Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/354/rnaO0T3Do29M9vmta4mYAana-ew.roa
File: rnaO0T3Do29M9vmta4mYAana-ew.roa (raw, json)
Hash identifier: 8WyNhwXG0IULzVGaRAtYo8gXCYgLU0CLb47J7GdVVrs=
Subject key identifier: AE:76:8E:D1:3D:C3:A3:6F:4C:F6:F9:AD:6B:89:98:01:A9:DA:F9:EC
Certificate issuer: /CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC
Certificate serial: FC
Authority key identifier: 0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/rnaO0T3Do29M9vmta4mYAana-ew.roa
Signing time: Sun 30 Jun 2024 01:28:34 +0000
ROA not before: Sun 30 Jun 2024 01:28:34 +0000
ROA not after: Tue 24 Jun 2025 10:46:45 +0000
asID: 7530
IP address blocks: 210.231.222.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 252 (0xfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC
Validity
Not Before: Jun 30 01:28:34 2024 GMT
Not After : Jun 24 10:46:45 2025 GMT
Subject: CN=AE768ED13DC3A36F4CF6F9AD6B899801A9DAF9EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:d6:f3:62:a5:26:69:d7:82:74:53:f9:89:28:
af:24:8b:cc:e7:c4:66:92:40:a2:03:c9:85:88:89:
f8:06:cf:99:5f:4f:25:a2:2c:e7:19:21:ca:8e:85:
e9:5e:42:88:81:8f:af:77:47:ab:a2:9b:1f:e8:2d:
aa:49:0a:56:ca:82:33:fa:ed:a4:d6:fb:6d:1c:f6:
34:36:ee:0c:83:b2:c1:d0:f1:c8:c4:c5:cf:98:06:
0c:6d:84:05:1c:62:e8:3f:68:80:c5:67:03:a5:b7:
43:9d:c8:26:13:89:9f:f5:28:8b:c1:ee:a9:a0:3b:
5c:18:da:3b:1b:45:18:8a:33:b4:11:e2:88:fd:69:
1f:14:f9:2e:77:86:2e:46:68:92:0c:92:50:d5:60:
70:46:cb:fc:e2:98:c2:58:0f:3a:4b:b4:ed:bf:e1:
c3:cb:32:d6:94:c8:9e:cb:ec:9e:9c:6e:e3:f4:12:
43:da:6a:d7:ca:7c:34:e1:66:59:e6:ff:59:35:44:
6d:b9:77:99:a0:dc:35:03:41:6a:fa:fc:f3:07:a7:
08:8f:c8:28:d0:c8:de:3c:91:67:c3:7b:9c:b4:a3:
70:00:60:a3:35:34:66:eb:db:7d:a4:df:08:9f:e1:
e5:29:55:d0:28:45:ba:77:0a:4d:3f:c5:b5:13:f8:
cc:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:76:8E:D1:3D:C3:A3:6F:4C:F6:F9:AD:6B:89:98:01:A9:DA:F9:EC
X509v3 Authority Key Identifier:
keyid:0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/rnaO0T3Do29M9vmta4mYAana-ew.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
210.231.222.0/23
Signature Algorithm: sha256WithRSAEncryption
83:8d:b1:cd:99:81:e1:b0:3b:2d:a0:3f:32:9f:a9:71:ff:26:
80:a5:b2:b9:b7:da:50:9e:28:fa:f1:1f:74:51:21:92:7c:21:
4d:13:62:b2:ae:81:8b:42:77:9d:9c:8a:d1:f4:96:d4:ec:b6:
5d:e9:fe:b3:17:d8:14:c2:89:84:78:44:52:f8:0a:ec:c3:99:
9e:12:2d:68:24:33:96:fc:c0:6a:7b:33:0d:59:53:c3:f2:fa:
76:19:71:c4:80:9b:b1:15:13:5e:c4:4d:a2:44:92:e1:c5:24:
44:da:54:95:14:25:ca:2d:49:f5:bf:28:73:45:aa:f0:5d:2e:
11:b6:c8:f2:30:63:11:7e:cb:35:64:b2:f9:03:78:3b:48:ed:
14:58:1f:c7:f2:42:fc:bd:3d:71:3e:fd:02:d3:0e:ea:41:53:
37:64:a7:f2:c7:c6:69:b2:86:b9:4e:9b:12:10:41:23:82:33:
c4:18:37:f9:62:44:33:e7:40:d5:8d:06:73:49:d1:55:66:49:
fd:f9:37:d4:32:bb:68:11:83:ab:b0:ba:9c:55:c2:6a:0d:d1:
89:c4:8e:ea:44:be:99:73:8c:37:f8:60:85:5c:d7:f1:f4:60:
43:da:ec:97:07:c2:db:02:75:25:74:3c:4f:2d:df:90:b9:66:
ac:2f:7e:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:20:20 2025 by rpki-client