Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/OGK1cHBCiobg7cxmU5IVNcHZcnM.roa
File: OGK1cHBCiobg7cxmU5IVNcHZcnM.roa (raw, json)
Hash identifier: iIZtE+AxOt1TlWTjopdOklZp0Vf9/LBAbTaW/+4ndww=
Subject key identifier: 38:62:B5:70:70:42:8A:86:E0:ED:CC:66:53:92:15:35:C1:D9:72:73
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 03FC
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/OGK1cHBCiobg7cxmU5IVNcHZcnM.roa
Signing time: Tue 06 Jun 2023 16:03:51 +0000
ROA not before: Tue 06 Jun 2023 16:03:51 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.78.96.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1020 (0x3fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 6 16:03:51 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=3862B57070428A86E0EDCC6653921535C1D97273
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9a:23:65:2c:d6:af:77:a7:fd:31:7e:3a:a9:
e8:eb:54:76:98:32:f9:cf:a2:3b:76:8d:4f:ea:70:
87:09:f9:ed:46:71:ab:d4:34:52:c7:5f:96:34:74:
83:dd:b4:7e:77:a5:e3:ef:4c:5e:0e:5e:fc:c3:60:
cd:89:41:0d:f9:69:e4:33:4f:06:87:0c:c9:be:3b:
81:a9:fd:57:7b:ca:54:25:be:24:1a:57:85:b7:51:
b6:df:79:56:15:7e:c2:21:36:73:8a:f0:c9:ad:28:
13:9d:aa:3e:66:43:b2:bc:3f:fb:16:e4:94:e3:e7:
5c:ce:c3:51:68:b2:2c:31:c7:4d:c9:a4:cd:7c:6a:
2d:ad:5b:61:c9:96:fe:59:da:4a:d1:23:d3:ec:bd:
f3:65:1f:ea:a9:f0:a8:38:a0:86:a4:19:29:06:cd:
19:ec:09:66:b9:bd:fe:13:cd:98:88:b2:8c:0f:fc:
41:6b:b1:5b:3c:eb:5f:da:8a:c4:24:f9:43:9c:fc:
23:bd:b1:30:c5:61:98:e1:2c:b4:22:a3:e7:7f:b8:
3d:7f:84:7b:21:13:82:a6:3a:5b:3f:76:b8:e9:17:
63:37:1d:b0:02:b0:7b:a3:fd:e5:69:0f:cb:c8:1c:
9d:91:75:18:b6:7d:e9:16:20:a2:b7:ce:4c:83:c5:
23:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:62:B5:70:70:42:8A:86:E0:ED:CC:66:53:92:15:35:C1:D9:72:73
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/OGK1cHBCiobg7cxmU5IVNcHZcnM.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.78.96.0/22
Signature Algorithm: sha256WithRSAEncryption
85:9b:4d:b4:79:a2:90:7e:bb:c3:2b:60:e9:97:55:4f:e0:09:
6a:d1:93:0c:20:c4:3a:90:5f:8c:a8:ad:23:f1:3c:43:13:e4:
ff:d8:44:fb:f0:2e:e8:71:f8:84:b3:1a:9b:31:cc:11:7b:d5:
cf:14:41:2e:06:8d:2a:d2:77:f0:61:d4:49:c9:a9:2f:0f:91:
d3:6b:42:fb:de:e4:a9:2e:09:0a:ba:79:45:75:b8:25:47:74:
4a:ca:7c:06:fc:cd:bb:e7:2f:00:e5:33:f8:97:75:e5:2e:82:
f4:85:0d:d2:8f:ca:10:bd:3a:97:35:2f:48:b2:1a:31:b9:6e:
d3:a5:54:c7:a9:ac:60:10:42:43:c6:db:58:06:a1:52:bd:e5:
b0:0d:bc:10:11:17:7e:cb:e1:d3:39:a0:14:a7:56:a6:7b:98:
1e:3f:e4:c8:37:6d:16:ac:56:30:fe:2a:bf:3f:a0:64:63:47:
4b:a5:25:03:9a:95:0c:7b:20:a9:42:af:b2:94:56:32:7a:a7:
60:c5:31:b3:f2:6b:06:b5:2f:7d:76:23:4c:96:17:5d:07:1e:
73:cf:96:61:b2:44:ca:36:28:e5:97:36:1e:82:bf:fe:99:3c:
e4:24:1b:72:77:25:c4:c2:e7:30:97:bf:2a:79:98:30:c2:2a:
4c:98:fa:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:33:36 2025 by rpki-client