Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/rNqL4vkU1z32buv1YAAMoYo78kU.roa
File: rNqL4vkU1z32buv1YAAMoYo78kU.roa (raw, json)
Hash identifier: L9Z84ak8LevewV7NcfYUydk0EvpQ6gm8ny8f/NoREcU=
Subject key identifier: AC:DA:8B:E2:F9:14:D7:3D:F6:6E:EB:F5:60:00:0C:A1:8A:3B:F2:45
Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138
Certificate serial: 7D
Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/rNqL4vkU1z32buv1YAAMoYo78kU.roa
Signing time: Tue 03 Dec 2024 17:16:22 +0000
ROA not before: Tue 03 Dec 2024 17:16:22 +0000
ROA not after: Sat 15 Nov 2025 01:30:03 +0000
asID: 2914
IP address blocks: 153.254.0.0/15 maxlen: 15
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125 (0x7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138
Validity
Not Before: Dec 3 17:16:22 2024 GMT
Not After : Nov 15 01:30:03 2025 GMT
Subject: CN=ACDA8BE2F914D73DF66EEBF560000CA18A3BF245
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e5:84:72:c5:eb:dd:01:ba:e5:8b:e3:fb:a8:
87:c6:a3:e8:de:3c:a2:6a:bd:cd:b7:39:a2:51:7f:
37:ca:52:d0:ea:3c:2a:e7:0e:37:7f:c1:a0:b3:45:
d7:e5:b5:ae:6b:fd:f4:52:d5:5e:e8:87:3b:be:06:
c7:1f:61:8d:d3:3f:1e:d9:2b:75:09:ad:aa:0c:39:
78:ad:b3:a5:89:cd:9d:93:5e:25:5a:0f:3e:66:a1:
c6:2d:e8:97:a2:65:81:c8:af:d2:8a:92:b6:63:68:
59:b7:18:a0:af:2f:05:21:8d:06:e4:74:b6:5a:7a:
da:a3:fe:f1:54:0b:b7:bb:a0:af:9c:5b:43:f3:75:
8f:94:71:ee:12:fd:57:2b:a9:e5:19:3b:6e:bc:7d:
ab:3d:e9:3d:7e:4f:8c:cc:a6:8f:b9:00:04:ed:e2:
a1:20:27:70:40:bc:14:ec:9c:b6:1b:bd:50:27:46:
16:30:5f:00:08:36:f7:93:e3:39:24:ea:b2:6f:0b:
f3:a9:45:4b:c8:67:a5:65:b8:5d:f2:82:65:35:3b:
a5:ce:ae:4c:97:66:a8:ef:3c:f6:ad:4d:a1:95:60:
14:b8:eb:0e:e2:44:c6:b5:e2:c7:19:04:19:07:65:
d9:bf:d1:e4:3f:93:3c:2a:24:85:36:ae:25:d4:05:
3c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:DA:8B:E2:F9:14:D7:3D:F6:6E:EB:F5:60:00:0C:A1:8A:3B:F2:45
X509v3 Authority Key Identifier:
keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/rNqL4vkU1z32buv1YAAMoYo78kU.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
153.254.0.0/15
Signature Algorithm: sha256WithRSAEncryption
7f:65:2d:10:c8:b2:26:22:aa:11:1c:49:f4:fd:03:8d:bb:d7:
23:39:c6:f8:e8:7f:12:e5:04:9f:fe:5c:99:a4:58:5c:02:aa:
a9:4a:25:06:45:70:e3:15:a2:99:b4:39:95:0a:77:39:8e:46:
c0:d8:27:78:2b:56:ca:cc:0c:fb:73:24:12:25:18:bc:e7:fb:
aa:9d:ff:ac:d2:17:4d:fd:2b:03:b0:c1:23:b4:31:19:9d:6f:
f3:ec:e4:da:ca:07:ce:b2:7a:2c:65:38:ca:f7:d6:aa:19:65:
99:92:85:6a:ee:89:ee:65:95:4f:f2:a2:ad:c9:a0:54:76:51:
89:be:38:ea:5f:10:f2:0f:e6:0b:26:ae:18:64:6a:92:00:60:
56:69:e1:8e:3f:d2:74:d8:3a:4e:5a:f2:70:a5:6f:02:e6:8b:
59:42:11:30:a3:f9:0b:98:f8:ea:50:14:18:fa:cc:27:e6:f3:
33:c5:47:2d:a2:49:66:0c:3f:80:8b:3d:02:86:74:75:35:7e:
52:9d:19:90:1c:da:73:24:cc:f6:1d:a6:20:34:1f:34:9f:1e:
66:c6:3a:02:d0:a4:98:52:31:84:94:1f:e5:eb:d7:68:c5:49:
74:9b:8f:e9:25:1d:c0:af:90:61:71:06:83:4e:35:c1:0d:1a:
88:9a:67:04
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:20:19 2025 by rpki-client