Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/lmZgHPMnXPMhygptrnhRGno3hbk.roa
File: lmZgHPMnXPMhygptrnhRGno3hbk.roa (raw, json)
Hash identifier: w5pZqV2ggya9bM5I/AdYmqVDHuXut3iWPRxrty8N5rw=
Subject key identifier: 96:66:60:1C:F3:27:5C:F3:21:CA:0A:6D:AE:78:51:1A:7A:37:85:B9
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 02F3
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lmZgHPMnXPMhygptrnhRGno3hbk.roa
Signing time: Thu 01 Jun 2023 16:04:37 +0000
ROA not before: Thu 01 Jun 2023 16:04:37 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.96.24.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 755 (0x2f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 16:04:37 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=9666601CF3275CF321CA0A6DAE78511A7A3785B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:11:86:79:ee:56:7f:f8:4c:eb:91:0e:14:dd:
2a:b7:93:c8:7d:85:35:cb:3d:87:7d:16:c2:2b:dc:
a4:a4:35:f4:c9:40:da:c1:06:f6:51:22:6f:ae:89:
cd:d6:a7:3b:0d:51:e4:b1:63:ec:da:5c:6c:f1:59:
30:d3:c7:d3:9f:0e:f0:d0:be:09:be:80:34:c3:99:
9d:2e:b4:a3:2c:df:28:d8:4c:4d:84:82:51:42:e9:
da:a7:55:88:4e:16:52:9d:0a:17:33:b3:ca:73:25:
2d:47:41:59:4a:1c:4e:94:5d:07:d2:54:6a:de:d9:
70:71:ba:b5:6a:da:68:67:cf:cf:88:02:73:1d:2c:
8b:23:61:de:6d:3a:98:53:18:09:15:2f:c8:82:91:
6d:20:fd:a7:02:80:1f:a7:fb:ab:07:0c:3b:e3:18:
fb:5c:0a:9d:12:44:43:94:38:a2:5f:63:77:a8:71:
ca:a9:7d:81:37:e7:57:0d:df:19:70:cd:fb:8a:8d:
e3:f4:16:e8:47:2f:bc:28:36:97:87:27:69:c6:44:
58:3b:7c:1a:aa:2f:2c:95:02:13:93:92:a6:a5:e8:
11:35:b5:65:91:c2:a7:c4:3b:02:27:2f:50:71:b1:
72:5a:cf:01:5a:db:a9:0c:fa:2b:7d:d6:1d:89:2a:
01:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:66:60:1C:F3:27:5C:F3:21:CA:0A:6D:AE:78:51:1A:7A:37:85:B9
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lmZgHPMnXPMhygptrnhRGno3hbk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.96.24.0/24
Signature Algorithm: sha256WithRSAEncryption
36:26:28:7f:c8:09:ad:e6:98:1e:77:df:96:40:bc:a2:0e:f3:
c8:c8:44:fa:2b:01:9b:1f:dc:9b:40:8b:3f:4c:c6:fe:02:65:
6f:59:b9:53:c8:e3:6d:ad:17:75:9c:1f:5f:67:46:85:9a:3f:
2e:1c:87:8f:0c:80:c5:f0:2b:5b:f8:d2:63:07:ea:9a:e8:01:
43:ae:40:e1:41:1f:1e:5b:ce:27:00:9d:f1:f6:00:4b:82:e2:
d0:73:87:62:51:5e:aa:2f:e6:18:2c:0e:38:15:99:67:5d:b8:
c4:27:2b:ac:22:99:8d:bc:54:8c:0e:98:18:b7:bb:8b:5a:3c:
35:a2:7e:8b:39:35:b0:3b:8d:d5:bc:40:91:d4:7f:76:ed:a9:
94:b1:99:1a:37:12:23:fe:5c:87:e3:15:30:7b:04:e6:70:d1:
13:76:d9:34:d7:7e:1e:15:16:1d:ad:47:5c:a5:da:e3:ed:3e:
7b:87:17:04:88:7c:61:33:c1:87:9a:53:07:e6:e4:2c:08:47:
3a:d9:cd:25:36:13:0e:24:56:92:37:c5:73:ff:d0:78:2b:a2:
17:df:9e:cf:94:4a:6d:47:75:bf:69:ae:de:bf:aa:b7:d9:37:
32:74:bc:7e:36:b1:6a:b5:19:9e:d7:cc:44:f3:2c:54:e9:fb:
d6:33:17:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:28:03 2025 by rpki-client