Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/HGFOcnC1XWN9C0ZrCulF9TqXbHQ.roa
File: HGFOcnC1XWN9C0ZrCulF9TqXbHQ.roa (raw, json)
Hash identifier: eWH6SyG0RCgCYiP/L4Hfzj8sHXKBRCalCBDRJcfH5z0=
Subject key identifier: 1C:61:4E:72:70:B5:5D:63:7D:0B:46:6B:0A:E9:45:F5:3A:97:6C:74
Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138
Certificate serial: 9D
Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/HGFOcnC1XWN9C0ZrCulF9TqXbHQ.roa
Signing time: Wed 04 Dec 2024 19:23:02 +0000
ROA not before: Wed 04 Dec 2024 19:23:02 +0000
ROA not after: Sat 15 Nov 2025 01:30:03 +0000
asID: 55901
IP address blocks: 61.213.152.128/26 maxlen: 26
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157 (0x9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138
Validity
Not Before: Dec 4 19:23:02 2024 GMT
Not After : Nov 15 01:30:03 2025 GMT
Subject: CN=1C614E7270B55D637D0B466B0AE945F53A976C74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:a3:a2:75:08:8e:ba:54:de:02:5d:95:a0:b6:
47:8c:e1:76:e1:23:a7:4c:11:15:13:b1:30:f5:62:
fb:1a:0d:8c:d6:80:52:71:6d:82:94:f2:75:6c:5f:
c2:32:77:14:2c:0d:09:7d:ab:10:b7:69:6d:d6:70:
27:0d:50:a7:6c:fc:0c:ba:22:f8:61:b9:34:4c:43:
bc:af:93:fc:bf:1a:7c:62:c5:ed:56:6b:63:e5:af:
9c:76:3b:6b:ef:4a:2d:0a:83:ab:3d:f7:ef:a6:59:
8e:93:a7:37:a2:68:76:0c:64:1f:3e:dd:52:8e:97:
aa:80:90:34:db:ca:3f:37:bf:d4:b6:c6:ba:e3:56:
9a:68:13:15:79:32:45:be:d0:84:7a:9a:10:e6:a6:
b2:d0:92:8a:6b:eb:3e:bd:84:e1:66:39:1e:da:81:
1b:79:3b:c3:4e:68:73:cf:16:3b:ed:84:9b:21:bd:
01:85:a4:4f:67:04:d3:8a:f0:ac:08:25:ce:c2:3c:
8b:9b:94:a9:eb:53:12:f8:f0:c3:ed:e5:56:bd:b6:
88:4e:b5:ab:78:90:f4:1c:a5:e2:2f:d4:31:a6:d3:
72:44:0d:cd:76:44:da:4b:ac:46:ca:4f:da:d2:2f:
6a:62:eb:44:64:28:01:bc:34:60:ae:30:34:1e:b0:
65:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:61:4E:72:70:B5:5D:63:7D:0B:46:6B:0A:E9:45:F5:3A:97:6C:74
X509v3 Authority Key Identifier:
keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/HGFOcnC1XWN9C0ZrCulF9TqXbHQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
61.213.152.128/26
Signature Algorithm: sha256WithRSAEncryption
a5:a8:3f:67:9b:29:8a:c7:13:2c:c8:18:85:85:64:bd:52:17:
9f:82:c2:ba:2f:4d:4e:9a:1c:97:f3:58:3d:bd:67:d1:b2:35:
1e:ec:74:32:41:c9:ed:dc:6c:72:3d:0f:10:9f:4f:ba:97:1f:
5a:7d:7b:bb:6f:69:72:56:c9:e6:c5:4c:07:f4:ee:b2:1c:da:
6c:33:3e:44:71:e7:02:c5:db:0d:6b:bf:91:2d:fa:ff:d4:80:
61:1e:c2:9e:0d:12:a2:7c:02:47:42:16:2e:e0:7f:ce:30:27:
89:0a:93:d6:01:92:d9:d9:b3:ea:08:c1:33:b9:fd:90:7d:72:
c7:65:86:11:08:44:23:36:14:09:6e:3b:9a:37:b2:87:6f:b9:
68:86:2f:59:18:06:83:7b:39:82:1e:94:22:8e:ec:10:c9:61:
da:30:4f:05:c3:d3:1c:2c:de:1f:6c:97:f5:76:ee:e2:27:08:
dc:2b:d1:d0:a8:72:47:e5:96:38:ad:74:15:a5:7f:9b:a3:f5:
30:98:10:fd:95:04:63:38:56:10:17:b4:3c:25:5f:09:17:c5:
02:c0:92:19:9d:b9:a9:8f:df:df:09:05:bb:f4:aa:81:99:3b:
c9:40:a3:a9:55:c8:cf:04:1b:e5:ed:67:65:24:ad:d2:eb:34:
55:1f:db:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:17:28 2025 by rpki-client