Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30408/OXIBVCdhO995Y3nkUrgK1uPMYn4.roa
File: OXIBVCdhO995Y3nkUrgK1uPMYn4.roa (raw, json)
Hash identifier: Yvve4oF36kym+NuRGfnQLxQAmFcwDQI+KP9h9LoZ2NE=
Subject key identifier: 39:72:01:54:27:61:3B:DF:79:63:79:E4:52:B8:0A:D6:E3:CC:62:7E
Certificate issuer: /CN=1343A98AD27CB18981B8F3FD18A4D573A82ED78B
Certificate serial: 1E
Authority key identifier: 13:43:A9:8A:D2:7C:B1:89:81:B8:F3:FD:18:A4:D5:73:A8:2E:D7:8B
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/E0OpitJ8sYmBuPP9GKTVc6gu14s.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30408/OXIBVCdhO995Y3nkUrgK1uPMYn4.roa
Signing time: Sat 01 Mar 2025 01:32:16 +0000
ROA not before: Sat 01 Mar 2025 01:32:16 +0000
ROA not after: Sun 15 Feb 2026 01:30:03 +0000
asID: 131965
IP address blocks: 2400:b1a0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30 (0x1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1343A98AD27CB18981B8F3FD18A4D573A82ED78B
Validity
Not Before: Mar 1 01:32:16 2025 GMT
Not After : Feb 15 01:30:03 2026 GMT
Subject: CN=3972015427613BDF796379E452B80AD6E3CC627E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:73:52:2e:e6:ce:2d:df:5b:44:6f:e8:26:31:
37:42:c7:73:16:cb:47:53:ef:62:40:eb:76:5e:f0:
4e:ae:ad:35:ed:78:6d:66:9d:c2:af:66:1f:a9:38:
e4:34:6e:44:f9:76:20:8b:ad:5a:31:dd:a2:ba:05:
c3:a0:16:14:92:2b:99:dd:c9:d7:84:78:0c:de:51:
2e:f0:48:3b:72:d4:dc:ef:c8:22:06:9a:f4:b9:8c:
98:08:f7:e7:9d:6e:7e:0e:c7:2b:76:ea:56:c7:79:
06:49:1d:53:2a:3f:23:7c:9a:d3:c9:b7:e3:88:09:
c8:0f:9e:1c:23:92:9a:50:3e:14:e6:1f:df:b5:0d:
2d:94:2d:d5:b3:a6:80:1f:26:4e:07:b4:9e:a9:df:
a2:96:ba:37:4b:9d:ed:1b:78:f5:b5:08:56:d8:ac:
88:ac:53:8f:9a:44:59:33:fb:d5:bd:e8:20:ae:79:
ce:38:98:dd:18:75:92:77:e7:04:68:54:44:d1:c2:
fe:eb:21:df:60:f5:4a:17:ef:be:42:7c:67:07:29:
56:ee:81:2a:93:16:9f:5a:03:3e:0f:3d:79:4c:52:
2c:82:14:b3:06:ab:1f:00:8f:2f:84:c9:40:8d:8a:
bf:d3:1d:53:fd:91:b7:39:53:13:32:7b:86:20:3e:
28:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:72:01:54:27:61:3B:DF:79:63:79:E4:52:B8:0A:D6:E3:CC:62:7E
X509v3 Authority Key Identifier:
keyid:13:43:A9:8A:D2:7C:B1:89:81:B8:F3:FD:18:A4:D5:73:A8:2E:D7:8B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30408/E0OpitJ8sYmBuPP9GKTVc6gu14s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/E0OpitJ8sYmBuPP9GKTVc6gu14s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30408/OXIBVCdhO995Y3nkUrgK1uPMYn4.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:b1a0::/32
Signature Algorithm: sha256WithRSAEncryption
15:67:9e:b9:86:4d:b1:97:d9:75:e5:d1:ea:d3:a8:a2:1f:1c:
cd:96:80:92:db:56:0b:8e:2c:a2:c0:3e:d9:0d:c6:b7:39:56:
c7:c0:c5:ed:58:80:e8:66:da:b1:da:77:e7:b8:b1:2b:49:c4:
0f:44:54:03:72:dd:04:02:10:69:a8:6f:44:88:59:e1:c4:09:
66:3e:57:c4:1b:e1:57:bc:cf:21:d6:ee:9a:bd:d7:b6:bd:38:
ef:ce:01:c4:a0:0b:9b:91:7c:83:80:84:ca:40:4a:19:4a:7e:
4a:73:0b:85:5f:39:54:74:76:4c:bd:59:ad:e3:fd:c7:1b:28:
ee:57:4b:56:32:4d:a4:34:97:48:4f:d5:f6:50:1f:6c:05:bd:
3b:dc:aa:03:5b:9a:00:f6:dd:95:e0:4d:f3:85:01:63:01:92:
96:f8:6e:ca:9b:59:70:d3:07:93:fb:fe:e5:e2:1a:40:83:27:
04:82:f1:90:36:2a:75:bf:3d:f4:c0:4c:56:c5:e5:4c:ba:67:
2b:6b:01:2a:00:df:bc:bd:23:91:23:86:b1:8c:95:8e:9c:cb:
ec:a9:d1:e1:2f:9d:2a:23:d3:fb:31:7b:25:37:0f:cf:70:f4:
c2:3c:a2:83:02:d3:d1:c8:42:40:1e:d6:ce:3a:70:ee:ea:08:
5f:a1:22:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:49:27 2025 by rpki-client