Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10822/2eBvUPh3jKJzmWDQevtAqhjj-9E.roa
File: 2eBvUPh3jKJzmWDQevtAqhjj-9E.roa (raw, json)
Hash identifier: iD9kxajLsizhhm7RAslstDHxP1TEbthyBoi3vLoDz2I=
Subject key identifier: D9:E0:6F:50:F8:77:8C:A2:73:99:60:D0:7A:FB:40:AA:18:E3:FB:D1
Certificate issuer: /CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26
Certificate serial: 38
Authority key identifier: 33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/2eBvUPh3jKJzmWDQevtAqhjj-9E.roa
Signing time: Sat 01 Mar 2025 01:29:39 +0000
ROA not before: Sat 01 Mar 2025 01:29:39 +0000
ROA not after: Sun 15 Feb 2026 01:30:03 +0000
asID: 17698
IP address blocks: 116.58.144.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56 (0x38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26
Validity
Not Before: Mar 1 01:29:39 2025 GMT
Not After : Feb 15 01:30:03 2026 GMT
Subject: CN=D9E06F50F8778CA2739960D07AFB40AA18E3FBD1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:09:19:bf:78:36:c0:27:77:a7:2a:91:86:92:
e5:60:07:ee:0b:c2:cf:64:fb:b8:31:04:f2:35:b3:
e2:6b:9f:c7:72:cf:15:24:d8:15:e6:b7:89:b3:e7:
a0:31:11:bb:24:9e:8c:2f:c8:c8:d6:c8:4b:1e:1c:
7f:0b:7f:57:e2:98:07:58:04:aa:80:10:62:44:71:
3d:67:af:1e:e2:31:a0:f7:14:79:45:94:f1:78:5a:
51:98:38:af:1a:eb:20:fa:7e:0f:ec:f7:ff:53:77:
08:ca:11:e3:a4:93:8d:23:14:0d:a7:98:36:38:73:
c1:0c:f5:f0:8d:16:ab:fe:90:5f:57:2f:cc:fc:d7:
d7:60:d4:e9:99:67:5e:c9:3b:20:b8:8e:4c:02:2d:
c0:bf:b7:b3:af:a7:27:e2:86:88:d2:77:ae:9c:78:
9f:41:ac:a2:c0:fb:29:9f:ff:60:40:ae:b1:ee:8e:
86:7d:df:2e:38:6e:d6:88:58:14:c7:69:cc:4a:1c:
f4:ff:ea:62:ee:23:63:61:7a:2c:8d:33:5a:39:25:
7c:be:79:b1:17:cb:8a:b8:30:c1:d4:fb:25:13:f8:
16:7a:a5:51:c6:aa:81:76:b8:42:b1:a3:52:b1:12:
9f:69:f1:0b:4f:0e:04:1c:44:03:6c:20:34:02:de:
42:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:E0:6F:50:F8:77:8C:A2:73:99:60:D0:7A:FB:40:AA:18:E3:FB:D1
X509v3 Authority Key Identifier:
keyid:33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/2eBvUPh3jKJzmWDQevtAqhjj-9E.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
116.58.144.0/20
Signature Algorithm: sha256WithRSAEncryption
c3:b0:8c:0d:bf:15:49:b6:1b:59:a2:44:f3:ee:13:a6:4f:4e:
95:57:f7:ec:54:de:c7:a5:b0:8c:b1:a1:f1:44:ba:d3:63:90:
0c:b3:ef:14:20:98:b0:85:05:20:71:3e:2f:62:c0:d9:da:4c:
3c:e3:c3:76:34:ec:0a:01:a5:68:1f:42:09:e4:6c:34:ca:8a:
84:5d:12:cb:f6:80:97:66:d8:fe:88:89:73:fe:61:65:9e:56:
bc:1d:6d:31:02:80:08:5d:7a:88:95:bf:10:37:5a:78:0c:49:
9e:61:a6:b4:34:b8:47:ea:9e:0f:1f:8b:87:59:60:6b:38:9a:
e3:3a:13:bc:4d:ef:1f:cf:74:19:0b:87:32:80:6f:b3:9e:ba:
1f:e8:7b:10:93:be:11:41:fd:d2:98:9f:fb:82:c6:e7:3f:cd:
0d:83:75:fb:5e:90:a8:53:69:69:bf:57:58:c9:98:62:3c:8e:
72:f2:db:f9:d2:19:78:43:8f:fb:94:02:10:e4:1a:4d:d1:03:
f9:f6:30:25:9f:9d:56:b2:df:3e:df:f6:fc:62:88:58:09:37:
35:5a:25:b8:ea:1b:82:18:05:c2:76:51:4a:9c:8d:97:76:2b:
32:78:8f:67:dd:0e:fc:c7:59:d4:79:86:98:6c:d5:29:d4:fb:
6f:a6:f9:4d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:46:28 2025 by rpki-client