Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/y9Qty0wP-ce7gsbiNpZxM4zFDUw.roa
File: y9Qty0wP-ce7gsbiNpZxM4zFDUw.roa (raw, json)
Hash identifier: mLyhYgR+RHlvQ9H9hwqIpUItTOQHYVFxoO0Msx4/hNs=
Subject key identifier: CB:D4:2D:CB:4C:0F:F9:C7:BB:82:C6:E2:36:96:71:33:8C:C5:0D:4C
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 07F9
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/y9Qty0wP-ce7gsbiNpZxM4zFDUw.roa
Signing time: Tue 30 Apr 2024 02:10:40 +0000
ROA not before: Tue 30 Apr 2024 02:10:40 +0000
ROA not after: Tue 15 Apr 2025 01:30:02 +0000
asID: 9605
IP address blocks: 1.76.148.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2041 (0x7f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Apr 30 02:10:40 2024 GMT
Not After : Apr 15 01:30:02 2025 GMT
Subject: CN=CBD42DCB4C0FF9C7BB82C6E2369671338CC50D4C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:9f:71:cb:7b:57:9b:84:3d:82:f7:95:be:aa:
86:4d:63:02:b5:e0:cb:36:b4:d4:c6:ad:34:70:89:
82:f6:65:d8:6d:20:6d:6d:78:39:1f:3b:7e:df:46:
6e:af:45:5f:b9:4c:bf:ab:e0:c9:b1:8d:c3:c5:d1:
23:66:c2:81:e4:d5:f8:06:00:93:fe:3c:00:9d:91:
00:a0:b2:ab:07:de:d1:c0:41:73:de:61:98:d2:3c:
2f:c2:2a:de:3a:08:73:c6:7b:38:95:09:a2:26:39:
46:04:8e:4d:6e:e3:52:ca:5a:83:76:f2:49:61:c0:
a1:7c:4d:c6:bb:5a:39:b7:68:0f:cc:6e:f7:00:72:
90:62:e7:1e:9d:d5:94:d9:23:05:72:aa:95:3e:fa:
cd:04:b7:54:e4:09:87:fc:b5:df:8a:5e:71:24:99:
a8:46:bc:ab:b0:9a:ea:02:12:ed:ab:17:ac:f9:3a:
e2:52:69:66:2d:bb:c7:06:0f:5b:b4:d9:74:7e:cc:
3d:1f:3e:d9:6a:1f:7c:97:3e:bb:b0:9e:10:b9:a4:
92:70:0a:3f:c3:11:d9:4b:bb:1a:7c:f6:90:43:24:
1b:42:eb:fe:24:80:29:05:8f:a7:c9:59:f0:87:26:
cc:5e:b1:fe:d1:c2:e1:76:b2:58:e1:6e:c9:56:3b:
cd:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:D4:2D:CB:4C:0F:F9:C7:BB:82:C6:E2:36:96:71:33:8C:C5:0D:4C
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/y9Qty0wP-ce7gsbiNpZxM4zFDUw.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.76.148.0/22
Signature Algorithm: sha256WithRSAEncryption
35:59:13:9f:9b:89:b6:fb:77:11:04:1e:28:51:ae:e7:05:f5:
e9:4e:0e:5b:af:5e:7a:88:c9:ac:87:43:e5:d1:d7:0c:d6:2f:
ea:56:f3:8b:21:66:d3:22:0c:39:06:0d:d0:be:a1:4c:e5:6d:
54:23:56:56:4f:d9:79:0a:a9:1a:24:46:64:e3:fa:f5:ff:f1:
86:dd:de:a9:8f:4e:6b:c7:f6:a5:36:9f:d7:c2:de:65:82:b6:
bf:58:9a:5f:bf:88:dd:16:d1:fc:26:4c:9a:a5:81:af:cf:0e:
e6:24:bd:fe:37:42:7d:e8:a6:79:ec:59:df:08:51:3d:7a:3e:
30:b0:f6:e2:25:08:a0:74:0e:cf:6d:f9:af:49:cd:b8:2b:cd:
2a:13:45:35:0b:4c:03:65:91:55:93:dd:55:d5:ca:e0:f9:3a:
e2:d8:63:24:be:b7:bf:90:0b:d8:39:49:01:24:27:71:ad:9d:
1b:70:fb:63:09:10:7d:cc:47:da:8c:31:4f:eb:7d:e5:87:ad:
74:b9:e0:f0:44:e2:ba:2e:c1:92:cf:ba:c3:89:a3:f1:78:98:
a3:45:a0:d5:de:c4:a4:25:2d:6a:3c:24:ca:26:56:d5:97:05:
81:b2:70:a2:70:cb:09:2a:cf:00:b3:b6:96:bd:ce:06:a1:c6:
8f:d8:0b:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:11:01 2025 by rpki-client