Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/NHy5eIOAPmAJWOLUgHl8uoG8i00.roa
File: NHy5eIOAPmAJWOLUgHl8uoG8i00.roa (raw, json)
Hash identifier: 0Ju9QkUbnB1mrFGtuMh+vb1NDeNWgqKSdaEEqMWQAj8=
Subject key identifier: 34:7C:B9:78:83:80:3E:60:09:58:E2:D4:80:79:7C:BA:81:BC:8B:4D
Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Certificate serial: 03D0
Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/NHy5eIOAPmAJWOLUgHl8uoG8i00.roa
Signing time: Wed 18 Dec 2024 02:13:09 +0000
ROA not before: Wed 18 Dec 2024 02:13:09 +0000
ROA not after: Mon 15 Dec 2025 01:30:03 +0000
asID: 2516
IP address blocks: 14.9.64.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 976 (0x3d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Validity
Not Before: Dec 18 02:13:09 2024 GMT
Not After : Dec 15 01:30:03 2025 GMT
Subject: CN=347CB97883803E600958E2D480797CBA81BC8B4D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:81:f0:8b:67:86:9a:b7:28:5c:5f:b8:07:e2:
86:1f:c1:2c:8e:85:e3:d0:86:47:de:9a:e8:42:15:
16:2e:4e:1d:96:ee:ca:87:5a:3e:b9:ea:0f:78:ce:
5d:d6:fa:d4:0c:54:32:a1:84:63:b3:43:6d:78:ea:
35:39:b0:11:3e:03:3b:de:eb:87:24:e0:22:8d:87:
bb:5d:52:ee:a7:6a:34:7c:12:fe:34:43:3c:44:81:
5a:57:ab:9d:af:79:57:b9:6d:fd:cc:9c:bf:38:5f:
82:7b:e7:44:85:12:0c:9a:4e:1f:d9:c5:21:aa:0e:
3d:0b:62:3f:85:ea:f8:5f:20:9c:6d:be:c2:db:77:
95:c6:f8:f3:ab:f7:be:95:0e:f4:16:0a:76:90:8f:
04:26:90:6e:44:fa:e8:2a:c2:e6:ec:28:a5:99:3e:
22:73:18:cf:5c:d8:99:b7:ce:79:b9:33:80:92:5c:
c8:3f:57:d0:fb:54:12:79:9a:ca:36:eb:fe:f4:31:
fd:fe:cb:54:f3:a6:1d:ec:1c:ab:96:20:7e:0a:4f:
b8:04:62:df:67:71:f8:1d:dd:0d:06:da:10:dc:a9:
fd:2e:00:37:b9:25:e3:c7:44:3a:5b:1e:94:ed:b4:
4a:bf:80:fc:10:b9:8e:a8:2f:46:d9:04:db:5a:0e:
7a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:7C:B9:78:83:80:3E:60:09:58:E2:D4:80:79:7C:BA:81:BC:8B:4D
X509v3 Authority Key Identifier:
keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/NHy5eIOAPmAJWOLUgHl8uoG8i00.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.9.64.0/20
Signature Algorithm: sha256WithRSAEncryption
32:9b:fc:36:02:1c:50:9e:f8:2a:b5:00:33:9e:6b:36:9b:86:
c9:a9:1d:24:ce:9a:1e:65:38:fb:63:a4:31:da:53:53:a3:ff:
38:36:25:e7:81:5d:e1:c9:8c:45:5b:9f:f2:66:fb:94:2c:13:
f4:2f:ef:5f:57:a0:f4:9a:0d:b2:65:23:6a:28:e0:1d:cb:62:
3e:76:07:08:8c:b3:35:9a:5d:51:3b:29:2a:b6:df:a5:40:03:
43:5c:63:9b:9f:75:32:45:3a:31:cf:19:ea:03:65:eb:d8:30:
43:c9:48:a2:2f:f6:12:d0:5a:f6:3d:42:2c:0d:60:15:f1:c8:
ad:a3:cb:05:6f:a2:9e:a4:34:f5:df:22:b4:6a:2d:49:b0:af:
b2:3a:70:1a:66:66:ad:77:2a:01:76:94:9d:14:70:85:de:d8:
67:62:f6:fe:1b:ab:63:5b:59:d0:72:d0:ce:b6:6b:15:77:53:
ad:0b:98:13:2d:03:59:08:3e:1c:6c:dd:e8:49:5b:6c:9b:19:
64:e2:ab:3f:82:e1:c6:d0:88:74:c2:81:97:3e:f4:72:2b:13:
a6:da:83:f8:59:7e:e9:20:66:90:3f:24:bd:c7:2d:af:75:67:
8d:ca:40:c3:20:63:51:a5:4e:4d:e7:71:7a:d9:e6:98:ee:3e:
55:f5:01:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:07:28 2025 by rpki-client