Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10247/03xSCFLKwj54gqOisDE1BRsI8oY.roa
File: 03xSCFLKwj54gqOisDE1BRsI8oY.roa (raw, json)
Hash identifier: 4PFzvRyqokH+wdUtIqd7hRjsKPts6KWB+YM/HXQm7XQ=
Subject key identifier: D3:7C:52:08:52:CA:C2:3E:78:82:A3:A2:B0:31:35:05:1B:08:F2:86
Certificate issuer: /CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A
Certificate serial: 01A4
Authority key identifier: 20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/03xSCFLKwj54gqOisDE1BRsI8oY.roa
Signing time: Sun 01 Oct 2023 01:28:32 +0000
ROA not before: Sun 01 Oct 2023 01:28:32 +0000
ROA not after: Sat 14 Sep 2024 01:30:03 +0000
asID: 55897
IP address blocks: 219.111.240.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 420 (0x1a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A
Validity
Not Before: Oct 1 01:28:32 2023 GMT
Not After : Sep 14 01:30:03 2024 GMT
Subject: CN=D37C520852CAC23E7882A3A2B03135051B08F286
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c2:87:0f:dd:75:ea:84:4b:df:7c:5c:2e:35:
57:36:18:9d:79:a7:ea:66:ce:9f:51:77:7e:75:f7:
a8:20:6d:ed:f2:a5:2c:80:40:c0:86:3b:cc:00:2b:
ce:07:3c:c0:63:ef:4e:08:eb:ff:38:79:29:53:4e:
9c:ad:cd:55:44:96:95:a5:de:eb:71:05:fb:5f:84:
65:60:60:1a:38:9a:dc:76:64:9e:7f:01:d7:84:66:
54:31:53:ab:52:22:40:a6:aa:88:d6:e2:08:73:01:
51:a0:9d:86:a8:b9:b9:57:0d:35:17:da:9a:d7:16:
48:19:f3:bc:f6:70:b4:b5:ad:01:40:98:be:3a:29:
f2:7d:24:22:35:89:b1:10:a6:34:94:9a:61:fb:38:
52:f7:d9:9d:10:69:66:c6:b6:bb:82:e9:25:0c:06:
78:be:44:5d:07:32:87:17:20:c5:4d:1b:e7:02:e1:
de:52:46:52:52:b1:d0:08:1d:0c:74:85:ef:d1:ec:
1e:ec:27:11:de:32:16:f1:73:52:5a:98:79:0b:46:
fe:f2:dd:95:84:0b:c9:80:00:38:35:e1:56:2e:f1:
9c:8b:fe:9b:2d:69:67:6c:e4:11:a4:86:a8:10:e2:
ed:e5:80:21:70:ff:95:86:96:6b:ee:01:23:94:28:
b0:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:7C:52:08:52:CA:C2:3E:78:82:A3:A2:B0:31:35:05:1B:08:F2:86
X509v3 Authority Key Identifier:
keyid:20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/03xSCFLKwj54gqOisDE1BRsI8oY.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
219.111.240.0/20
Signature Algorithm: sha256WithRSAEncryption
88:27:98:b6:f6:4b:ff:d9:3c:b0:cf:c5:e3:5c:97:f5:c7:fa:
49:de:47:ad:a6:7c:d1:4e:c7:92:bf:2c:af:80:7a:fc:2e:d1:
53:78:05:16:ef:32:1d:85:7a:5b:97:e4:cd:94:e8:f4:bd:be:
f8:ac:bb:4a:7a:c2:be:93:cf:f4:95:a9:3b:a5:b4:af:b1:14:
8e:ac:fa:db:1e:ff:ab:d5:88:b1:8c:70:81:4e:06:d9:bd:53:
52:8d:bf:8e:82:a2:05:f9:e9:d5:25:ac:02:93:92:7d:d5:d0:
17:4b:96:b3:14:78:86:ac:55:4c:4b:30:f5:0c:ae:90:34:6d:
18:32:27:10:2c:ea:dc:45:c4:eb:24:0f:b7:51:70:2f:d8:85:
12:a6:18:ba:d0:d7:78:13:81:f4:a1:d4:3e:2e:2a:d0:6d:bb:
bb:0b:0a:c8:99:43:1a:d7:9c:21:45:53:51:1d:c6:c5:33:b2:
c5:ba:5e:41:12:a7:d5:c8:7d:d7:85:97:e7:a9:a9:77:cc:69:
ba:cb:3e:c4:96:eb:ba:4e:84:d8:26:03:a1:bb:94:bb:1e:08:
74:73:1d:05:05:8e:7f:52:c4:98:dc:72:07:6e:e2:37:d4:a9:
b4:7d:fa:ca:6f:7b:b4:20:30:c3:b4:65:37:81:6c:6f:14:33:
26:94:bf:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:46:33 2025 by rpki-client