Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/530/Nzk8HihwpMsok8P4SUlzqCGMcGY.roa
File: Nzk8HihwpMsok8P4SUlzqCGMcGY.roa (raw, json)
Hash identifier: wjPKGEHzqEsVuYFyQuE/2vrV6fjEQNvIMhV6Itj0jnA=
Subject key identifier: 37:39:3C:1E:28:70:A4:CB:28:93:C3:F8:49:49:73:A8:21:8C:70:66
Certificate issuer: /CN=1B20A06A21205820B28FD06CE0A84F03FCDAEBC5
Certificate serial: 62
Authority key identifier: 1B:20:A0:6A:21:20:58:20:B2:8F:D0:6C:E0:A8:4F:03:FC:DA:EB:C5
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GyCgaiEgWCCyj9Bs4KhPA_za68U.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/Nzk8HihwpMsok8P4SUlzqCGMcGY.roa
Signing time: Tue 18 Feb 2025 00:29:12 +0000
ROA not before: Tue 18 Feb 2025 00:29:12 +0000
ROA not after: Sun 15 Feb 2026 01:30:03 +0000
asID: 55900
IP address blocks: 218.223.132.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98 (0x62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1B20A06A21205820B28FD06CE0A84F03FCDAEBC5
Validity
Not Before: Feb 18 00:29:12 2025 GMT
Not After : Feb 15 01:30:03 2026 GMT
Subject: CN=37393C1E2870A4CB2893C3F8494973A8218C7066
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:cd:fe:c7:90:ee:03:7e:31:0e:de:51:82:87:
4f:c5:51:a8:91:9b:65:d7:4f:29:8f:6d:58:5a:94:
22:e4:23:84:45:dd:37:fe:d7:71:95:53:ff:31:08:
4d:4b:97:08:de:46:1c:64:9e:01:b8:d0:4a:ff:76:
d9:25:8f:f5:a9:fe:93:a9:cc:77:41:30:60:59:4b:
c8:0f:13:45:3b:c3:42:b7:b8:3c:52:aa:2c:45:d2:
e0:89:df:78:ba:0c:c6:37:55:63:79:17:62:e1:e3:
8e:1b:50:70:1c:b6:04:6a:c1:c2:89:84:c5:a9:58:
15:c5:21:85:7b:52:1e:60:74:03:1c:e5:c0:15:b4:
9f:c8:5b:e2:86:d2:b5:ae:76:03:8c:c3:a8:61:04:
c2:bb:4b:17:ad:f0:41:b7:3b:80:48:92:09:dc:f7:
b5:a9:f4:bb:1d:ae:5f:a7:08:0c:0b:33:b1:ac:e9:
cd:e9:cf:33:c8:77:b6:f9:0f:69:5f:05:30:95:4d:
bc:45:5d:3b:90:60:0c:0d:a8:7f:b1:5f:db:fe:5e:
3a:4d:4b:92:ba:9b:56:5d:6c:6a:5f:7c:dd:eb:fe:
d8:7a:3a:07:98:f3:32:48:32:1f:78:30:c9:ed:d9:
d1:15:31:45:30:df:8a:43:61:14:6b:fb:dd:44:0c:
0e:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:39:3C:1E:28:70:A4:CB:28:93:C3:F8:49:49:73:A8:21:8C:70:66
X509v3 Authority Key Identifier:
keyid:1B:20:A0:6A:21:20:58:20:B2:8F:D0:6C:E0:A8:4F:03:FC:DA:EB:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/GyCgaiEgWCCyj9Bs4KhPA_za68U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GyCgaiEgWCCyj9Bs4KhPA_za68U.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/Nzk8HihwpMsok8P4SUlzqCGMcGY.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
218.223.132.0/22
Signature Algorithm: sha256WithRSAEncryption
af:a3:e0:d8:69:99:7a:eb:f9:a9:f3:a7:5b:25:8d:10:b6:5c:
32:d7:b6:4c:84:c8:73:8a:71:89:0c:e0:55:a6:31:dc:3e:98:
2f:e7:bb:de:f9:5d:16:c7:3f:4e:34:35:fd:7a:07:bc:96:75:
00:ef:9a:59:d8:24:5b:4a:40:cf:05:03:8a:9a:e8:b4:75:26:
4b:94:d9:1f:1a:1c:fc:f7:81:79:e4:8e:de:3d:d2:10:63:93:
45:22:c8:c9:11:2f:72:e8:93:df:f3:99:ad:44:0b:66:bb:3d:
29:36:ea:10:5f:b0:b5:84:b5:28:fc:8c:8d:3f:06:61:ce:d9:
79:ed:68:fe:06:57:7b:44:66:f5:d5:0a:04:e7:a8:7c:ed:a3:
03:3c:0b:a2:07:1c:4f:78:7c:21:43:0f:50:5e:27:31:f0:58:
84:80:5e:2a:f1:31:3c:4b:37:82:d5:ad:f1:95:21:13:d5:ba:
00:42:8f:7b:69:27:84:7b:ae:24:fd:a7:99:6e:9d:e3:f9:05:
cf:52:d4:5a:f0:15:68:d5:bd:45:99:ad:97:94:2e:7a:a2:a1:
f9:2c:70:87:89:77:06:e7:ef:59:9d:c6:4a:ec:8d:89:cf:14:
6e:9e:5f:21:1a:92:8f:55:e6:be:39:ba:3e:a8:0c:be:03:8f:
2d:42:27:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:27:45 2025 by rpki-client