Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/kdGd_XDRXsaOoEeg-pj-h8smdKE.roa
File: kdGd_XDRXsaOoEeg-pj-h8smdKE.roa (raw, json)
Hash identifier: zQmDLoNUtBC6YvjBgAyy5OxeN9kv2v3RfgLib6UT4Hs=
Subject key identifier: 91:D1:9D:FD:70:D1:5E:C6:8E:A0:47:A0:FA:98:FE:87:CB:26:74:A1
Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C
Certificate serial: 032A
Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/kdGd_XDRXsaOoEeg-pj-h8smdKE.roa
Signing time: Thu 24 Oct 2024 01:31:57 +0000
ROA not before: Thu 24 Oct 2024 01:31:57 +0000
ROA not after: Wed 15 Oct 2025 01:30:02 +0000
asID: 10013
IP address blocks: 221.121.160.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 810 (0x32a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C
Validity
Not Before: Oct 24 01:31:57 2024 GMT
Not After : Oct 15 01:30:02 2025 GMT
Subject: CN=91D19DFD70D15EC68EA047A0FA98FE87CB2674A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:85:89:82:ee:db:92:b2:16:db:d4:44:ef:86:
c1:99:56:b4:9e:5c:4a:4c:f6:bd:09:c5:23:0d:05:
df:82:d1:2a:15:f9:27:b9:56:ef:1b:7e:a9:4a:de:
82:14:97:48:67:49:83:19:0a:38:8e:25:e6:91:c4:
92:01:ac:a8:e0:a0:1b:07:35:eb:35:7e:1e:a0:9a:
d8:c3:b4:3c:71:0e:c7:77:5a:0b:60:88:8e:d3:f6:
40:e5:87:de:c9:58:d3:b9:df:fb:a1:49:50:2c:96:
7a:31:05:d7:c6:ef:d7:71:89:d6:4d:ce:12:b4:80:
44:b5:22:e1:64:24:30:ff:df:25:f5:c0:db:f6:bd:
0f:0f:93:85:ee:e8:93:08:ac:ee:1d:f5:4e:f4:b4:
67:3e:51:c0:2b:13:57:30:ca:15:07:ce:95:fa:79:
99:22:51:d3:ba:c5:98:27:a0:8e:ef:56:72:d0:c1:
4e:c8:d8:bf:ee:bd:07:dc:5f:22:83:01:dc:42:38:
ee:2d:41:a2:3c:0d:08:9b:0f:ba:9a:24:59:05:f8:
d5:0e:50:93:00:89:b3:fe:2d:ac:e8:a0:2d:ce:f6:
0b:86:e7:4c:21:0f:58:1d:f7:69:7d:40:cd:04:f9:
1d:d4:2f:90:01:02:b3:ee:8b:62:24:c6:90:86:4f:
55:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:D1:9D:FD:70:D1:5E:C6:8E:A0:47:A0:FA:98:FE:87:CB:26:74:A1
X509v3 Authority Key Identifier:
keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/kdGd_XDRXsaOoEeg-pj-h8smdKE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
221.121.160.0/20
Signature Algorithm: sha256WithRSAEncryption
71:b4:68:a9:24:34:10:3e:16:85:31:a6:15:d9:21:80:11:ab:
10:df:a9:58:93:b3:45:0a:fb:77:e5:53:58:13:90:07:bb:c0:
e5:77:14:a8:72:ab:67:5f:ac:d2:d5:4e:b9:22:ea:2b:bf:37:
07:cd:5d:7d:8a:77:c4:37:8c:80:15:de:dc:bb:7b:d0:26:82:
a7:d9:89:f1:80:34:8f:6f:89:c8:e7:6a:08:80:46:39:4e:42:
16:6a:95:1d:7f:e9:10:e6:1d:49:7c:07:4a:28:fa:4e:c2:d1:
64:be:3d:d7:0b:21:0d:38:bb:36:78:78:b3:66:51:c3:93:f8:
16:67:37:e7:b4:78:81:97:50:ee:73:01:31:d0:76:13:0f:f6:
95:42:0a:72:8b:ad:30:27:c1:02:4b:dd:e2:4e:c3:42:b4:24:
d0:cb:40:65:81:23:1e:56:49:80:96:89:49:da:c0:c7:26:b9:
02:f4:c8:39:05:da:b9:44:89:13:15:5a:bc:fe:f2:d6:cb:36:
96:dd:09:77:f0:bd:87:a4:a7:27:67:8d:ba:cd:16:e8:b5:ed:
22:6a:63:c6:cf:18:70:fa:b4:79:64:03:0a:86:c9:15:b4:84:
8c:95:35:93:21:32:3c:2d:ba:37:3b:90:32:8e:7e:09:8e:80:
8f:29:07:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:23:02 2025 by rpki-client