Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20058/4G2IZxJ2kT0ok-yjT3ATAV-dtc4.roa
File: 4G2IZxJ2kT0ok-yjT3ATAV-dtc4.roa (raw, json)
Hash identifier: bE7xBqBsHkLVDVIdOs0TPCqwbp4B2kDAm2Re00Q8EHY=
Subject key identifier: E0:6D:88:67:12:76:91:3D:28:93:EC:A3:4F:70:13:01:5F:9D:B5:CE
Certificate issuer: /CN=E756D9A5CE9ACAC978360011F7A7CFC430181D53
Certificate serial: 19
Authority key identifier: E7:56:D9:A5:CE:9A:CA:C9:78:36:00:11:F7:A7:CF:C4:30:18:1D:53
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/51bZpc6aysl4NgAR96fPxDAYHVM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20058/4G2IZxJ2kT0ok-yjT3ATAV-dtc4.roa
Signing time: Tue 31 Dec 2024 01:29:17 +0000
ROA not before: Tue 31 Dec 2024 01:29:17 +0000
ROA not after: Mon 15 Dec 2025 01:30:03 +0000
asID: 24229
IP address blocks: 202.126.16.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25 (0x19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E756D9A5CE9ACAC978360011F7A7CFC430181D53
Validity
Not Before: Dec 31 01:29:17 2024 GMT
Not After : Dec 15 01:30:03 2025 GMT
Subject: CN=E06D88671276913D2893ECA34F7013015F9DB5CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:4b:98:9d:83:70:9e:8e:59:4c:6a:5d:97:3c:
00:0a:83:d9:b7:0b:8e:1c:4c:f1:af:7c:a6:c0:9d:
63:b2:33:0d:34:9a:52:97:50:12:fe:29:b8:11:14:
df:fa:9b:b5:36:b3:9c:74:59:56:a1:89:53:c3:f4:
b1:63:3c:64:2c:f0:38:9a:03:d0:0f:6b:31:4c:9f:
13:13:60:b2:62:6b:a6:8d:84:77:cf:00:77:83:ac:
18:8d:17:a9:08:29:ad:1a:98:7c:75:14:cb:5b:b7:
84:74:f6:52:c7:a7:5c:78:60:83:c1:29:d2:2d:ff:
84:43:e0:df:fa:84:4e:09:91:08:8c:8f:a4:00:1e:
7d:76:88:6d:72:63:5c:a4:1c:c9:90:ea:fb:85:05:
ad:95:ff:49:af:dc:46:53:e8:52:00:ea:1a:cc:f5:
06:c1:ce:03:ca:13:8d:04:21:35:25:37:de:ca:f5:
a3:3d:73:41:70:0c:c5:5f:a5:63:04:62:b1:2a:f7:
27:4a:51:38:8d:bc:32:d1:2b:17:67:40:2e:69:67:
c0:6d:02:6a:c4:3b:2e:54:4f:84:61:45:ed:2e:ff:
aa:22:37:18:06:1b:08:3d:b6:2b:20:3a:5b:a8:46:
e5:98:36:e7:22:49:d3:0e:06:f1:53:27:02:42:3c:
df:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:6D:88:67:12:76:91:3D:28:93:EC:A3:4F:70:13:01:5F:9D:B5:CE
X509v3 Authority Key Identifier:
keyid:E7:56:D9:A5:CE:9A:CA:C9:78:36:00:11:F7:A7:CF:C4:30:18:1D:53
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20058/51bZpc6aysl4NgAR96fPxDAYHVM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/51bZpc6aysl4NgAR96fPxDAYHVM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20058/4G2IZxJ2kT0ok-yjT3ATAV-dtc4.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.126.16.0/22
Signature Algorithm: sha256WithRSAEncryption
43:e5:02:a6:a3:fb:37:6b:23:0e:ff:5d:95:e5:36:6d:a4:62:
2b:e5:8c:c5:73:75:fe:35:79:76:23:23:2c:83:c5:48:ea:81:
e0:57:f0:ff:7f:9d:66:a8:df:b5:75:f7:4d:ad:ab:45:ce:9f:
fc:69:0c:87:5d:29:b2:fa:db:9d:12:eb:76:97:b8:8d:43:33:
9b:c1:24:ca:52:0b:5b:65:6c:35:41:bd:06:e5:00:75:78:c8:
ce:4b:74:1b:d2:c0:f9:ba:ff:d3:35:a6:54:67:3c:14:9e:d0:
4d:a4:37:4d:a8:3a:a9:6e:f0:a8:36:9b:09:17:69:78:da:c9:
17:5c:be:00:b1:ce:74:ae:ba:24:72:cc:57:9d:82:02:5d:6b:
4b:09:99:2b:ca:25:ea:e7:42:05:28:72:ac:58:15:43:53:ef:
29:d7:92:bd:3c:7a:13:33:f3:64:cd:cf:47:2c:72:5e:ab:84:
94:de:4b:1f:42:26:9f:99:d4:29:f1:0a:12:08:d2:b1:ab:b4:
3b:f1:87:05:33:72:74:c8:2f:d3:83:70:c7:77:e4:e4:ce:d1:
5b:3a:61:01:c0:4b:24:b8:a9:86:cd:af:c2:81:17:2d:78:71:
78:53:96:f7:71:1b:c1:3d:f7:24:3d:35:b7:2e:78:e5:41:d7:
13:1c:ac:72
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:19:58 2025 by rpki-client