Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/3o7ytR7zpqk-K5FwDWImzaga2lk.roa
File: 3o7ytR7zpqk-K5FwDWImzaga2lk.roa (raw, json)
Hash identifier: hiwxefkgs25WmShzGm4iqgrGYhpXzq2y6frtH400LpY=
Subject key identifier: DE:8E:F2:B5:1E:F3:A6:A9:3E:2B:91:70:0D:62:26:CD:A8:1A:DA:59
Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Certificate serial: 053E
Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/3o7ytR7zpqk-K5FwDWImzaga2lk.roa
Signing time: Fri 31 Jan 2025 01:30:26 +0000
ROA not before: Fri 31 Jan 2025 01:30:26 +0000
ROA not after: Thu 15 Jan 2026 01:30:03 +0000
asID: 10010
IP address blocks: 59.86.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1342 (0x53e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Validity
Not Before: Jan 31 01:30:26 2025 GMT
Not After : Jan 15 01:30:03 2026 GMT
Subject: CN=DE8EF2B51EF3A6A93E2B91700D6226CDA81ADA59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:3d:4e:b3:45:ab:d9:7a:91:bc:3d:85:85:c0:
c4:be:cc:d9:35:86:f8:75:f2:ac:04:a7:b8:32:7d:
58:8a:be:77:c7:f0:4c:a4:aa:a8:7d:18:3f:50:b9:
1e:64:a3:c0:39:d5:4b:30:99:e7:9b:e7:93:ac:3d:
da:3e:ab:ab:16:e4:20:ba:25:34:aa:eb:f3:59:4e:
5f:09:05:7c:a5:ef:83:8d:e2:e3:78:b3:11:0c:35:
86:01:04:66:76:ad:49:c2:af:ea:7e:58:83:64:e1:
c9:77:e6:25:63:ac:12:94:e7:fb:82:4e:f3:f3:83:
e2:87:1f:53:91:f0:68:9b:06:15:32:1d:8d:c2:d1:
24:75:a7:8a:e9:b5:4b:c2:84:59:17:9b:46:48:84:
c9:48:84:ec:18:04:65:aa:d8:3c:c0:f8:a9:c6:e2:
45:57:fe:d3:0b:c3:c2:74:b2:b3:fa:df:9e:7b:35:
17:59:4b:15:69:ea:49:5d:e6:f5:0e:07:50:c6:ae:
01:7a:22:7d:49:22:33:0c:7c:5e:77:16:ba:bb:62:
f3:9b:db:56:f9:a8:62:60:95:cd:83:e5:f9:08:23:
ad:1a:18:5f:de:8f:eb:ce:36:cd:ad:6b:bc:14:12:
dc:dd:5e:be:92:b2:ca:65:ad:7f:e3:2a:ff:fc:1c:
1c:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:8E:F2:B5:1E:F3:A6:A9:3E:2B:91:70:0D:62:26:CD:A8:1A:DA:59
X509v3 Authority Key Identifier:
keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/3o7ytR7zpqk-K5FwDWImzaga2lk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
59.86.64.0/18
Signature Algorithm: sha256WithRSAEncryption
62:4a:83:fa:ad:12:76:9a:e3:97:21:00:5b:a2:1d:e1:3c:d5:
66:be:7d:a7:6c:b7:4f:92:6f:9f:07:94:af:ee:02:35:5c:22:
3f:14:b1:38:44:3f:02:17:28:fc:a4:e9:a2:55:62:f6:fa:15:
05:40:de:73:89:b1:bf:b5:47:db:bb:f4:00:8f:77:de:58:3f:
19:1e:e1:ef:0c:1d:38:4c:eb:7c:29:cf:bf:d1:70:45:3f:24:
c8:0e:4a:1d:61:d1:0b:b3:86:2f:98:4c:eb:99:1b:ce:3b:a1:
16:db:ed:d4:7c:f1:75:b3:46:14:10:3d:3b:e4:f9:df:7e:8a:
d9:10:1f:47:f2:b6:1e:72:5a:07:ef:33:a3:f0:48:58:14:52:
16:56:b4:26:03:b0:f8:48:1a:d2:4a:ce:a4:fe:1e:b6:2d:c4:
17:da:27:1d:17:a3:1e:51:64:f3:54:06:91:ce:18:ea:e4:24:
78:35:c2:a9:dd:77:1f:b1:ae:12:2c:9a:b0:7d:de:fc:0a:ea:
4a:30:49:08:8a:a9:f1:c9:9f:03:d4:11:ec:85:50:0b:17:43:
c6:cc:02:25:df:95:17:97:f5:eb:3f:da:ce:0c:13:bb:94:88:
37:fc:87:e8:64:d7:b4:76:7b:db:99:15:4f:01:b5:85:6f:d3:
c6:63:39:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:35:08 2025 by rpki-client