1e:2e:1f:11:3b:a0:
22:8a:a3:65:90:0d:4b:ab:ac:0e:ec:10:4f:54:97:b0:0c:c1:
7f:99:d1:da:4d:f6:fc:0a:1c:97:07:26:db:06:8e:58:0b:bf:
74:ce:10:22:ac:05:2e:e7:12:2a:9d:4c:cd:66:2a:cf:c1:5f:
d4:84:5e:5c:5f:a2:83:ba:a0:b3:da:20:42:93:f5:c8:9f:79:
0f:35:31:2a:d6:a3:ca:28:9c:b7:81:e2:b8:df:80:f1:4e:65:
d3:23:76:0e:d0:ba:0f:31:06:1b:57:6b:67:cc:69:18:57:57:
45:a0:a4:f0:94:ef:34:99:92:95:39:1f:b1:d1:06:9b:79:b9:
80:1b:0d:fb:f1:40:a2:6f:a6:0e:5a:ca:9e:77:a8:7b:ba:29:
7d:c5:fe:d4:82:e5:e6:7a:ae:0a:fd:fb:ef:29:de:65:04:b5:
6e:22:55:e4:74:bd:a0:54:91:9b:6f:4e:8b:9a:07:af:dc:3e:
29:63:49:3e:5e:f8:1d:c5:b5:47:1c:a2:46:f4:30:14:d5:89:
22:6a:47:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:58 2024 by rpki-client on console-ams.rpki-client.org