Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/3tz4sFWRwP2rDk-dbs8L4kN1Doc.roa
File: 3tz4sFWRwP2rDk-dbs8L4kN1Doc.roa (raw, json)
Hash identifier: Knm4vIlm2qemrAr5bsEBotXVYCgK+hMSfsED1628C9E=
Subject key identifier: DE:DC:F8:B0:55:91:C0:FD:AB:0E:4F:9D:6E:CF:0B:E2:43:75:0E:87
Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Certificate serial: 03FE
Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/3tz4sFWRwP2rDk-dbs8L4kN1Doc.roa
Signing time: Wed 18 Dec 2024 02:18:50 +0000
ROA not before: Wed 18 Dec 2024 02:18:50 +0000
ROA not after: Mon 15 Dec 2025 01:30:03 +0000
asID: 2516
IP address blocks: 125.28.0.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1022 (0x3fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Validity
Not Before: Dec 18 02:18:50 2024 GMT
Not After : Dec 15 01:30:03 2025 GMT
Subject: CN=DEDCF8B05591C0FDAB0E4F9D6ECF0BE243750E87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:9c:7a:a5:be:44:df:dc:1b:19:bc:61:b1:d2:
ef:f3:c4:e8:e5:16:54:9f:53:c4:f6:57:16:5b:2b:
16:a0:37:dd:57:8d:03:84:6d:91:e7:ac:cb:18:03:
fe:46:68:a0:a0:f4:b3:fe:5d:1d:b7:49:eb:79:41:
da:b1:7a:ef:9b:30:17:da:28:6b:4a:9d:7f:59:4e:
9e:0a:fa:ae:92:01:1f:76:79:70:dc:3c:d3:64:bb:
14:8f:cc:5c:32:f7:06:9a:f5:c7:a3:41:5a:d0:80:
8b:c4:2a:06:62:64:06:81:37:2d:48:40:f1:ac:64:
fd:e7:57:09:ea:7d:02:54:02:5d:a1:79:b6:68:e1:
68:7d:13:c9:30:a4:70:7d:58:00:24:51:e9:4e:53:
d4:08:6f:86:c7:ef:25:f9:6f:fe:fd:2a:7b:d6:5b:
3e:be:30:de:79:3c:78:01:bb:83:9a:01:d8:27:95:
3c:fc:be:ba:4b:63:af:07:a0:61:a4:f7:1c:f9:c2:
8e:ed:7a:48:3e:d2:b5:a4:87:ea:b4:7f:fa:35:6c:
62:5e:3b:b6:b2:61:5e:e0:52:0c:4f:28:35:7c:5a:
88:4a:81:9f:77:84:12:fb:ee:ba:8e:5f:8d:aa:15:
2d:96:2a:80:14:16:2f:4f:d0:66:dd:db:8f:21:55:
0e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:DC:F8:B0:55:91:C0:FD:AB:0E:4F:9D:6E:CF:0B:E2:43:75:0E:87
X509v3 Authority Key Identifier:
keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/3tz4sFWRwP2rDk-dbs8L4kN1Doc.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
125.28.0.0/17
Signature Algorithm: sha256WithRSAEncryption
18:17:f4:89:64:c8:72:f8:92:84:bf:65:23:cf:fa:b4:26:e7:
58:fe:ea:c2:c7:47:90:56:40:db:7a:b6:5d:fc:36:08:d2:68:
5b:c5:f4:cd:ca:4b:2b:be:64:97:af:9f:31:07:9b:a9:51:10:
22:a0:b4:b2:15:cf:39:a3:70:04:75:7c:b6:d7:11:a8:1a:22:
45:2a:b4:a5:1d:2b:b1:e2:44:22:06:90:1d:29:cf:b4:15:3c:
4c:2d:77:86:ca:4c:ef:1d:09:80:ca:4b:68:b0:1a:e6:c2:a0:
2d:a3:08:ae:28:a3:f3:9c:60:1d:db:e9:4f:20:1b:e2:91:8e:
1d:be:3a:9d:81:c0:6b:1b:16:32:27:72:f3:59:3b:b5:75:a2:
b3:3d:f4:bc:60:02:b8:8b:d9:fb:bf:76:80:9d:4f:3b:ed:dd:
b4:7e:62:1b:b4:7f:15:53:7c:44:02:21:ae:02:44:70:d8:c5:
d5:4e:6c:5a:fd:e8:c0:96:ee:7a:61:8e:a9:fa:21:db:60:a4:
21:7e:c1:4a:77:53:dd:47:34:40:6d:4c:44:54:50:e3:ee:d5:
d0:79:40:9e:a3:42:88:44:51:db:4f:0b:07:a3:1a:3f:20:04:
d7:b0:27:28:14:fd:f2:1b:ad:12:0c:e3:88:cf:e0:6f:26:68:
94:45:05:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 22:56:32 2025 by rpki-client