Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/249/QUWqxhSDc2wiMRCMKC9Vs6fMi_c.roa
File: QUWqxhSDc2wiMRCMKC9Vs6fMi_c.roa (raw, json)
Hash identifier: K0T0Uf8sbeecCirF4fSRBLV0xU2+Czc9eD7ElfZG0Qw=
Subject key identifier: 41:45:AA:C6:14:83:73:6C:22:31:10:8C:28:2F:55:B3:A7:CC:8B:F7
Certificate issuer: /CN=275D9782B13E99128CD34F22C09FE8E7B5CBA70B
Certificate serial: 36
Authority key identifier: 27:5D:97:82:B1:3E:99:12:8C:D3:4F:22:C0:9F:E8:E7:B5:CB:A7:0B
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/J12XgrE-mRKM008iwJ_o57XLpws.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/249/QUWqxhSDc2wiMRCMKC9Vs6fMi_c.roa
Signing time: Fri 31 Jan 2025 01:33:30 +0000
ROA not before: Fri 31 Jan 2025 01:33:30 +0000
ROA not after: Thu 15 Jan 2026 01:30:03 +0000
asID: 7679
IP address blocks: 58.3.128.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54 (0x36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=275D9782B13E99128CD34F22C09FE8E7B5CBA70B
Validity
Not Before: Jan 31 01:33:30 2025 GMT
Not After : Jan 15 01:30:03 2026 GMT
Subject: CN=4145AAC61483736C2231108C282F55B3A7CC8BF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:03:4c:b7:7e:78:e4:8a:bb:a6:64:ce:ed:9f:
a2:07:78:b2:e1:67:3d:1a:cf:ec:0a:56:8a:14:f2:
77:fb:7f:7f:41:66:43:fa:ea:39:bc:4e:ff:30:2a:
61:60:33:aa:c6:c0:bf:94:65:ff:51:be:e6:88:03:
ba:45:29:34:b1:eb:c8:16:54:1d:80:0c:4c:a8:0c:
c3:30:d3:0e:c8:a9:51:31:6c:e2:e3:1f:de:0c:bf:
05:a8:fd:42:66:88:b0:38:70:52:5d:b4:6f:a7:eb:
79:c4:bb:e6:1b:72:45:d1:d3:32:65:fe:5d:ac:f5:
7a:e3:f7:44:d1:c4:30:97:69:00:24:99:a7:28:b5:
d2:21:c4:e9:61:88:ef:08:c5:68:b6:a5:2b:f2:f4:
41:dd:44:e2:25:82:c2:c5:a6:c3:3f:d4:97:65:43:
11:8c:cf:88:02:6c:96:e7:b2:1c:a8:7a:d3:f2:c9:
0d:ce:ab:f8:fc:bd:8f:58:4a:5a:95:04:b0:44:e5:
7d:8a:7b:1a:9a:10:a3:de:c0:26:9a:fa:e3:2d:ac:
2f:82:fa:d1:bf:b0:cc:8f:fe:2a:17:06:cc:ce:ca:
f5:68:8d:24:cc:84:65:a6:65:97:e3:52:86:08:92:
99:f7:ce:45:18:26:df:e7:2e:4c:70:b1:6e:b6:11:
83:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:45:AA:C6:14:83:73:6C:22:31:10:8C:28:2F:55:B3:A7:CC:8B:F7
X509v3 Authority Key Identifier:
keyid:27:5D:97:82:B1:3E:99:12:8C:D3:4F:22:C0:9F:E8:E7:B5:CB:A7:0B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/249/J12XgrE-mRKM008iwJ_o57XLpws.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/J12XgrE-mRKM008iwJ_o57XLpws.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/249/QUWqxhSDc2wiMRCMKC9Vs6fMi_c.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
58.3.128.0/17
Signature Algorithm: sha256WithRSAEncryption
34:6c:48:9d:bc:a4:43:7b:ee:2d:a4:2c:32:45:7f:c9:d3:d9:
64:44:e2:8c:16:39:eb:17:ca:8b:4a:94:94:00:6d:c7:c8:a0:
99:a1:f2:dc:d6:ab:27:55:05:74:3a:fe:72:b2:3a:45:43:7a:
eb:36:e4:1c:1e:ca:b3:43:d8:b1:f6:73:9a:d2:2c:1f:6c:71:
e0:ee:64:5f:b8:50:7b:1c:d0:24:1e:5b:fd:7a:84:9d:05:08:
f4:53:27:dd:cb:39:d0:46:12:5d:e8:f7:37:dc:4e:f2:d7:5e:
e8:fb:7f:b8:63:5a:b1:38:22:7e:47:6a:16:66:94:99:21:3d:
31:8f:e6:89:c5:bf:17:ae:46:b2:b2:cf:14:87:e0:72:c7:52:
b5:b4:8e:85:0d:89:8f:2e:ee:95:69:e4:7f:f6:12:e2:48:89:
10:19:87:fa:f9:70:88:31:44:81:3b:4c:21:f1:cb:ab:a5:05:
da:88:31:a9:ef:41:95:64:7e:f6:8b:1c:f1:cc:25:9f:6c:b7:
56:29:f0:2b:81:a0:14:87:e0:39:a5:29:44:f2:8a:d2:09:27:
00:57:77:f8:f6:0c:e6:a8:7c:32:7c:b1:e3:db:7a:8c:e4:d2:
43:82:6c:5c:9b:27:38:66:67:41:d6:9c:95:9e:ec:c9:96:17:
10:7a:74:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:19:41 2025 by rpki-client