Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30267/mVqyWm3gVlQ5Tbqb38eoEt8bAQ0.roa
File: mVqyWm3gVlQ5Tbqb38eoEt8bAQ0.roa (raw, json)
Hash identifier: BlKF/MrgTRkM+Wa7AVOh9iFNBVgmWWXKPVj6o4u72eU=
Subject key identifier: 99:5A:B2:5A:6D:E0:56:54:39:4D:BA:9B:DF:C7:A8:12:DF:1B:01:0D
Certificate issuer: /CN=AB99FE69A832191F847C33B243442E9D68AD1433
Certificate serial: 28
Authority key identifier: AB:99:FE:69:A8:32:19:1F:84:7C:33:B2:43:44:2E:9D:68:AD:14:33
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/q5n-aagyGR-EfDOyQ0QunWitFDM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30267/mVqyWm3gVlQ5Tbqb38eoEt8bAQ0.roa
Signing time: Wed 01 Jun 2022 01:28:52 +0000
ROA not before: Wed 01 Jun 2022 01:28:52 +0000
ROA not after: Mon 15 May 2023 01:30:04 +0000
asID: 59103
IP address blocks: 2401:af80:9011::/56 maxlen: 56
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40 (0x28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AB99FE69A832191F847C33B243442E9D68AD1433
Validity
Not Before: Jun 1 01:28:52 2022 GMT
Not After : May 15 01:30:04 2023 GMT
Subject: CN=995AB25A6DE05654394DBA9BDFC7A812DF1B010D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c1:e2:62:27:f3:67:f8:14:65:b1:2f:b9:62:
1d:f0:31:20:2b:4f:20:68:10:f4:f4:ee:d8:81:ae:
9d:97:31:32:09:cd:82:36:31:e9:27:23:f6:49:aa:
cf:13:59:d5:a8:71:82:d4:a4:72:b1:6f:0f:a4:1f:
12:06:cb:01:16:c6:00:5a:9f:00:af:fd:d6:2f:cf:
44:0b:f5:55:6f:19:09:eb:7b:b7:15:69:dc:61:7a:
50:20:2c:ad:48:94:31:63:78:ad:96:9c:4f:d7:a8:
0c:d5:ae:b4:eb:c4:59:5a:65:d2:e7:e5:d6:3b:a9:
82:a9:a3:17:1d:77:21:96:c9:34:3c:fc:6b:7d:d6:
88:b4:55:03:01:c8:7e:a1:ec:3d:b6:63:40:a8:43:
cd:03:2c:a9:87:83:b8:2d:23:62:32:82:38:48:7a:
54:e0:70:3c:ee:ec:25:99:30:9f:8f:c1:09:20:60:
3d:f2:84:d8:a7:ba:2f:7d:1e:2c:22:ef:df:7a:8d:
6c:c8:6f:63:9d:90:a8:6f:2f:41:15:58:9d:e4:2b:
79:8e:22:24:28:9e:ce:36:9d:f0:05:dc:35:b5:41:
38:92:35:9e:2b:e6:87:5f:cf:b8:f6:7d:9f:86:c7:
e6:ee:77:ec:09:ad:33:f0:e6:73:6b:19:16:53:78:
ef:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:5A:B2:5A:6D:E0:56:54:39:4D:BA:9B:DF:C7:A8:12:DF:1B:01:0D
X509v3 Authority Key Identifier:
keyid:AB:99:FE:69:A8:32:19:1F:84:7C:33:B2:43:44:2E:9D:68:AD:14:33
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30267/q5n-aagyGR-EfDOyQ0QunWitFDM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/q5n-aagyGR-EfDOyQ0QunWitFDM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30267/mVqyWm3gVlQ5Tbqb38eoEt8bAQ0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:af80:9011::/56
Signature Algorithm: sha256WithRSAEncryption
25:d9:3c:f6:c9:50:c1:70:c0:ed:39:20:95:49:05:9b:3d:04:
70:4f:61:eb:50:a6:56:5c:7a:f9:ff:31:30:1d:13:01:51:2a:
31:a4:48:9d:b3:39:1e:b9:87:df:e4:81:7a:be:46:98:bb:55:
86:78:11:6b:fb:65:20:4a:2c:b6:c5:70:98:93:d8:c1:97:20:
14:f0:ec:1b:96:56:88:22:cd:bf:97:7e:8e:44:15:bf:b3:48:
4c:b1:17:09:4f:53:e9:de:40:86:32:34:a2:a6:6e:b3:c1:55:
01:d8:0c:ee:4a:65:b5:05:82:01:1e:21:85:a8:a9:72:91:10:
0d:05:8c:69:db:5f:8b:3d:8c:ee:9f:7a:71:9a:b2:fb:5b:f4:
14:2d:fe:ed:47:ee:b7:70:18:66:c0:bb:2a:f1:14:55:71:93:
a5:e5:48:94:fd:b4:6d:45:80:6a:0c:21:23:b1:3c:a0:45:70:
d0:6f:e0:2e:f5:d8:e5:25:9d:98:5c:79:ff:85:6b:7b:0e:76:
af:79:61:e3:be:a5:93:5e:2a:7d:03:b7:fe:1f:58:ad:e8:92:
97:1b:a4:d1:36:09:2f:fd:d4:a9:66:47:13:ca:51:1d:cc:e3:
3d:75:d3:9d:c0:63:c7:19:ad:41:23:22:bc:e2:6e:a9:af:bb:
1e:e9:fc:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:50 2024 by rpki-client on console-fra.rpki-client.org