Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/IShe0hb-0iAKzU3VEaf6u9431wM.roa
File: IShe0hb-0iAKzU3VEaf6u9431wM.roa (raw, json)
Hash identifier: IXfmd5ho91DtieZBLfKmfc3AtVkH2bXRJS2TJ2AiJuU=
Subject key identifier: 21:28:5E:D2:16:FE:D2:20:0A:CD:4D:D5:11:A7:FA:BB:DE:37:D7:03
Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Certificate serial: 04EE
Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/IShe0hb-0iAKzU3VEaf6u9431wM.roa
Signing time: Wed 18 Dec 2024 02:40:02 +0000
ROA not before: Wed 18 Dec 2024 02:40:02 +0000
ROA not after: Mon 15 Dec 2025 01:30:03 +0000
asID: 2516
IP address blocks: 210.224.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1262 (0x4ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Validity
Not Before: Dec 18 02:40:02 2024 GMT
Not After : Dec 15 01:30:03 2025 GMT
Subject: CN=21285ED216FED2200ACD4DD511A7FABBDE37D703
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:07:fe:3e:74:35:f5:cb:ae:89:ff:72:2f:5a:
7e:de:d6:52:0d:b8:84:31:02:45:c4:b2:0f:2f:b2:
54:73:58:89:28:cf:88:5e:dc:0c:22:70:74:46:3b:
d9:f6:b4:50:68:6e:bb:e3:ee:04:85:a9:3f:6e:97:
15:82:c1:81:f8:41:0c:21:2e:0a:09:3c:5c:4b:98:
b9:bb:c6:40:65:0d:ca:2e:47:35:71:d9:4c:a2:76:
83:5a:8a:fe:6e:a3:26:9d:6b:57:44:c2:1a:07:2e:
28:62:6d:e1:e9:a4:9e:b2:49:7d:48:f3:b6:0c:5b:
8e:e9:55:86:65:9f:31:42:42:6d:6b:c4:6d:5e:03:
44:65:d2:c8:80:c7:86:97:ba:6a:bc:0d:54:0f:af:
85:89:87:18:cc:70:66:0e:e3:e0:a9:ed:2a:a1:69:
7c:04:d6:39:4a:77:24:6f:fe:10:2a:3b:1b:83:64:
3f:5f:37:59:c8:1b:e3:f8:a3:71:37:d8:1a:28:61:
da:4b:4e:5c:89:e9:d1:a6:69:d0:f0:37:88:ff:28:
a8:17:e4:3d:4c:c6:f8:ba:da:8c:c7:68:41:f8:74:
db:25:30:71:bf:1a:5d:2a:e3:bb:29:e7:94:05:5c:
7e:5e:16:1f:d1:e1:06:b8:86:9e:73:6c:87:6f:4a:
5a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:28:5E:D2:16:FE:D2:20:0A:CD:4D:D5:11:A7:FA:BB:DE:37:D7:03
X509v3 Authority Key Identifier:
keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/IShe0hb-0iAKzU3VEaf6u9431wM.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
210.224.149.0/24
Signature Algorithm: sha256WithRSAEncryption
09:4f:86:0d:ed:49:c5:1d:c2:59:be:3f:f9:db:a4:4e:cb:03:
5e:c9:7d:f5:7d:c2:2e:47:db:73:79:2c:8b:9c:7c:1d:84:1a:
4e:55:71:03:32:15:e4:9b:52:26:83:f7:f7:39:a4:f3:bf:1f:
ed:21:6e:8f:e5:23:7e:0f:1d:91:9a:a9:60:31:46:9a:8a:3e:
1c:a1:1e:42:57:56:3c:0c:b0:b6:b3:28:d2:02:f3:53:5e:d9:
57:00:6b:ed:5d:71:f2:6a:f5:8f:46:1a:99:8d:3b:45:d2:12:
c3:43:65:fa:47:88:7e:49:2c:96:8d:2e:e0:5e:82:ec:49:d4:
2e:3e:24:86:a5:8f:40:00:b7:73:8c:7f:26:a8:95:d7:03:82:
04:8f:fc:f2:99:7f:3c:55:48:ca:5c:f9:22:74:5e:16:c8:68:
31:bb:7f:a7:11:fa:5d:ce:99:cc:cb:05:2d:d1:a3:48:44:dc:
8a:8b:7b:86:d6:47:04:ec:ba:1b:15:35:a8:6b:4b:40:c1:1e:
f7:ac:27:f3:c5:a9:90:60:9a:94:56:97:5a:ed:b0:e1:95:eb:
66:b3:fc:a3:c6:61:21:6d:78:80:73:53:72:3e:bb:0f:d8:7c:
be:b7:7d:5b:d7:6f:17:ad:d7:fd:06:3f:be:54:eb:79:74:93:
e2:76:f9:e1
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICBO4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC
RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw
MjQwMDJaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDIxMjg1RUQyMTZGRUQy
MjAwQUNENERENTExQTdGQUJCREUzN0Q3MDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDcB/4+dDX1y66J/3IvWn7e1lINuIQxAkXEsg8vslRzWIkoz4he
3AwicHRGO9n2tFBobrvj7gSFqT9ulxWCwYH4QQwhLgoJPFxLmLm7xkBlDcouRzVx
2UyidoNaiv5uoyada1dEwhoHLihibeHppJ6ySX1I87YMW47pVYZlnzFCQm1rxG1e
A0Rl0siAx4aXumq8DVQPr4WJhxjMcGYO4+Cp7SqhaXwE1jlKdyRv/hAqOxuDZD9f
N1nIG+P4o3E32BooYdpLTlyJ6dGmadDwN4j/KKgX5D1Mxvi62ozHaEH4dNslMHG/
Gl0q47sp55QFXH5eFh/R4Qa4hp5zbIdvSlodAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUIShe0hb+0iAKzU3VEaf6u9431wMwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf
2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG
cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMTYxL0lTaGUwaGItMGlBS3pVM1ZFYWY2dTk0MzF3TS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADS4JUwDQYJKoZIhvcNAQELBQADggEBAAlPhg3tScUdwlm+P/nbpE7LA17J
ffV9wi5H23N5LIucfB2EGk5VcQMyFeSbUiaD9/c5pPO/H+0hbo/lI34PHZGaqWAx
RpqKPhyhHkJXVjwMsLazKNIC81Ne2VcAa+1dcfJq9Y9GGpmNO0XSEsNDZfpHiH5J
LJaNLuBeguxJ1C4+JIalj0AAt3OMfyaoldcDggSP/PKZfzxVSMpc+SJ0XhbIaDG7
f6cR+l3OmczLBS3Ro0hE3IqLe4bWRwTsuhsVNahrS0DBHvesJ/PFqZBgmpRWl1rt
sOGV62az/KPGYSFteIBzU3I+uw/YfL63fVvXbxet1/0GP75U63l0k+J2+eE=
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:37:30 2025 by rpki-client