Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30175/hehhgt7l4nmetHYS_anp3CbHiyg.roa
File: hehhgt7l4nmetHYS_anp3CbHiyg.roa (raw, json)
Hash identifier: BBDSkVC8BPCIbBaZEwzXnJ2FWLQIHqSxEYAcXaTt4C4=
Subject key identifier: 85:E8:61:82:DE:E5:E2:79:9E:B4:76:12:FD:A9:E9:DC:26:C7:8B:28
Certificate issuer: /CN=DFBCD3F8BCA91915C4533A2C0A69C3D35B2E688D
Certificate serial: 25
Authority key identifier: DF:BC:D3:F8:BC:A9:19:15:C4:53:3A:2C:0A:69:C3:D3:5B:2E:68:8D
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/37zT-LypGRXEUzosCmnD01suaI0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/hehhgt7l4nmetHYS_anp3CbHiyg.roa
Signing time: Thu 31 Oct 2024 01:31:39 +0000
ROA not before: Thu 31 Oct 2024 01:31:39 +0000
ROA not after: Wed 15 Oct 2025 01:30:02 +0000
asID: 37901
IP address blocks: 240b:11::/32 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37 (0x25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFBCD3F8BCA91915C4533A2C0A69C3D35B2E688D
Validity
Not Before: Oct 31 01:31:39 2024 GMT
Not After : Oct 15 01:30:02 2025 GMT
Subject: CN=85E86182DEE5E2799EB47612FDA9E9DC26C78B28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e3:6c:ac:38:63:0a:e5:a4:32:77:85:88:13:
65:cd:62:77:b8:33:cd:3d:0c:1e:02:e9:9f:09:da:
e7:b7:2f:ef:c2:9b:c6:19:bc:6e:17:b7:92:ea:8d:
d0:bd:81:c1:b8:93:3f:fb:ad:2d:b9:52:78:41:f8:
71:23:a5:11:e1:44:ac:6d:f3:e4:15:df:5a:db:6d:
8c:6f:6f:a4:7d:f9:03:91:e6:9b:e5:48:a8:de:ab:
5b:ac:47:81:90:07:28:f5:1b:9a:4c:79:04:d4:09:
0d:a3:7c:39:1d:b4:74:6c:18:0d:9c:63:00:0c:2d:
1d:02:cd:75:27:c3:b7:c9:9b:56:b3:b5:e8:72:a6:
16:a3:8d:bb:2d:4d:c2:24:c8:69:f7:aa:7a:1e:fa:
05:8a:bd:42:66:c1:19:19:c5:ca:b8:d1:30:75:87:
a4:d2:08:0d:63:97:b2:36:fb:b0:8e:d4:ec:8e:d6:
b2:ba:01:e7:a7:ad:95:55:ca:fd:fd:57:05:26:4b:
77:fd:97:f5:68:10:f7:44:e2:6d:c2:ab:14:54:d0:
9e:39:86:1a:a4:ba:05:46:a5:b0:04:d4:6d:ab:d1:
45:2e:0f:f1:25:6d:17:fe:b4:c0:7f:c6:57:fb:a7:
5b:ef:40:9d:32:29:da:d7:88:9a:b2:1a:1b:a9:47:
b7:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:E8:61:82:DE:E5:E2:79:9E:B4:76:12:FD:A9:E9:DC:26:C7:8B:28
X509v3 Authority Key Identifier:
keyid:DF:BC:D3:F8:BC:A9:19:15:C4:53:3A:2C:0A:69:C3:D3:5B:2E:68:8D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/37zT-LypGRXEUzosCmnD01suaI0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/hehhgt7l4nmetHYS_anp3CbHiyg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
240b:11::/32
Signature Algorithm: sha256WithRSAEncryption
7a:a2:fb:82:cd:5e:c8:26:59:c3:08:5f:fc:f2:a1:d2:d5:5e:
7d:d9:ae:dc:ed:7d:7f:99:3c:0f:f2:4e:e6:9a:7a:8d:e7:16:
c6:13:d8:4c:a0:cb:a4:e3:c2:0e:99:fb:53:5f:9a:88:e7:a2:
68:9a:8b:44:b5:7e:84:72:4d:e0:24:aa:7b:e7:e4:75:f5:47:
4a:d6:46:58:05:7d:70:de:a5:60:14:81:95:09:3d:3d:aa:3a:
e5:1e:f8:d7:0c:bb:9e:d2:aa:7f:2f:57:f5:61:c3:a5:20:b4:
b0:01:f2:02:de:84:34:d0:36:7b:3b:81:93:40:49:e1:3b:e7:
2a:fe:07:93:3c:24:fd:f1:56:e5:22:7c:cb:6c:95:41:e9:e9:
cf:b9:27:90:73:e5:55:cb:a6:fb:f8:02:2c:1a:44:1e:08:48:
06:77:32:5b:8f:d2:88:7f:b5:1d:43:83:9e:77:6b:a7:98:b9:
c0:29:80:7d:ae:9e:57:52:aa:91:ee:ec:3e:dc:14:fe:2b:19:
96:bd:6a:75:ad:17:cb:c8:5f:94:63:90:0a:09:3f:10:29:8c:
19:32:0f:7e:aa:37:d8:0f:76:ca:60:41:f4:cb:a1:ff:ac:25:
5f:fe:4a:e6:c6:2a:30:af:c2:eb:93:8b:db:87:4e:7a:c8:37:
eb:69:e7:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:31:01 2025 by rpki-client