Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/354/-W05rVcVCe8QwgTng-E04LEGYog.roa
File: -W05rVcVCe8QwgTng-E04LEGYog.roa (raw, json)
Hash identifier: erj2p8MHeJoXetsYqOUla5FUOvhKK2n1GIZy2QNRrSM=
Subject key identifier: F9:6D:39:AD:57:15:09:EF:10:C2:04:E7:83:E1:34:E0:B1:06:62:88
Certificate issuer: /CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC
Certificate serial: 99
Authority key identifier: 0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/-W05rVcVCe8QwgTng-E04LEGYog.roa
Signing time: Thu 01 Sep 2022 01:28:12 +0000
ROA not before: Thu 01 Sep 2022 01:28:12 +0000
ROA not after: Tue 15 Aug 2023 01:30:03 +0000
asID: 55898
IP address blocks: 103.2.244.0/22 maxlen: 22
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153 (0x99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC
Validity
Not Before: Sep 1 01:28:12 2022 GMT
Not After : Aug 15 01:30:03 2023 GMT
Subject: CN=F96D39AD571509EF10C204E783E134E0B1066288
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:75:1d:0a:32:0c:3a:04:4b:61:2f:c0:51:aa:
80:5d:26:7a:57:9a:c2:f1:24:64:cd:7e:8f:f6:46:
c7:e5:c4:5c:ed:cc:15:43:b3:ce:64:23:1a:1b:c0:
14:c2:59:33:8a:da:31:3e:a6:39:6b:73:d0:f9:42:
26:db:5e:cc:bf:a0:1c:8b:db:00:52:17:c2:22:42:
48:c8:5e:52:b8:04:aa:a0:09:37:a6:0b:e7:e7:bd:
43:6c:fc:c2:fc:e0:33:91:3c:6b:ee:d9:a0:9f:c1:
92:74:04:03:cb:a0:f0:4d:97:1a:da:bf:d0:1c:aa:
44:47:91:12:36:85:4e:64:a1:8c:38:b8:b2:7a:fb:
74:08:10:e0:1a:4f:42:6c:e2:a8:97:6c:71:e2:55:
e5:92:08:53:1f:06:aa:0b:79:7d:92:4d:f7:31:9e:
54:eb:c9:ef:a4:ed:0c:2e:66:47:3a:7e:4e:71:57:
58:bf:e6:a9:7d:53:20:04:05:16:4e:e9:75:7b:59:
15:84:13:e4:5e:cf:ca:7d:18:fb:01:90:af:0a:34:
ee:5e:55:43:36:d2:83:cd:23:2b:cf:f1:ca:96:4d:
6c:1f:6d:1f:67:70:72:53:d6:00:85:c1:bc:90:a7:
32:16:ae:ba:10:af:52:19:bb:d3:15:0b:8b:ed:55:
a8:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:6D:39:AD:57:15:09:EF:10:C2:04:E7:83:E1:34:E0:B1:06:62:88
X509v3 Authority Key Identifier:
keyid:0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/-W05rVcVCe8QwgTng-E04LEGYog.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.2.244.0/22
Signature Algorithm: sha256WithRSAEncryption
99:42:ee:11:10:df:fa:79:12:49:99:3e:d4:fa:99:cc:ea:96:
7e:17:53:da:d8:6d:fe:3d:d9:e8:17:a5:84:09:1c:7a:21:01:
0b:34:e8:8e:81:b6:96:b9:99:17:3c:a6:a2:94:53:52:0b:32:
70:3d:ef:30:5d:5e:84:94:3e:b3:ac:99:86:2a:1d:19:17:1f:
60:08:bf:5e:e1:39:3a:65:29:8f:19:81:3e:c6:b3:16:5e:37:
5e:09:30:3e:fe:da:28:5c:7c:97:30:2c:2b:73:3d:80:b0:0f:
b0:7d:2a:9d:4d:78:36:21:f4:99:c8:f8:fe:f7:5a:00:82:b5:
b9:66:cd:61:8e:0d:b2:8c:17:54:b7:a2:bf:d6:35:10:7e:2d:
ff:ae:82:0b:67:09:ec:25:f7:50:23:af:f3:e1:06:2e:a6:63:
90:eb:e9:14:41:64:25:a4:70:8b:43:e1:9f:eb:d7:e9:ec:70:
c7:b6:cb:51:ef:4d:d4:c0:57:13:8b:dd:6c:a5:0a:c6:1c:4c:
e1:5e:66:72:ca:c0:04:de:87:b0:60:ae:38:2e:d5:65:51:b5:
31:ae:c5:4f:ce:33:6d:aa:9b:78:0d:cf:27:c6:90:3d:64:eb:
66:6d:db:6a:41:51:a1:8c:01:b2:be:09:78:c8:34:32:7f:fc:
b1:97:c2:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:09:32 2025 by rpki-client