Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/Ax_XoUGtdG58bxTt8mDddFTW2eI.roa
File: Ax_XoUGtdG58bxTt8mDddFTW2eI.roa (raw, json)
Hash identifier: q5ZLRtOEKcw0YQsVnvnJIlctH/uNVOy2gw0LOZi5QZ8=
Subject key identifier: 03:1F:D7:A1:41:AD:74:6E:7C:6F:14:ED:F2:60:DD:74:54:D6:D9:E2
Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Certificate serial: 0323
Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Ax_XoUGtdG58bxTt8mDddFTW2eI.roa
Signing time: Sun 31 Mar 2024 01:40:35 +0000
ROA not before: Sun 31 Mar 2024 01:40:35 +0000
ROA not after: Sat 15 Mar 2025 01:30:02 +0000
asID: 2516
IP address blocks: 125.28.0.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 803 (0x323)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Validity
Not Before: Mar 31 01:40:35 2024 GMT
Not After : Mar 15 01:30:02 2025 GMT
Subject: CN=031FD7A141AD746E7C6F14EDF260DD7454D6D9E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f0:59:98:63:42:6c:77:79:4f:b0:36:c8:55:
3b:6b:80:d8:d1:7a:5d:f8:82:7e:d5:a2:71:9f:91:
dc:86:33:d1:64:aa:d4:eb:fb:69:93:1f:b9:9a:bf:
8a:ce:f3:2e:5a:a9:2f:bb:b3:ea:14:e5:ef:03:67:
a4:38:4e:0b:a9:88:8a:f8:82:47:ec:10:ec:50:32:
83:29:fc:2e:c7:2f:30:67:79:e4:79:5e:ec:33:6f:
97:b4:2f:84:3d:0a:51:b7:82:cf:aa:c2:f7:56:19:
4f:61:0e:41:7f:6c:9f:34:72:18:d9:df:54:33:2f:
ed:c6:3f:cb:b9:52:84:2f:f9:f5:b8:93:8a:4d:1e:
a8:9b:fe:e6:ce:5d:5d:ed:33:ba:12:ec:3d:98:d3:
9e:3b:c1:6f:4b:d7:62:a1:cb:dd:67:1f:ca:f2:aa:
ee:e8:22:f1:60:67:ad:9b:cd:c2:7a:8c:d3:d0:f8:
1f:79:2c:20:e1:15:9a:8e:7c:35:a1:9b:50:f6:40:
f4:8a:3c:50:b2:46:49:46:f2:35:91:cf:96:05:ef:
e8:f3:d6:20:65:c9:e1:0a:5c:c4:72:84:90:be:2a:
49:86:31:ff:05:ca:de:75:dd:e8:e4:5f:22:42:ab:
df:63:10:83:59:69:86:34:d4:9c:7d:16:ad:28:21:
e4:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:1F:D7:A1:41:AD:74:6E:7C:6F:14:ED:F2:60:DD:74:54:D6:D9:E2
X509v3 Authority Key Identifier:
keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Ax_XoUGtdG58bxTt8mDddFTW2eI.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
125.28.0.0/17
Signature Algorithm: sha256WithRSAEncryption
33:63:51:3e:55:8a:36:ed:58:a8:20:46:34:20:05:02:ee:14:
f0:c4:e4:98:68:a7:b2:69:a5:04:a7:ba:b2:8a:b0:83:0e:e1:
75:70:fb:c7:ae:44:53:63:c3:2b:4e:21:da:1b:9c:95:6e:5f:
f5:b2:fe:48:3b:ec:8d:d3:e2:b0:45:6b:de:6d:f2:4c:32:78:
f7:b0:e7:cb:bf:bb:3b:5d:93:54:19:a6:ae:5a:20:ef:ad:bf:
c4:b6:7d:cc:86:6c:15:dd:8c:90:6d:04:2c:f5:3d:9a:54:d0:
b8:70:b7:13:01:cc:ce:4f:b6:5a:0d:37:95:f5:61:ce:20:ad:
df:dc:91:05:90:50:40:3c:28:8c:ae:b2:e3:20:22:14:29:e1:
8d:bb:73:23:21:17:9a:62:5c:7c:e4:f8:f5:e5:1c:32:e6:94:
d9:f5:99:f4:90:f2:3f:7e:47:e7:57:9f:b9:87:ef:db:77:d9:
db:12:94:b9:d5:fb:71:22:56:b5:b8:1b:87:59:9a:5d:2e:e5:
49:e8:ae:d2:ee:6f:ef:ab:81:87:eb:b3:7e:2d:92:e3:55:ec:
01:05:f3:ab:44:02:1a:e6:53:b1:36:1d:ca:99:c3:c8:6e:cc:
3d:ee:53:d0:db:1e:e3:21:b2:e0:74:e7:52:de:be:11:5c:bd:
1f:a0:d0:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:25:42 2025 by rpki-client