Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/393/AhfnDbJlkpcxLdpAmMTQmsqyOBg.roa
File: AhfnDbJlkpcxLdpAmMTQmsqyOBg.roa (raw, json)
Hash identifier: 2tV4g+CwdAiwpDLuezKydGfVUZfz28WxQnjHCZtRIas=
Subject key identifier: 02:17:E7:0D:B2:65:92:97:31:2D:DA:40:98:C4:D0:9A:CA:B2:38:18
Certificate issuer: /CN=5D055B2DAAC48878CC9B1127A29CF11666920A23
Certificate serial: 7B
Authority key identifier: 5D:05:5B:2D:AA:C4:88:78:CC:9B:11:27:A2:9C:F1:16:66:92:0A:23
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XQVbLarEiHjMmxEnopzxFmaSCiM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/AhfnDbJlkpcxLdpAmMTQmsqyOBg.roa
Signing time: Fri 31 Jan 2025 01:34:47 +0000
ROA not before: Fri 31 Jan 2025 01:34:47 +0000
ROA not after: Thu 15 Jan 2026 01:30:03 +0000
asID: 9622
IP address blocks: 202.91.48.0/20 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123 (0x7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D055B2DAAC48878CC9B1127A29CF11666920A23
Validity
Not Before: Jan 31 01:34:47 2025 GMT
Not After : Jan 15 01:30:03 2026 GMT
Subject: CN=0217E70DB2659297312DDA4098C4D09ACAB23818
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:8f:06:c0:ef:68:b3:75:5e:ad:24:d1:85:6b:
23:a4:f9:f0:15:ed:91:6e:be:ad:58:ae:28:51:a0:
95:5e:5a:e0:2c:72:7b:ad:d7:6f:cd:92:14:a6:01:
6d:98:4c:6d:e7:8b:73:50:09:b2:bd:3d:65:0b:8f:
ac:24:95:fc:5c:31:4a:46:b2:dc:8a:01:c6:44:9b:
b8:cf:1b:0c:09:fe:69:3d:8e:42:e2:2f:fc:26:39:
70:09:43:4f:55:ad:84:96:ea:8c:34:75:6c:28:43:
1b:18:46:70:37:c8:e0:28:6d:02:76:0f:6c:70:56:
8a:88:ff:51:2e:b9:d5:83:b4:74:b9:22:10:64:87:
9b:00:ce:9a:b8:23:4d:72:6c:0d:62:28:04:97:da:
bb:ab:06:a2:de:86:7c:ae:27:9a:57:70:02:ee:93:
cb:99:77:dd:28:41:51:10:b9:71:c3:1f:b9:12:f3:
16:28:8e:94:7c:0b:6a:c9:b5:60:d7:33:c2:b3:db:
6d:2e:aa:7c:c0:3e:cc:67:db:2c:46:41:4b:3e:0e:
16:63:99:58:f6:6c:5b:41:ca:48:47:27:dc:84:7e:
5b:97:d3:71:d8:a7:49:3a:ce:1f:1d:c6:ab:24:1e:
b6:ba:f7:8a:19:9b:1e:6d:ac:83:b2:d2:ea:18:36:
8c:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:17:E7:0D:B2:65:92:97:31:2D:DA:40:98:C4:D0:9A:CA:B2:38:18
X509v3 Authority Key Identifier:
keyid:5D:05:5B:2D:AA:C4:88:78:CC:9B:11:27:A2:9C:F1:16:66:92:0A:23
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/XQVbLarEiHjMmxEnopzxFmaSCiM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XQVbLarEiHjMmxEnopzxFmaSCiM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/AhfnDbJlkpcxLdpAmMTQmsqyOBg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.91.48.0/20
Signature Algorithm: sha256WithRSAEncryption
53:40:62:66:0f:90:8b:ef:aa:c7:d6:1b:39:d7:93:80:c5:5b:
99:8a:32:d1:cd:48:85:55:c9:4b:9d:f9:2b:8f:8e:79:38:78:
da:4d:1f:64:83:df:5f:16:c8:47:6f:6d:0a:39:3d:3f:9c:dd:
84:95:ff:72:47:29:ef:61:27:ae:df:fb:8b:13:fc:15:f2:1f:
de:86:81:01:36:3c:57:2f:22:0d:54:a9:ad:fb:7b:27:c7:c0:
52:e5:b2:81:8f:f7:b6:8c:b9:77:ba:4d:e3:15:cd:65:ad:eb:
1a:ab:24:6c:7a:ab:97:39:fb:7d:ed:52:eb:7b:e7:96:ee:75:
0c:32:42:f0:90:10:bb:21:31:02:6d:81:de:ae:de:dd:d6:a5:
30:f8:17:1a:51:fe:12:50:26:6e:b0:8d:d8:27:fb:f6:69:d7:
4b:8e:e8:1a:ff:12:34:03:84:cb:9b:1c:7d:c1:f6:73:de:8f:
b3:ef:f3:a1:94:e7:55:87:f7:88:e7:ee:66:49:9e:bf:8d:76:
84:c3:69:74:b2:4b:0f:85:a6:96:52:e1:e5:b0:20:48:a2:d3:
80:ef:f4:39:3b:fe:13:3d:a8:15:70:32:65:12:1f:de:fc:9b:
70:7f:f8:3d:63:de:0f:2f:64:31:d1:8d:3d:29:5f:28:74:a0:
ea:4a:7c:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:31:47 2025 by rpki-client