Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30423/mXo--iDnaCoRrRa33vpMPMVb348.roa
File: mXo--iDnaCoRrRa33vpMPMVb348.roa (raw, json)
Hash identifier: pCmpP/Um5YZQ3Jx5A+9jwXHwqMn7WbLW4xSYECkPPJI=
Subject key identifier: 99:7A:3E:FA:20:E7:68:2A:11:AD:16:B7:DE:FA:4C:3C:C5:5B:DF:8F
Certificate issuer: /CN=B910BD9437967C7AFDD374E1EA6EBED7FA6F96B5
Certificate serial: 1E
Authority key identifier: B9:10:BD:94:37:96:7C:7A:FD:D3:74:E1:EA:6E:BE:D7:FA:6F:96:B5
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uRC9lDeWfHr903Th6m6-1_pvlrU.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/mXo--iDnaCoRrRa33vpMPMVb348.roa
Signing time: Sun 26 May 2024 07:32:58 +0000
ROA not before: Sun 26 May 2024 07:32:58 +0000
ROA not after: Thu 15 May 2025 01:30:03 +0000
asID: 151382
IP address blocks: 2401:d20:a::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30 (0x1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B910BD9437967C7AFDD374E1EA6EBED7FA6F96B5
Validity
Not Before: May 26 07:32:58 2024 GMT
Not After : May 15 01:30:03 2025 GMT
Subject: CN=997A3EFA20E7682A11AD16B7DEFA4C3CC55BDF8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a2:47:8a:8c:b3:f0:5d:73:61:91:93:56:0e:
bf:06:4b:4c:70:e2:99:48:12:2e:17:4d:81:04:d4:
71:7b:fc:b1:5d:7d:c6:9a:a5:43:04:d7:4d:bf:69:
3f:52:a9:f7:8e:f2:4a:78:f7:fe:90:7a:46:22:1e:
ed:00:88:fc:6d:51:2f:5f:54:37:0c:09:a4:c7:56:
04:bc:e3:35:83:91:fd:a1:87:3c:e9:e8:e3:53:ac:
b0:40:4f:6b:05:f7:c6:2d:63:09:e2:8b:45:03:25:
0f:5c:ed:e3:62:1c:43:35:30:f2:58:3e:cf:90:cc:
2c:84:99:b9:78:34:db:e4:ad:9a:5e:d1:23:22:e0:
c9:ea:03:41:6e:89:37:8b:72:4f:dc:cb:44:8d:24:
ca:ff:c7:6d:e8:11:20:ba:f6:0c:b0:19:76:00:99:
3a:31:82:7b:b0:fd:f5:e1:df:68:ee:29:ae:3b:94:
04:e3:66:5c:74:9c:79:0f:05:aa:fd:25:2a:c0:ce:
84:75:9d:a7:16:1b:a0:4b:1b:8d:8b:39:cc:9e:2c:
80:0d:a1:98:f9:e3:14:82:73:37:35:18:00:e3:f2:
30:69:69:18:71:87:0e:42:71:9f:34:c4:c5:7b:0c:
2b:1f:8a:0f:cc:f7:4e:39:04:c2:aa:ca:10:1e:f2:
b9:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:7A:3E:FA:20:E7:68:2A:11:AD:16:B7:DE:FA:4C:3C:C5:5B:DF:8F
X509v3 Authority Key Identifier:
keyid:B9:10:BD:94:37:96:7C:7A:FD:D3:74:E1:EA:6E:BE:D7:FA:6F:96:B5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/uRC9lDeWfHr903Th6m6-1_pvlrU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uRC9lDeWfHr903Th6m6-1_pvlrU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/mXo--iDnaCoRrRa33vpMPMVb348.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:d20:a::/48
Signature Algorithm: sha256WithRSAEncryption
b8:c4:f0:e1:70:a4:ff:34:20:a5:63:c4:15:9e:80:ab:6c:f4:
26:94:a6:70:c1:e4:82:62:99:b4:93:ea:d7:18:9a:16:7b:31:
89:3a:95:e4:97:84:ff:d9:1c:7a:13:fc:dc:bc:4b:41:a6:50:
d1:e0:84:08:d5:2b:93:77:cc:4a:7a:19:85:9a:08:61:cd:38:
dc:b0:91:98:b3:a8:e0:19:da:8a:cc:59:93:07:30:06:2a:67:
8b:0c:7a:6d:aa:f0:da:76:34:69:c6:0c:71:50:db:1c:9e:91:
d9:d0:ee:87:83:81:04:61:3d:6c:ed:78:f9:04:b9:44:87:fc:
37:19:79:1d:46:94:2c:11:90:c5:f6:5a:c2:21:af:5a:48:4f:
8b:3e:c2:a8:5d:41:f8:5c:b3:7f:32:fe:03:e0:a5:bb:8f:b4:
2e:41:bf:19:69:fc:b8:a9:0d:bf:f0:bd:68:bb:80:05:8a:9b:
27:7f:84:8e:bd:fe:31:f3:38:fe:db:a8:55:9b:37:4f:5b:40:
d3:87:ab:26:95:fe:dc:ff:d0:69:f9:e1:ac:1c:45:08:b7:44:
74:f7:68:e4:d2:7b:23:09:57:67:68:d6:1e:8a:24:48:3f:ec:
2c:35:18:85:ab:c9:0c:04:38:69:b8:72:45:54:78:b8:fd:90:
d9:16:36:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:20:01 2025 by rpki-client