Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/OI48UrY7VQ7mEMnvFum9xwhsMvc.roa
File: OI48UrY7VQ7mEMnvFum9xwhsMvc.roa (raw, json)
Hash identifier: gyvk93FNWip2wDL5cP9PiOOubIcH1adR6jlFRHFUcrk=
Subject key identifier: 38:8E:3C:52:B6:3B:55:0E:E6:10:C9:EF:16:E9:BD:C7:08:6C:32:F7
Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Certificate serial: 057B
Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/OI48UrY7VQ7mEMnvFum9xwhsMvc.roa
Signing time: Fri 31 Jan 2025 01:39:50 +0000
ROA not before: Fri 31 Jan 2025 01:39:50 +0000
ROA not after: Thu 15 Jan 2026 01:30:03 +0000
asID: 10010
IP address blocks: 220.148.132.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1403 (0x57b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Validity
Not Before: Jan 31 01:39:50 2025 GMT
Not After : Jan 15 01:30:03 2026 GMT
Subject: CN=388E3C52B63B550EE610C9EF16E9BDC7086C32F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:7c:40:7d:92:18:a5:76:0c:f8:14:d9:bf:23:
14:3e:bb:59:17:73:dd:78:57:10:09:75:d2:28:13:
26:4f:8b:e0:5e:01:4e:f6:52:fc:2a:5f:a3:ef:e0:
f9:a2:19:6b:a0:8f:6b:94:c6:53:ec:92:52:0d:ca:
ca:5f:f0:4b:3e:6b:b5:f6:88:7d:ad:7a:dd:7e:19:
db:bf:bb:07:03:b7:46:92:50:9a:9a:ef:21:76:fe:
d0:27:aa:75:2b:1b:1e:84:a7:a4:9c:50:c4:fc:a8:
f3:fb:9f:c1:cd:ff:02:ac:52:42:64:36:66:e9:b7:
44:7b:39:19:e2:b6:bc:11:c0:89:23:fc:48:b9:ec:
ff:b2:97:f3:25:35:a9:7f:70:4b:a7:58:91:50:d8:
41:41:e1:55:04:74:e1:1f:98:69:d6:8f:65:57:52:
8d:2f:c0:8f:fc:20:34:6d:b6:62:a5:20:3b:0b:8e:
00:3c:a9:13:25:a5:6c:60:b7:16:1f:0c:a2:6d:0e:
6e:15:14:d8:6e:8d:76:5b:6b:fb:7b:86:95:23:fe:
e3:40:04:90:94:00:fe:1f:0e:bc:bc:1e:b8:52:1a:
6a:28:37:04:5c:19:1d:c0:5f:de:92:a4:2e:a5:89:
79:ac:74:51:98:9f:c1:21:5e:ba:eb:de:46:fc:5d:
55:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:8E:3C:52:B6:3B:55:0E:E6:10:C9:EF:16:E9:BD:C7:08:6C:32:F7
X509v3 Authority Key Identifier:
keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/OI48UrY7VQ7mEMnvFum9xwhsMvc.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.148.132.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:9c:09:a0:50:df:af:e3:2d:4a:c8:8d:6d:7c:5d:72:4f:70:
a9:e1:2b:bf:55:b2:9a:1f:38:c4:a5:82:38:90:d0:b2:6a:84:
d5:ea:23:07:a5:32:03:73:95:60:c8:eb:43:6e:c0:b8:54:8d:
a9:b8:03:11:4b:9b:80:34:90:c3:df:46:79:2f:82:10:84:95:
12:3c:c4:15:85:1c:ae:e1:c1:91:b5:5a:02:f8:88:88:07:1c:
96:44:09:f0:6c:81:cc:b9:d8:62:44:95:0a:0e:a5:07:f6:c9:
7b:56:69:44:90:b5:7c:99:e3:b8:ca:20:d4:51:0a:e2:89:f9:
8d:fd:73:25:91:c9:cc:ad:31:a3:92:4e:80:31:86:a0:5c:89:
05:5d:4b:87:f3:0b:66:c2:17:1f:d6:b5:04:f9:85:04:8a:2b:
dd:51:fa:51:85:70:0e:56:c1:ed:47:97:71:60:aa:ff:66:1d:
60:f5:a8:8e:be:a0:8b:19:04:ab:f0:f2:ef:eb:f5:1f:09:4d:
ec:f9:e2:dc:10:3f:fe:be:62:f9:78:20:21:c9:f6:b5:12:91:
33:10:b0:d7:05:1b:cd:8e:c2:b2:55:3d:3d:52:83:71:b4:2c:
7c:43:41:6f:1a:3e:b3:03:52:2a:12:55:2d:c1:3b:eb:ea:3c:
a6:7d:a5:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:28:07 2025 by rpki-client