Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10822/jtkEPHzkG2UwKQ9AbTuSCamIP3E.roa
File: jtkEPHzkG2UwKQ9AbTuSCamIP3E.roa (raw, json)
Hash identifier: hp8bKqCfD7t3KsLYHyog0DsCRXF7JRs6S75ZQkugrKQ=
Subject key identifier: 8E:D9:04:3C:7C:E4:1B:65:30:29:0F:40:6D:3B:92:09:A9:88:3F:71
Certificate issuer: /CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26
Certificate serial: 3F
Authority key identifier: 33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/jtkEPHzkG2UwKQ9AbTuSCamIP3E.roa
Signing time: Sat 01 Mar 2025 01:29:42 +0000
ROA not before: Sat 01 Mar 2025 01:29:42 +0000
ROA not after: Sun 15 Feb 2026 01:30:03 +0000
asID: 17698
IP address blocks: 202.45.168.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63 (0x3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26
Validity
Not Before: Mar 1 01:29:42 2025 GMT
Not After : Feb 15 01:30:03 2026 GMT
Subject: CN=8ED9043C7CE41B6530290F406D3B9209A9883F71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4f:cc:72:5e:47:39:3d:7a:d0:c5:27:13:21:
39:65:96:4d:4d:b4:66:c0:92:48:83:4e:fb:b6:73:
01:7c:22:14:f2:6c:3e:4a:1f:8b:4c:32:3c:f9:4d:
2f:56:f7:eb:b4:c5:90:c2:d7:2d:4d:fe:f1:56:5c:
86:9c:87:31:1e:47:77:12:67:f3:27:cc:e8:cf:93:
78:34:1e:1b:3f:49:9f:c2:17:ed:7d:59:35:25:7f:
cd:eb:48:8c:6d:82:76:41:7b:b5:45:88:16:08:68:
f7:d9:e5:77:89:5c:1a:a5:27:31:fe:6d:2b:0f:b1:
cd:11:1b:82:d6:73:93:5d:b3:62:3a:e2:36:43:40:
95:8a:90:40:23:df:19:3d:03:4c:6d:f6:09:09:4e:
88:48:57:cb:30:c2:5a:98:97:e5:e7:ac:fc:1c:96:
62:c7:fb:28:a8:a8:da:f3:2d:d3:f3:81:3d:7f:77:
db:12:a6:25:5c:f6:d7:ff:f6:14:77:3b:0b:e6:24:
d9:86:8f:e9:12:d8:db:91:ee:8b:52:0b:9d:36:8a:
db:c5:f1:97:57:3f:21:53:a7:f6:bc:42:36:66:b7:
03:48:8d:75:0b:c6:ec:cf:18:8e:b6:a5:d0:91:f4:
21:9b:c2:df:ed:7b:91:e6:4d:e6:af:f7:d9:55:6d:
d3:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:D9:04:3C:7C:E4:1B:65:30:29:0F:40:6D:3B:92:09:A9:88:3F:71
X509v3 Authority Key Identifier:
keyid:33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/jtkEPHzkG2UwKQ9AbTuSCamIP3E.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.45.168.0/21
Signature Algorithm: sha256WithRSAEncryption
c9:fb:fa:98:85:cc:e4:c1:a9:0d:a8:7d:9e:0a:bc:61:0e:79:
ed:03:d9:45:d1:e6:18:2b:0e:d7:eb:22:75:50:72:4f:08:3e:
a6:c3:91:00:89:8a:bd:b5:82:7c:5c:b0:4a:cb:b6:7e:b6:c2:
4f:78:cb:4a:59:29:c3:18:10:65:94:1a:47:43:56:fd:39:59:
65:9d:97:6e:99:74:87:80:1f:41:fd:14:33:b5:3e:cc:72:64:
34:44:75:32:3c:43:0e:7a:0c:bc:48:a1:4b:d0:08:c0:f9:32:
5b:59:78:b0:12:88:8d:df:84:12:c4:e7:21:9a:69:e6:8c:7a:
04:3e:9e:08:a3:04:65:33:a1:42:b2:76:e3:85:b4:ed:3d:72:
07:6c:b8:c8:8b:a9:5c:79:d5:d9:1e:02:d4:11:f0:14:bc:5e:
67:40:18:a9:61:d9:02:14:30:75:98:79:34:57:b7:71:51:2c:
e9:77:4b:db:82:a7:61:bc:e9:05:16:2e:d4:20:ad:4c:3e:32:
ac:b7:6a:f7:a1:2e:f1:ac:ca:f3:b1:b4:cf:2a:15:87:3d:27:
c4:7c:de:35:fb:c6:3d:3b:b6:4e:5f:82:a6:42:17:1e:49:1f:
b2:b8:a6:6e:a2:03:24:20:ae:64:36:5d:d8:e4:be:29:53:22:
98:94:3f:fb
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 11 13:43:15 2025 by rpki-client