Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/13131/rZI9Diph6ALNXjuCmJzXPMxRnag.roa
File: rZI9Diph6ALNXjuCmJzXPMxRnag.roa (raw, json)
Hash identifier: 5tBW399WkjWv6DRCcibtDRIIXNyHoEDkLXHl793hQ1Y=
Subject key identifier: AD:92:3D:0E:2A:61:E8:02:CD:5E:3B:82:98:9C:D7:3C:CC:51:9D:A8
Certificate issuer: /CN=FD13D822A4DD7BA05078F9E60025F8BFF11BEF82
Certificate serial: 60
Authority key identifier: FD:13:D8:22:A4:DD:7B:A0:50:78:F9:E6:00:25:F8:BF:F1:1B:EF:82
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/_RPYIqTde6BQePnmACX4v_Eb74I.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/13131/rZI9Diph6ALNXjuCmJzXPMxRnag.roa
Signing time: Sat 01 Mar 2025 01:30:23 +0000
ROA not before: Sat 01 Mar 2025 01:30:23 +0000
ROA not after: Sun 15 Feb 2026 01:30:03 +0000
asID: 38639
IP address blocks: 220.150.192.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96 (0x60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FD13D822A4DD7BA05078F9E60025F8BFF11BEF82
Validity
Not Before: Mar 1 01:30:23 2025 GMT
Not After : Feb 15 01:30:03 2026 GMT
Subject: CN=AD923D0E2A61E802CD5E3B82989CD73CCC519DA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d0:2f:3f:da:c7:41:cf:68:9b:07:44:6f:c1:
04:f8:1e:e4:45:2f:8b:3f:0e:31:a3:01:1b:fd:2c:
17:f6:95:32:9d:fe:15:0d:8c:93:23:f9:fa:9f:e8:
7e:f8:e5:c9:e8:25:47:90:2d:24:3a:2d:c5:6d:9e:
29:ef:67:95:06:66:ae:f4:00:3f:b7:e2:17:4a:7e:
e4:da:a0:5c:91:bf:b5:ea:49:23:ee:63:aa:6e:3c:
7b:b6:5b:fd:51:2e:db:a9:66:d4:c0:f8:0a:df:b6:
74:b1:d5:68:7e:34:62:b8:86:3f:53:2f:a7:07:9d:
64:ac:0d:7b:80:e7:0b:c2:f0:86:49:7b:bd:9e:6a:
5e:37:2f:28:bf:d6:0e:f6:13:5e:d8:de:4c:fd:84:
59:1b:02:dc:9f:02:f6:26:c2:1a:62:1e:a5:de:a0:
7a:32:46:9a:0e:02:60:02:4f:cb:e3:eb:c3:3d:a6:
d6:dd:22:02:fd:45:6a:43:cf:ea:43:bb:fc:7d:f3:
5a:b3:45:dc:34:74:74:74:41:fe:b7:94:68:c3:0e:
6f:f1:f9:6b:f8:de:af:62:ef:1c:28:0d:3a:68:50:
87:be:d7:d1:69:78:e5:00:15:81:f5:0f:56:b2:f9:
61:ba:97:8c:7d:36:91:04:fb:eb:ac:00:08:9f:e6:
5e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:92:3D:0E:2A:61:E8:02:CD:5E:3B:82:98:9C:D7:3C:CC:51:9D:A8
X509v3 Authority Key Identifier:
keyid:FD:13:D8:22:A4:DD:7B:A0:50:78:F9:E6:00:25:F8:BF:F1:1B:EF:82
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/13131/_RPYIqTde6BQePnmACX4v_Eb74I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/_RPYIqTde6BQePnmACX4v_Eb74I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/13131/rZI9Diph6ALNXjuCmJzXPMxRnag.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.150.192.0/21
Signature Algorithm: sha256WithRSAEncryption
52:0e:35:ce:f6:27:56:28:cc:c2:8b:46:80:7d:93:37:94:08:
e3:39:5f:97:65:4e:55:85:0e:c1:fa:e7:ad:6a:0c:46:2e:14:
0b:aa:d6:76:0b:15:35:3b:b6:14:2e:06:5c:4d:7e:1d:0e:59:
cd:8f:ec:98:42:c3:5f:d2:50:61:8f:c2:3a:cf:8a:fe:cd:c3:
4d:7e:b8:bb:8b:e4:82:28:b0:2b:0c:43:4e:f5:ca:ba:25:96:
78:f4:25:27:ba:ef:36:05:c5:f6:ac:3f:54:2a:1b:c2:7f:e6:
23:a3:e3:2c:cc:22:1a:c5:3d:2a:7e:66:c1:ee:c7:ca:87:f9:
51:c7:aa:80:bb:c4:c9:f4:90:27:96:e4:ef:56:1c:c1:45:8f:
49:9f:ea:a1:ed:de:03:89:d5:ab:dc:a7:cd:25:db:3d:4d:fd:
83:7d:e0:ce:4c:c3:95:6a:c2:c5:60:1c:cf:ae:fa:2c:ba:30:
c0:98:85:2c:20:2a:29:89:8c:a1:0e:6e:9c:c0:a5:bb:c8:09:
17:9e:9e:3b:e8:45:fe:47:f7:d5:b8:6d:5b:16:ba:36:d9:c0:
e3:33:b9:cf:e8:05:13:9c:9b:c3:89:44:27:c1:04:61:36:a9:
4e:c0:eb:3b:f5:db:10:84:f3:ab:cb:89:fc:50:07:53:76:0b:
73:77:43:2f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Apr 6 15:37:31 2025 by rpki-client