Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/VqriLYI9en5WJBBSTju97FsXFfY.roa
File: VqriLYI9en5WJBBSTju97FsXFfY.roa (raw, json)
Hash identifier: hERZdx5yAm3qODymvkZgYYZbzkcRRmQoj4Zk4xm2xyA=
Subject key identifier: 56:AA:E2:2D:82:3D:7A:7E:56:24:10:52:4E:3B:BD:EC:5B:17:15:F6
Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138
Certificate serial: 99
Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/VqriLYI9en5WJBBSTju97FsXFfY.roa
Signing time: Wed 04 Dec 2024 19:14:56 +0000
ROA not before: Wed 04 Dec 2024 19:14:56 +0000
ROA not after: Sat 15 Nov 2025 01:30:03 +0000
asID: 2914
IP address blocks: 124.40.32.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153 (0x99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138
Validity
Not Before: Dec 4 19:14:56 2024 GMT
Not After : Nov 15 01:30:03 2025 GMT
Subject: CN=56AAE22D823D7A7E562410524E3BBDEC5B1715F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:86:93:a5:27:e5:b1:1c:97:72:5a:15:ac:8e:
21:51:18:98:d1:74:13:36:bc:c5:c6:1b:10:e1:1b:
fc:0e:2d:67:59:82:4c:9c:50:bb:c8:16:12:90:be:
66:4d:57:14:c9:81:4d:7c:b3:a6:f2:93:e0:a2:c0:
86:1f:36:28:fa:10:f6:4e:0f:33:49:4b:af:bf:17:
0f:68:89:3b:d7:98:ce:d2:31:b0:16:86:8d:ea:5b:
3a:68:39:6a:4a:ea:74:75:9f:de:18:1c:0f:54:9b:
b1:fe:0e:fe:25:27:b3:78:07:10:88:29:c4:69:ad:
00:ef:b1:61:d3:b3:63:0e:28:53:cc:14:f0:b3:9e:
9c:97:eb:e3:d9:3d:ea:ab:bb:0e:59:95:a5:4d:89:
67:18:f5:97:1c:f1:bf:33:66:1f:d0:4d:0f:ee:8d:
6e:e0:ea:eb:48:4e:df:bd:19:fb:61:e2:08:e8:7b:
50:28:f9:3b:6d:44:53:49:06:4e:f4:5e:e5:b9:8b:
7d:ae:d0:d5:4d:36:46:16:df:b7:0e:b9:ab:61:28:
a8:c4:3d:63:bd:2a:cc:57:85:18:e3:08:f4:1a:ad:
82:ea:b5:00:d3:32:c4:7a:c7:d8:c1:81:9b:65:e7:
67:ab:a7:9f:d1:d6:34:f7:85:7f:5b:f0:8f:36:4d:
35:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:AA:E2:2D:82:3D:7A:7E:56:24:10:52:4E:3B:BD:EC:5B:17:15:F6
X509v3 Authority Key Identifier:
keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/VqriLYI9en5WJBBSTju97FsXFfY.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
124.40.32.0/19
Signature Algorithm: sha256WithRSAEncryption
a9:c1:51:7e:9e:22:d8:27:93:33:cf:ba:9f:da:67:6a:31:4b:
8f:1b:69:31:e1:0a:73:5c:a6:b9:43:76:bb:a9:50:3c:d3:21:
49:f6:32:04:ec:bd:eb:82:4c:54:dc:64:78:5d:18:3e:92:7a:
a7:39:2a:80:eb:b5:cc:3e:d0:f7:32:7b:ab:62:7b:24:9d:9d:
1e:2b:12:9c:27:28:e7:a3:21:ac:11:66:f4:f0:7f:6f:43:22:
89:05:0e:81:59:ce:77:c5:b9:44:75:5b:e7:4e:b1:0c:7b:58:
97:95:de:0d:1b:10:16:4f:cc:a6:ae:ff:63:3d:9d:f5:6f:ca:
79:0d:52:68:b9:ea:8f:ba:96:91:0e:c8:46:cd:86:11:54:bd:
6e:cd:a7:5e:bf:ed:d1:60:69:6f:1d:be:a0:a2:55:4f:8b:cd:
e0:12:96:84:eb:67:74:30:7d:49:d1:ce:2c:6a:32:70:32:dd:
fe:6c:db:8e:ea:cd:f0:8c:68:27:4f:7a:a1:a8:a0:c5:0b:93:
f6:71:e0:fd:07:d3:bd:92:5e:4d:b6:e1:9d:85:7b:76:3c:f5:
38:c5:cf:9d:1e:64:21:5f:dc:f7:8d:44:cb:91:fb:56:9e:20:
94:27:16:73:f9:98:b4:69:da:79:cc:7c:94:f8:04:4b:e6:c3:
7c:cc:6a:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:30:42 2025 by rpki-client