Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/HNHqXpo8I_MRkedpWBP0x9Z_wXk.roa
File: HNHqXpo8I_MRkedpWBP0x9Z_wXk.roa (raw, json)
Hash identifier: jHrH4bwnWH2DAmTOGrF3dVyJATvM8dNMxyrglUB4vIw=
Subject key identifier: 1C:D1:EA:5E:9A:3C:23:F3:11:91:E7:69:58:13:F4:C7:D6:7F:C1:79
Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138
Certificate serial: 96
Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/HNHqXpo8I_MRkedpWBP0x9Z_wXk.roa
Signing time: Wed 04 Dec 2024 19:10:58 +0000
ROA not before: Wed 04 Dec 2024 19:10:58 +0000
ROA not after: Sat 15 Nov 2025 01:30:03 +0000
asID: 399077
IP address blocks: 124.40.53.128/25 maxlen: 25
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150 (0x96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138
Validity
Not Before: Dec 4 19:10:58 2024 GMT
Not After : Nov 15 01:30:03 2025 GMT
Subject: CN=1CD1EA5E9A3C23F31191E7695813F4C7D67FC179
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:99:5c:09:72:00:d2:8f:1a:5c:3e:8c:41:18:
c7:7d:f5:a8:57:22:f8:1f:ba:21:7e:eb:ac:f6:13:
a8:58:59:1a:5c:8f:d6:46:01:73:94:b9:08:9d:9f:
ef:f3:3e:8c:8f:16:b2:9f:bd:99:8a:d7:48:1c:ad:
31:99:11:d0:db:0d:70:02:a6:b0:ce:70:12:6b:4b:
09:35:2f:10:fa:3c:68:4a:02:a8:94:6f:d5:d5:7c:
2d:08:22:5c:9a:a3:39:7b:0f:24:b0:fc:3f:01:22:
a7:61:0a:53:bf:28:48:e2:40:13:36:c6:d5:31:e2:
fa:a1:55:a7:9d:47:fb:fc:93:0e:ff:11:50:26:4f:
12:d2:55:ff:39:0b:bb:73:a9:d5:58:c7:a2:9c:17:
85:af:77:88:0e:07:6c:0d:07:db:6a:12:11:ed:08:
17:69:c4:ab:28:30:ee:1d:e5:d1:62:6d:0e:44:f6:
2b:b2:20:2e:7e:d5:31:ee:27:32:eb:3d:98:62:00:
15:2c:70:08:4b:b5:8c:e1:9a:b6:a7:19:e3:10:61:
c5:5f:e9:ac:57:80:d6:12:ce:6d:5f:3c:84:3b:a1:
87:fa:72:09:24:c9:e5:f9:3f:11:72:90:f7:db:72:
f6:15:26:c7:1b:fc:3f:cd:ca:74:6f:d1:46:9b:bd:
03:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:D1:EA:5E:9A:3C:23:F3:11:91:E7:69:58:13:F4:C7:D6:7F:C1:79
X509v3 Authority Key Identifier:
keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/HNHqXpo8I_MRkedpWBP0x9Z_wXk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
124.40.53.128/25
Signature Algorithm: sha256WithRSAEncryption
8e:83:81:a2:e5:01:9d:c4:49:96:92:96:60:64:13:82:42:81:
31:d3:0f:0b:1e:f3:b0:c0:ee:bb:00:b8:15:d0:e9:d6:ac:ea:
c8:a5:3b:d0:43:73:29:74:bc:8b:be:c5:af:1a:0e:44:05:37:
0e:db:eb:3b:52:67:31:37:30:72:42:d5:d0:33:50:eb:94:39:
c6:36:22:81:3e:95:a8:c3:30:5f:17:cc:c4:2b:c2:c1:92:84:
59:9e:ea:2c:15:41:f6:d2:29:2b:39:03:6c:35:c7:3b:a5:6b:
db:9f:83:5b:7c:6e:83:97:51:2b:26:41:68:02:7c:93:3a:e9:
e9:1c:05:da:01:8f:7a:46:b0:72:0a:de:9f:12:a9:e1:f5:f4:
27:66:6c:5a:de:8f:69:25:50:5d:74:75:94:b5:7d:ea:8a:32:
f2:b0:e8:c7:fc:ae:02:76:ac:62:fb:a0:57:9a:c6:8b:5c:3a:
7e:a2:62:a9:cc:a4:d0:ed:c6:92:81:6e:fe:ea:9c:f8:5e:a6:
01:f7:5f:e6:6a:3d:af:83:ef:a6:ac:37:5a:50:9e:ef:45:d5:
2e:cc:61:d3:ea:e9:ef:0e:0e:d3:cd:c0:ae:11:bc:40:5d:e9:
98:8e:c9:c5:1c:3b:9b:63:e3:11:35:7e:de:4c:96:9e:31:9a:
7a:ff:09:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 20:04:42 2025 by rpki-client