Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/234/BlK3fSvHLPvWuHUjnb0fandqfjw.roa
File: BlK3fSvHLPvWuHUjnb0fandqfjw.roa (raw, json)
Hash identifier: zkH1JLdUR1yfdkkswXO5zFvJzZEXUqr/FNtzezkwVx0=
Subject key identifier: 06:52:B7:7D:2B:C7:2C:FB:D6:B8:75:23:9D:BD:1F:6A:77:6A:7E:3C
Certificate issuer: /CN=500EF358BCBE14A358CA4EEE41B4E90DC923E9D2
Certificate serial: A4
Authority key identifier: 50:0E:F3:58:BC:BE:14:A3:58:CA:4E:EE:41:B4:E9:0D:C9:23:E9:D2
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/BlK3fSvHLPvWuHUjnb0fandqfjw.roa
Signing time: Sat 30 Nov 2024 01:31:21 +0000
ROA not before: Sat 30 Nov 2024 01:31:21 +0000
ROA not after: Sat 15 Nov 2025 01:30:03 +0000
asID: 9351
IP address blocks: 202.59.176.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164 (0xa4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=500EF358BCBE14A358CA4EEE41B4E90DC923E9D2
Validity
Not Before: Nov 30 01:31:21 2024 GMT
Not After : Nov 15 01:30:03 2025 GMT
Subject: CN=0652B77D2BC72CFBD6B875239DBD1F6A776A7E3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4b:8d:bf:18:5e:76:5e:97:d4:b9:7d:41:05:
e1:46:59:98:d9:df:4c:66:6e:f5:a8:5a:19:4b:9a:
7a:b2:36:f4:6d:cd:62:a9:ee:58:8f:6d:e2:1a:70:
fc:dd:7b:a5:26:50:0d:44:8a:04:ec:a3:ae:81:87:
a1:9c:52:28:11:30:bb:46:18:fe:2d:da:ba:d9:8d:
80:31:ae:51:c4:60:a7:e9:86:3b:38:f3:3c:a7:8e:
bb:6c:55:43:ae:09:a8:e8:45:95:79:e8:c4:3f:fc:
00:b2:01:24:35:a1:b4:de:c0:c4:31:20:7a:de:69:
37:0d:8a:c9:22:8e:d5:87:69:01:02:d6:11:d5:6f:
86:0e:05:13:53:f2:bf:ef:b1:a4:59:a0:1b:f2:5a:
3c:fd:da:0a:02:61:72:95:aa:43:08:47:d2:67:71:
ca:42:37:56:bd:3b:09:12:5d:1b:c1:54:08:aa:20:
42:a1:28:dc:db:f8:0b:96:fd:e7:4c:e1:39:1c:8e:
38:a8:67:be:33:76:18:70:eb:b1:c7:c8:18:f6:3f:
43:c3:43:87:64:73:f3:d1:05:d8:56:2f:23:d0:6a:
ee:ac:83:df:22:fb:b6:b6:5e:a2:06:ed:75:3a:1e:
b6:6c:3c:95:9f:e8:0c:97:97:ee:47:d5:a5:ac:57:
dd:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:52:B7:7D:2B:C7:2C:FB:D6:B8:75:23:9D:BD:1F:6A:77:6A:7E:3C
X509v3 Authority Key Identifier:
keyid:50:0E:F3:58:BC:BE:14:A3:58:CA:4E:EE:41:B4:E9:0D:C9:23:E9:D2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/UA7zWLy-FKNYyk7uQbTpDckj6dI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/BlK3fSvHLPvWuHUjnb0fandqfjw.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.59.176.0/20
Signature Algorithm: sha256WithRSAEncryption
