Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Gq_mVHa4Vf_9C-LwmP5NRgFTe5s.roa
File: Gq_mVHa4Vf_9C-LwmP5NRgFTe5s.roa (raw, json)
Hash identifier: aFfQ6JK+pGeJOJT+YjISq+rZgpZO2h5uI/InvMisveE=
Subject key identifier: 1A:AF:E6:54:76:B8:55:FF:FD:0B:E2:F0:98:FE:4D:46:01:53:7B:9B
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 053E
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Gq_mVHa4Vf_9C-LwmP5NRgFTe5s.roa
Signing time: Thu 27 Jul 2023 16:54:17 +0000
ROA not before: Thu 27 Jul 2023 16:54:17 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 220.159.40.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1342 (0x53e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:54:17 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=1AAFE65476B855FFFD0BE2F098FE4D4601537B9B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:aa:6f:7f:6c:af:bc:e7:98:9c:40:7e:50:04:
29:f9:d2:10:66:93:f3:c3:6e:d8:25:22:1e:7a:48:
5d:c4:75:c6:a9:5a:15:06:d8:1e:ee:a7:f8:28:a6:
e3:ce:41:97:4f:93:12:8b:3c:e9:90:ef:0e:4c:6e:
89:a4:49:fb:3f:5e:5c:f1:f6:2e:4c:f0:45:b6:f2:
a4:1f:11:9b:c9:98:e1:68:ef:72:d8:f5:5f:41:e0:
6b:83:16:c6:1e:2e:92:4c:bd:17:57:33:51:0c:2d:
a6:7e:10:50:88:a9:52:74:ab:be:f9:a0:a4:5b:cf:
f5:1e:dd:21:32:0e:8c:e3:78:30:54:e7:a3:88:59:
f8:11:a6:ee:48:76:e4:d0:0b:bd:27:67:ba:38:1f:
03:69:17:34:ff:af:ed:52:c0:4f:21:e8:24:2f:9a:
81:86:81:63:3c:bb:25:56:a3:c3:80:2e:74:e9:38:
3c:e9:39:a5:1b:ab:12:71:3c:7c:3b:a4:9d:dd:d5:
13:26:b6:7a:9c:bc:cc:4b:ff:83:f3:c4:65:01:61:
5a:d1:65:a7:8b:6f:d8:58:7d:11:7c:62:e1:19:75:
4e:c9:ed:75:10:da:4f:b6:b7:25:58:f4:1e:53:43:
1c:bf:eb:f7:7b:49:81:8b:ba:45:41:b6:3e:64:11:
5f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:AF:E6:54:76:B8:55:FF:FD:0B:E2:F0:98:FE:4D:46:01:53:7B:9B
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Gq_mVHa4Vf_9C-LwmP5NRgFTe5s.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.159.40.0/21
Signature Algorithm: sha256WithRSAEncryption
9b:26:e6:cc:ff:49:7a:1d:f5:fc:ca:1c:77:63:43:6b:54:1a:
08:02:cd:8d:6b:7c:94:e1:2b:58:6f:09:37:4b:d4:d3:45:dc:
aa:5d:44:db:b2:10:16:c1:d7:eb:9d:44:8b:c4:e6:05:97:d3:
ca:58:1b:4a:a9:5b:3e:23:aa:2a:9f:84:aa:96:85:fe:ea:1c:
26:45:d6:44:e9:c6:22:95:16:6c:54:c2:fd:de:db:96:74:37:
04:7f:7e:ba:6e:65:7b:b8:e5:94:01:99:42:b1:13:57:fc:a8:
35:48:dc:9c:98:e7:71:48:f1:40:78:5e:00:8f:de:44:eb:d1:
99:d6:2f:80:fa:23:90:38:83:ad:42:a3:d4:f3:04:e9:8c:0c:
2e:59:d4:93:0e:52:df:66:c7:06:2a:50:17:f2:47:98:cd:f3:
92:fa:08:9b:42:0b:27:93:e0:cc:2c:d3:9e:22:c8:15:f1:da:
10:3d:03:0c:ca:37:05:98:09:5a:f6:04:d5:9d:4b:e2:29:92:
61:0d:57:a8:2a:eb:1f:b1:67:fc:16:0e:06:6f:26:f2:de:09:
4b:63:a3:6d:38:c5:90:79:05:ea:2f:f5:51:b4:2a:f7:61:f0:
00:e9:de:5d:4f:1e:06:7c:07:bc:90:14:ce:1b:0d:7e:40:16:
e3:71:3c:0a
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICBT4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA3Mjcx
NjU0MTdaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDFBQUZFNjU0NzZCODU1
RkZGRDBCRTJGMDk4RkU0RDQ2MDE1MzdCOUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDJqm9/bK+855icQH5QBCn50hBmk/PDbtglIh56SF3EdcapWhUG
2B7up/gopuPOQZdPkxKLPOmQ7w5MbomkSfs/Xlzx9i5M8EW28qQfEZvJmOFo73LY
9V9B4GuDFsYeLpJMvRdXM1EMLaZ+EFCIqVJ0q775oKRbz/Ue3SEyDozjeDBU56OI
WfgRpu5IduTQC70nZ7o4HwNpFzT/r+1SwE8h6CQvmoGGgWM8uyVWo8OALnTpODzp
OaUbqxJxPHw7pJ3d1RMmtnqcvMxL/4PzxGUBYVrRZaeLb9hYfRF8YuEZdU7J7XUQ
2k+2tyVY9B5TQxy/6/d7SYGLukVBtj5kEV/nAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUGq/mVHa4Vf/9C+LwmP5NRgFTe5swHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L0dxX21WSGE0VmZfOUMtTHdtUDVOUmdGVGU1cy5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAPcnygwDQYJKoZIhvcNAQELBQADggEBAJsm5sz/SXod9fzKHHdjQ2tUGggC
zY1rfJThK1hvCTdL1NNF3KpdRNuyEBbB1+udRIvE5gWX08pYG0qpWz4jqiqfhKqW
hf7qHCZF1kTpxiKVFmxUwv3e25Z0NwR/frpuZXu45ZQBmUKxE1f8qDVI3JyY53FI
8UB4XgCP3kTr0ZnWL4D6I5A4g61Co9TzBOmMDC5Z1JMOUt9mxwYqUBfyR5jN85L6
CJtCCyeT4Mws054iyBXx2hA9AwzKNwWYCVr2BNWdS+IpkmENV6gq6x+xZ/wWDgZv
JvLeCUtjo204xZB5Beov9VG0Kvdh8ADp3l1PHgZ8B7yQFM4bDX5AFuNxPAo=
-----END CERTIFICATE-----
Generated at Sat Apr 5 20:06:11 2025 by rpki-client