Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/530/dlKU5aLc89EPwfWdF6yiRsQ5dWk.roa
File: dlKU5aLc89EPwfWdF6yiRsQ5dWk.roa (raw, json)
Hash identifier: 8joRu/s77VRqSZ5QHr650rOOe4LCkDDNIxqXSbCkUVM=
Subject key identifier: 76:52:94:E5:A2:DC:F3:D1:0F:C1:F5:9D:17:AC:A2:46:C4:39:75:69
Certificate issuer: /CN=40D220B9E4A6358E03CD47864517D9D300B06FF0
Certificate serial: 4F
Authority key identifier: 40:D2:20:B9:E4:A6:35:8E:03:CD:47:86:45:17:D9:D3:00:B0:6F:F0
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QNIgueSmNY4DzUeGRRfZ0wCwb_A.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/dlKU5aLc89EPwfWdF6yiRsQ5dWk.roa
Signing time: Thu 31 Oct 2024 01:30:00 +0000
ROA not before: Thu 31 Oct 2024 01:30:00 +0000
ROA not after: Wed 15 Oct 2025 01:30:02 +0000
asID: 131925
IP address blocks: 160.237.188.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79 (0x4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40D220B9E4A6358E03CD47864517D9D300B06FF0
Validity
Not Before: Oct 31 01:30:00 2024 GMT
Not After : Oct 15 01:30:02 2025 GMT
Subject: CN=765294E5A2DCF3D10FC1F59D17ACA246C4397569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:5c:a1:32:47:c2:1d:8f:c1:b4:5a:50:76:99:
56:6d:3f:63:76:d2:4c:95:58:be:90:e3:4f:fa:f5:
88:cf:17:1d:bc:c1:b3:e7:92:92:5b:70:07:71:8f:
5d:ab:77:a4:ee:f1:eb:58:d2:ed:6c:51:ce:5c:3c:
19:c2:34:fe:b6:61:20:bc:d8:cb:b7:07:05:d3:aa:
11:13:94:62:db:f6:ce:28:88:bc:43:a8:96:3d:2d:
5d:99:eb:29:98:f3:7c:72:6d:38:a4:1a:24:c0:c9:
87:20:da:a1:3c:64:32:26:17:8c:52:e1:fa:ee:f7:
1d:d5:09:db:fb:9c:df:c1:01:4e:09:91:08:af:a0:
2b:30:14:99:6e:a2:62:30:92:eb:11:d7:66:c4:1e:
33:a1:db:74:e8:ee:2c:73:d7:12:6c:7a:c4:6e:0a:
3a:6c:e2:ee:82:0c:89:d0:de:03:c4:3c:e8:b8:ef:
51:35:60:2f:49:bd:71:3e:56:ee:4f:60:e8:dc:54:
54:32:f4:0f:5e:5c:bb:4c:f1:49:1f:e3:7c:e1:18:
79:7c:9c:9c:9c:17:b8:26:32:dc:79:8f:4b:36:1a:
fc:bc:a4:c4:6a:c3:ea:e8:3a:e5:d3:93:a6:83:ca:
d7:14:23:3a:d7:27:fc:c0:77:1b:3f:a4:33:c5:be:
dc:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:52:94:E5:A2:DC:F3:D1:0F:C1:F5:9D:17:AC:A2:46:C4:39:75:69
X509v3 Authority Key Identifier:
keyid:40:D2:20:B9:E4:A6:35:8E:03:CD:47:86:45:17:D9:D3:00:B0:6F:F0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/QNIgueSmNY4DzUeGRRfZ0wCwb_A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QNIgueSmNY4DzUeGRRfZ0wCwb_A.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/dlKU5aLc89EPwfWdF6yiRsQ5dWk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.237.188.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:f5:33:3f:ba:10:4b:dd:b6:12:3b:ea:5d:e9:cb:93:b6:1a:
46:b3:ee:55:e3:66:de:a5:54:7a:81:00:3d:15:02:23:37:7b:
ab:86:18:18:90:e3:d1:17:0d:a9:86:2b:b6:59:2b:9e:dd:24:
f1:10:2a:5f:5a:73:c8:62:b5:97:ec:73:e8:72:5d:d7:99:4a:
d8:ed:a2:34:6e:ba:af:52:23:64:59:91:5e:02:b3:6f:fb:07:
e3:a9:69:63:2c:a4:bf:26:4e:72:d6:88:58:84:5a:23:2d:8b:
51:6e:a8:94:c4:14:87:6a:ab:67:be:78:e7:d7:13:f5:28:00:
50:36:cf:51:56:2e:a7:27:79:c3:4e:d1:68:23:27:0f:11:8e:
36:0b:78:64:8a:51:ee:ae:06:e4:c0:2b:0e:e1:36:da:32:66:
78:a8:c3:b2:71:55:3a:24:33:2b:73:50:80:45:81:52:ab:4a:
0b:80:bf:21:da:6b:52:53:56:3e:3b:50:73:75:c5:09:d0:b6:
fe:5b:f3:c2:cb:8a:6d:2f:a0:c0:32:13:8a:88:c5:3e:6a:ac:
e2:00:ee:de:0a:e0:e9:4e:45:ba:5b:61:00:90:7a:fc:d3:84:
f3:16:8a:f7:84:7d:f8:1d:b0:09:17:dd:d7:97:39:d2:4b:02:
af:07:f9:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:25:01 2025 by rpki-client