Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ai3rLaucBh4NRfhTHqX2XZyLXSk.roa
File: Ai3rLaucBh4NRfhTHqX2XZyLXSk.roa (raw, json)
Hash identifier: 9Alajb1EkYf4l1EW5yrj3o8o+4IlBPtxmkToNvOrqKY=
Subject key identifier: 02:2D:EB:2D:AB:9C:06:1E:0D:45:F8:53:1E:A5:F6:5D:9C:8B:5D:29
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0971
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ai3rLaucBh4NRfhTHqX2XZyLXSk.roa
Signing time: Sun 30 Jun 2024 01:33:39 +0000
ROA not before: Sun 30 Jun 2024 01:33:39 +0000
ROA not after: Tue 24 Jun 2025 10:46:45 +0000
asID: 9605
IP address blocks: 1.66.112.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2417 (0x971)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 30 01:33:39 2024 GMT
Not After : Jun 24 10:46:45 2025 GMT
Subject: CN=022DEB2DAB9C061E0D45F8531EA5F65D9C8B5D29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:36:a8:d0:06:df:60:d5:5f:1e:a0:57:35:a6:
18:79:28:7c:0e:83:95:3f:86:54:eb:bf:5a:1e:cc:
f5:cd:df:2b:07:b8:97:2a:37:99:12:e6:bc:f2:54:
12:a3:e4:9c:c8:6a:0e:4c:62:8f:41:26:c5:6a:bb:
c8:25:1b:b5:c5:00:49:7b:17:84:ad:84:eb:6b:15:
d9:98:ca:79:99:cf:78:3a:e5:b2:a1:22:62:dd:94:
59:58:f0:c7:ad:21:56:3b:e0:0e:1f:4d:5a:12:8e:
be:26:31:e6:c7:22:86:d7:aa:5a:d5:b2:64:8c:08:
10:12:14:86:6d:c5:99:a1:30:cf:55:7d:3a:35:62:
df:a7:19:02:e9:e8:84:bf:76:48:fa:f2:1f:47:76:
b1:54:96:f6:14:f3:06:c5:30:08:d6:04:e4:b6:36:
66:f6:ef:6e:50:0d:4f:48:23:8c:32:a4:93:0a:54:
41:2f:42:ae:60:8b:99:a1:10:6d:20:9e:4e:9a:d9:
59:59:c8:cd:53:a1:a7:53:95:51:79:99:45:f9:6b:
1c:2d:f8:6a:c9:90:39:1f:5f:cb:42:c2:6e:23:e0:
49:86:a1:e9:6d:86:a9:b5:50:ed:95:24:ae:bb:73:
a0:1a:82:9c:8e:48:11:38:16:75:d1:a1:d9:12:f7:
b3:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:2D:EB:2D:AB:9C:06:1E:0D:45:F8:53:1E:A5:F6:5D:9C:8B:5D:29
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ai3rLaucBh4NRfhTHqX2XZyLXSk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.66.112.0/21
Signature Algorithm: sha256WithRSAEncryption
90:2e:6f:00:c6:00:9a:6a:ea:9e:bb:20:3d:8c:4b:be:9d:cd:
ea:80:96:7d:f9:de:7b:e1:cd:5e:00:ab:33:f0:36:8a:57:8e:
92:aa:31:c7:63:90:5c:b6:d6:57:83:d4:f5:bd:c2:19:3f:4d:
59:55:3f:09:70:e8:e6:e5:3a:a7:0e:aa:1b:91:4d:01:c3:bf:
ce:35:47:75:70:aa:ec:88:81:74:89:db:73:01:5c:76:63:43:
d6:ef:5d:c5:75:35:0d:6c:7a:b3:80:ce:bb:a6:a8:59:62:c6:
2c:ca:f6:8a:34:27:83:74:96:3c:c2:60:b7:42:66:c8:cf:bf:
7b:55:c7:3a:71:a0:95:df:28:39:55:11:96:81:d9:b7:4d:1b:
f5:02:01:46:3a:0b:ec:ee:64:84:68:da:d5:62:52:99:b7:cf:
d2:2f:8e:c9:1e:9f:42:9c:2a:b0:9b:bb:c9:77:e3:6d:6e:27:
9b:b5:b7:ed:82:f2:ec:75:3d:cb:41:dc:08:d1:bf:72:b5:b9:
5c:dd:03:c5:5d:93:a6:62:ed:ca:c5:9e:7e:41:0d:9d:4f:e1:
a5:0c:11:5b:bb:1a:46:a7:25:87:f4:f9:d9:ff:6d:74:22:73:
5d:01:d2:20:b2:c9:7b:57:c8:0e:00:c5:cd:7c:de:be:6b:b3:
0e:5d:23:a5
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICCXEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw
MTMzMzlaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDAyMkRFQjJEQUI5QzA2
MUUwRDQ1Rjg1MzFFQTVGNjVEOUM4QjVEMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCgNqjQBt9g1V8eoFc1phh5KHwOg5U/hlTrv1oezPXN3ysHuJcq
N5kS5rzyVBKj5JzIag5MYo9BJsVqu8glG7XFAEl7F4SthOtrFdmYynmZz3g65bKh
ImLdlFlY8MetIVY74A4fTVoSjr4mMebHIobXqlrVsmSMCBASFIZtxZmhMM9VfTo1
Yt+nGQLp6IS/dkj68h9HdrFUlvYU8wbFMAjWBOS2Nmb2725QDU9II4wypJMKVEEv
Qq5gi5mhEG0gnk6a2VlZyM1ToadTlVF5mUX5axwt+GrJkDkfX8tCwm4j4EmGoelt
hqm1UO2VJK67c6AagpyOSBE4FnXRodkS97PbAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUAi3rLaucBh4NRfhTHqX2XZyLXSkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L0FpM3JMYXVjQmg0TlJmaFRIcVgyWFp5TFhTay5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAMBQnAwDQYJKoZIhvcNAQELBQADggEBAJAubwDGAJpq6p67ID2MS76dzeqA
ln353nvhzV4AqzPwNopXjpKqMcdjkFy21leD1PW9whk/TVlVPwlw6OblOqcOqhuR
TQHDv841R3VwquyIgXSJ23MBXHZjQ9bvXcV1NQ1serOAzrumqFlixizK9oo0J4N0
ljzCYLdCZsjPv3tVxzpxoJXfKDlVEZaB2bdNG/UCAUY6C+zuZIRo2tViUpm3z9Iv
jsken0KcKrCbu8l3421uJ5u1t+2C8ux1PctB3AjRv3K1uVzdA8Vdk6Zi7crFnn5B
DZ1P4aUMEVu7GkanJYf0+dn/bXQic10B0iCyyXtXyA4Axc183r5rsw5dI6U=
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:18:06 2025 by rpki-client