Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/354/hlQF6tnuBj5vtxxDBbiVual_rls.roa
File: hlQF6tnuBj5vtxxDBbiVual_rls.roa (raw, json)
Hash identifier: QBI9w8dGH8xSw22K5+vNgGwwPAZCMHiUWaCZQAd/AE8=
Subject key identifier: 86:54:05:EA:D9:EE:06:3E:6F:B7:1C:43:05:B8:95:B9:A9:7F:AE:5B
Certificate issuer: /CN=86A0BE02D491F35A561CC4904BEB7EB1AD4EC2FF
Certificate serial: 4D
Authority key identifier: 86:A0:BE:02:D4:91:F3:5A:56:1C:C4:90:4B:EB:7E:B1:AD:4E:C2:FF
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hqC-AtSR81pWHMSQS-t-sa1Owv8.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/hlQF6tnuBj5vtxxDBbiVual_rls.roa
Signing time: Fri 31 Jan 2025 01:31:11 +0000
ROA not before: Fri 31 Jan 2025 01:31:11 +0000
ROA not after: Thu 15 Jan 2026 01:30:03 +0000
asID: 9607
IP address blocks: 208.111.48.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77 (0x4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86A0BE02D491F35A561CC4904BEB7EB1AD4EC2FF
Validity
Not Before: Jan 31 01:31:11 2025 GMT
Not After : Jan 15 01:30:03 2026 GMT
Subject: CN=865405EAD9EE063E6FB71C4305B895B9A97FAE5B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:26:d2:97:76:98:22:c0:b6:11:0e:50:4d:cd:
67:59:1d:28:c6:52:5b:36:2c:3a:84:ca:f8:42:87:
76:d2:99:05:f8:7d:4a:c5:a1:99:59:4a:c5:9b:6e:
54:55:d6:92:b5:26:90:11:d2:80:91:32:15:b5:27:
bc:60:ef:cf:33:40:eb:37:b6:13:b9:30:b1:d4:49:
b0:8f:67:80:76:72:c7:4e:f8:0f:8e:d1:ce:07:3b:
32:4b:5c:6a:2a:8a:86:5c:b3:22:e7:35:c8:f6:b0:
0e:35:bf:49:65:66:2a:bc:b7:32:6a:a3:d0:59:44:
3b:30:8a:20:99:30:d3:e0:0f:10:ad:39:43:00:02:
5b:e2:6f:ff:76:48:01:6e:c2:c7:70:57:ae:50:8f:
77:c2:e6:fe:e2:fe:7c:11:b5:14:af:30:0f:52:19:
d4:0b:23:fe:f5:42:2a:68:4f:1d:9d:4e:21:3c:d7:
3e:19:8b:98:67:0a:a3:f4:3e:7c:8b:de:03:4a:a0:
20:66:16:dd:31:9d:db:9d:5e:6d:0f:cd:93:60:67:
05:76:38:e8:f3:fb:0d:2b:ed:fa:bf:34:5d:b5:75:
76:cc:cd:c7:e0:3e:85:f0:e0:c1:c0:78:17:23:a4:
7c:45:97:f1:3e:24:37:e5:a7:10:64:b5:16:35:b9:
5f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:54:05:EA:D9:EE:06:3E:6F:B7:1C:43:05:B8:95:B9:A9:7F:AE:5B
X509v3 Authority Key Identifier:
keyid:86:A0:BE:02:D4:91:F3:5A:56:1C:C4:90:4B:EB:7E:B1:AD:4E:C2:FF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/hqC-AtSR81pWHMSQS-t-sa1Owv8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hqC-AtSR81pWHMSQS-t-sa1Owv8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/hlQF6tnuBj5vtxxDBbiVual_rls.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
208.111.48.0/21
Signature Algorithm: sha256WithRSAEncryption
51:32:f9:19:a4:d9:74:48:b4:c0:45:4f:54:30:26:d0:a7:68:
8f:81:0f:0e:8c:af:67:af:dc:27:d4:37:c2:4b:08:a6:17:bf:
c3:db:33:6e:fb:b6:0c:49:5d:dd:07:9c:72:ae:97:7e:c6:f9:
5f:08:7d:ff:59:5c:bc:ea:b6:90:2a:aa:cc:ea:06:30:f0:2a:
3c:c1:a1:bd:14:6c:22:04:f0:f7:98:d9:84:6e:fb:13:d2:dd:
83:2e:bd:13:b8:a6:c4:d3:1e:73:e2:29:9f:d2:c1:92:8d:d0:
8d:c3:40:dc:56:b4:67:05:5d:64:de:b8:2c:45:1b:ed:e2:5b:
df:0b:fd:e0:5a:d5:6c:8c:9c:67:5b:90:75:25:3c:13:59:e0:
5d:0d:ba:5d:72:dd:65:ee:ca:6c:7e:4f:a4:01:5e:7c:47:d9:
47:d1:00:a2:11:4e:46:eb:08:b0:b9:6a:d1:f7:81:30:f0:b6:
04:1e:95:d2:41:e6:37:f9:95:7c:ac:17:e5:6b:63:bb:80:b4:
97:cc:ea:dd:3c:bc:ab:01:44:7c:7a:68:a5:cd:67:29:33:56:
60:31:99:18:8f:33:12:3a:c4:84:8d:dc:62:d1:a3:df:22:42:
8f:db:c4:7e:cb:24:f2:75:67:91:45:42:f4:39:1d:54:63:a4:
1f:02:0e:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:19:56 2025 by rpki-client