Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/5lPTgAsCyBvw9T8DXU087NeEf0E.roa
File: 5lPTgAsCyBvw9T8DXU087NeEf0E.roa (raw, json)
Hash identifier: Bo1saEymsVfzZAMA8LYzirVrdX7H8E/VvDElnQcipow=
Subject key identifier: E6:53:D3:80:0B:02:C8:1B:F0:F5:3F:03:5D:4D:3C:EC:D7:84:7F:41
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0A73
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/5lPTgAsCyBvw9T8DXU087NeEf0E.roa
Signing time: Sun 30 Jun 2024 01:50:31 +0000
ROA not before: Sun 30 Jun 2024 01:50:31 +0000
ROA not after: Tue 24 Jun 2025 10:46:45 +0000
asID: 9605
IP address blocks: 1.76.160.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2675 (0xa73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 30 01:50:31 2024 GMT
Not After : Jun 24 10:46:45 2025 GMT
Subject: CN=E653D3800B02C81BF0F53F035D4D3CECD7847F41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ae:e2:cd:f0:7b:41:c9:89:03:67:e8:c5:4b:
96:3f:a0:4f:e7:29:4d:f7:f8:73:b9:39:9f:8a:30:
02:18:7e:9a:45:08:b1:c9:b9:36:9f:d3:e8:ed:65:
32:0b:66:c2:b0:f8:85:57:de:59:ff:d2:ef:dd:02:
61:6e:b7:4f:ee:5e:51:a0:08:ca:67:b2:bd:85:d7:
a6:8e:f4:e7:21:7f:ae:2d:3a:9b:59:67:75:7a:b3:
88:ba:78:7c:cf:8b:90:60:b1:bf:09:45:44:9c:b3:
72:e9:a7:6c:5f:71:cc:62:a8:06:e1:39:c8:aa:e0:
26:e2:e1:bc:4c:cf:2e:38:3a:5f:cf:37:2c:1f:17:
26:a7:a1:48:5d:5a:85:c4:e0:a0:93:bb:33:95:3f:
9d:a3:24:8b:2d:0c:72:1e:8c:2e:07:92:de:63:e6:
e1:4d:b6:7c:36:72:3d:81:bc:07:f2:ac:4c:2a:06:
5f:ee:08:f5:54:3a:89:1c:5c:16:ab:8d:e1:1e:cc:
55:3e:4e:e0:f0:47:c5:3a:20:d2:09:4a:89:c6:6a:
2d:dc:2e:36:1e:3a:71:c9:1c:19:6a:d3:be:63:37:
eb:e2:12:5e:4c:43:53:52:a3:d1:16:51:a3:57:9b:
06:f8:f0:e9:70:79:8d:08:8f:1c:44:a7:fd:82:41:
88:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:53:D3:80:0B:02:C8:1B:F0:F5:3F:03:5D:4D:3C:EC:D7:84:7F:41
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/5lPTgAsCyBvw9T8DXU087NeEf0E.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.76.160.0/20
Signature Algorithm: sha256WithRSAEncryption
a2:91:d8:a0:39:1e:4e:80:bf:66:3b:54:bb:7a:07:fe:65:70:
a4:54:56:d9:c0:b7:cb:98:48:b2:cb:b8:1e:bf:42:b9:45:d4:
44:f9:82:8e:44:c4:3d:f7:92:c1:b4:0c:22:80:3c:e8:01:7d:
b3:3f:90:42:bb:da:b0:7e:cf:17:d3:52:dd:09:29:20:75:8f:
67:2a:35:73:7b:4a:77:00:76:59:18:c9:8c:3c:b4:b7:eb:ab:
88:72:ce:ca:25:f2:ad:0b:3e:59:03:95:21:d1:7b:b6:86:7f:
77:85:ed:1b:af:b8:1a:d2:1c:2a:bf:10:01:19:6b:f1:6d:11:
d9:51:b1:43:21:de:de:d6:f9:e0:77:19:3c:c8:27:3e:4e:13:
87:13:6c:03:9f:bf:46:69:b1:ce:06:67:29:f9:a7:e8:fb:67:
da:2b:cd:f2:ce:37:9b:a4:83:4d:ed:fe:ed:1c:62:e2:2b:b2:
9a:54:ff:cd:bb:75:d4:1c:70:c2:f7:d9:3e:c1:76:19:5d:92:
55:b1:48:03:1f:a2:75:5b:90:bb:ee:ae:0d:ef:c7:73:36:ed:
77:a9:de:fa:cd:14:af:08:82:90:00:17:d6:eb:6a:9c:8b:b7:
42:4d:a1:0d:3a:ff:ee:e8:9b:fd:ba:df:a2:86:25:69:9c:34:
77:20:00:0f
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICCnMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw
MTUwMzFaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEU2NTNEMzgwMEIwMkM4
MUJGMEY1M0YwMzVENEQzQ0VDRDc4NDdGNDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDJruLN8HtByYkDZ+jFS5Y/oE/nKU33+HO5OZ+KMAIYfppFCLHJ
uTaf0+jtZTILZsKw+IVX3ln/0u/dAmFut0/uXlGgCMpnsr2F16aO9Ochf64tOptZ
Z3V6s4i6eHzPi5Bgsb8JRUScs3Lpp2xfccxiqAbhOciq4Cbi4bxMzy44Ol/PNywf
FyanoUhdWoXE4KCTuzOVP52jJIstDHIejC4Hkt5j5uFNtnw2cj2BvAfyrEwqBl/u
CPVUOokcXBarjeEezFU+TuDwR8U6INIJSonGai3cLjYeOnHJHBlq075jN+viEl5M
Q1NSo9EWUaNXmwb48OlweY0IjxxEp/2CQYibAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQU5lPTgAsCyBvw9T8DXU087NeEf0EwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5LzVsUFRnQXNDeUJ2dzlUOERYVTA4N05lRWYwRS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAQBTKAwDQYJKoZIhvcNAQELBQADggEBAKKR2KA5Hk6Av2Y7VLt6B/5lcKRU
VtnAt8uYSLLLuB6/QrlF1ET5go5ExD33ksG0DCKAPOgBfbM/kEK72rB+zxfTUt0J
KSB1j2cqNXN7SncAdlkYyYw8tLfrq4hyzsol8q0LPlkDlSHRe7aGf3eF7RuvuBrS
HCq/EAEZa/FtEdlRsUMh3t7W+eB3GTzIJz5OE4cTbAOfv0Zpsc4GZyn5p+j7Z9or
zfLON5ukg03t/u0cYuIrsppU/827ddQccML32T7BdhldklWxSAMfonVbkLvurg3v
x3M27Xep3vrNFK8IgpAAF9brapyLt0JNoQ06/+7om/2636KGJWmcNHcgAA8=
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:44:18 2025 by rpki-client