86:f5:a5:f5:26:19:b3:6f:76:14:2e:c4:2d:ee:06:72:f7:e9:
73:65:12:19:74:75:c3:48:16:cd:c7:d4:75:b8:f7:e9:c8:45:
7a:dc:34:13:b7:29:12:6a:af:d3:bf:bf:49:ba:bb:cf:63:07:
1c:f9:5f:35:ce:37:78:e9:dd:9b:f5:40:14:a9:e7:7f:70:92:
88:90:74:26:c9:5a:e8:b6:88:47:ee:27:1d:34:9a:4e:69:c7:
1c:0e:6d:f9:87:e6:ca:9a:f8:2d:70:cd:2c:dd:71:20:3b:67:
d3:12:d2:d1:ff:52:54:eb:49:1b:87:0b:f5:a6:a0:cf:b3:87:
4b:60:13:2d:e1:39:23:cb:bf:b9:e3:44:fd:5f:ee:78:b9:a1:
83:79:c0:07:66:d4:4e:b2:77:5e:45:69:17:d4:2a:5c:70:35:
c3:cf:1b:b7:49:16:51:09:2e:3c:ff:f7:5b:95:77:fd:e7:94:
90:2b:0e:8b:8c:91:f4:77:55:d2:1e:60:f8:56:6e:25:11:ea:
80:ed:43:db:10:37:96:f2:9b:04:a3:a8:2a:a9:bb:01:c7:ba:
b1:7a:51:e7:e2:9b:87:07:49:e3:b2:57:72:71:33:0f:07:16:
b6:84:53:22:c6:7d:a9:73:07:96:07:58:35:67:46:dc:bb:94:
73:88:73:1d
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTAw
RUYzNThCQ0JFMTRBMzU4Q0E0RUVFNDFCNEU5MERDOTIzRTlEMjAeFw0yNDExMzAw
MTMxMjFaFw0yNTExMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDA2NTJCNzdEMkJDNzJD
RkJENkI4NzUyMzlEQkQxRjZBNzc2QTdFM0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC2S42/GF52XpfUuX1BBeFGWZjZ30xmbvWoWhlLmnqyNvRtzWKp
7liPbeIacPzde6UmUA1EigTso66Bh6GcUigRMLtGGP4t2rrZjYAxrlHEYKfphjs4
8zynjrtsVUOuCajoRZV56MQ//ACyASQ1obTewMQxIHreaTcNiskijtWHaQEC1hHV
b4YOBRNT8r/vsaRZoBvyWjz92goCYXKVqkMIR9JnccpCN1a9OwkSXRvBVAiqIEKh
KNzb+AuW/edM4TkcjjioZ74zdhhw67HHyBj2P0PDQ4dkc/PRBdhWLyPQau6sg98i
+7a2XqIG7XU6HrZsPJWf6AyXl+5H1aWsV903AgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUBlK3fSvHLPvWuHUjnb0fandqfjwwHwYDVR0jBBgwFoAUUA7zWLy+FKNYyk7u
QbTpDckj6dIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzIzNC9VQTd6V0x5LUZLTll5azd1UWJUcERja2o2ZEkuY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9VQTd6V0x5LUZLTll5azd1UWJUcERj
a2o2ZEkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMjM0L0JsSzNmU3ZITFB2V3VIVWpuYjBmYW5kcWZqdy5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBATKO7AwDQYJKoZIhvcNAQELBQADggEBAIb1pfUmGbNvdhQuxC3uBnL36XNl
Ehl0dcNIFs3H1HW49+nIRXrcNBO3KRJqr9O/v0m6u89jBxz5XzXON3jp3Zv1QBSp
539wkoiQdCbJWui2iEfuJx00mk5pxxwObfmH5sqa+C1wzSzdcSA7Z9MS0tH/UlTr
SRuHC/WmoM+zh0tgEy3hOSPLv7njRP1f7ni5oYN5wAdm1E6yd15FaRfUKlxwNcPP
G7dJFlEJLjz/91uVd/3nlJArDouMkfR3VdIeYPhWbiUR6oDtQ9sQN5bymwSjqCqp
uwHHurF6Uefim4cHSeOyV3JxMw8HFraEUyLGfalzB5YHWDVnRty7lHOIcx0=
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:44:46 2025 by rpki-client