Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/nwCFsFrO-_Nx3JtlJnMkcGV0LRY.roa
File: nwCFsFrO-_Nx3JtlJnMkcGV0LRY.roa (raw, json)
Hash identifier: P+9Gdwv0hc9tAsZkkr1/hnoWMY9YojKi5Ilwpi06CfY=
Subject key identifier: 9F:00:85:B0:5A:CE:FB:F3:71:DC:9B:65:26:73:24:70:65:74:2D:16
Certificate issuer: /CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9
Certificate serial: 019D
Authority key identifier: 29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/nwCFsFrO-_Nx3JtlJnMkcGV0LRY.roa
Signing time: Sat 30 Nov 2024 01:28:25 +0000
ROA not before: Sat 30 Nov 2024 01:28:25 +0000
ROA not after: Sat 15 Nov 2025 01:30:03 +0000
asID: 2497
IP address blocks: 220.156.64.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 413 (0x19d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9
Validity
Not Before: Nov 30 01:28:25 2024 GMT
Not After : Nov 15 01:30:03 2025 GMT
Subject: CN=9F0085B05ACEFBF371DC9B652673247065742D16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:d1:07:ba:ff:13:2c:ec:94:e5:e9:71:55:2d:
a1:92:21:19:95:99:67:b3:4b:2c:97:49:fe:61:f0:
7e:de:b9:60:01:2c:32:d1:8a:35:93:b0:ff:19:07:
1e:07:86:06:4b:3d:d7:e4:fd:da:a3:a5:9e:12:8d:
d4:15:ea:6e:a8:89:7f:19:2b:4e:b8:ef:1a:73:20:
21:2a:50:34:c8:82:bf:6f:f4:6e:21:7d:17:70:d9:
30:5a:f3:dd:06:dd:e1:f4:57:5f:d1:ec:e5:92:09:
8b:a3:90:0b:9e:df:75:92:96:e5:41:4f:1e:de:47:
07:36:bc:76:5f:39:6a:f2:0d:29:be:1e:05:6d:51:
0d:5c:7d:31:6b:ef:4f:86:77:1b:69:42:5f:c3:8d:
c5:88:80:e8:00:66:bc:a4:ff:c1:91:e6:15:08:a1:
e4:73:68:a1:d4:4f:2c:78:8e:68:3e:40:6f:51:f1:
40:0e:53:c9:0c:79:52:c9:18:b7:d8:4f:31:cc:98:
9d:d3:65:ec:0f:cd:50:10:8f:35:d8:6a:31:ac:ea:
78:32:35:1d:99:a5:fa:b9:b1:3b:b7:8d:da:ac:53:
f1:26:c2:7c:5f:60:2a:6e:54:fb:62:a0:d2:3b:ed:
8a:56:98:93:b6:10:2c:22:12:5f:46:04:07:70:e2:
0a:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:00:85:B0:5A:CE:FB:F3:71:DC:9B:65:26:73:24:70:65:74:2D:16
X509v3 Authority Key Identifier:
keyid:29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/nwCFsFrO-_Nx3JtlJnMkcGV0LRY.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.156.64.0/19
Signature Algorithm: sha256WithRSAEncryption
45:a4:28:eb:39:c0:8f:60:1d:09:fe:a2:0d:df:43:af:c8:63:
82:56:f1:7b:28:ec:5c:91:38:fb:48:d1:66:d2:84:b4:37:79:
fa:07:f5:8b:eb:2b:92:5a:d2:c3:45:04:dd:92:06:cd:b3:de:
21:07:b8:ba:e5:31:50:1c:75:24:b4:2b:47:da:38:22:0b:df:
e5:ab:a4:94:1c:06:2d:8d:cb:5e:4c:cc:ac:84:0f:5f:89:66:
4b:87:13:18:bb:e1:13:1f:e8:92:e6:8b:17:21:e7:c6:37:8c:
ac:fb:07:d3:d9:96:b8:b5:0f:fb:cc:da:88:a0:4d:9f:48:92:
53:24:df:d9:c1:96:95:41:bf:e1:af:05:7f:48:20:a4:fc:a4:
47:1f:7d:c1:63:a3:95:b5:27:45:c0:ec:69:e4:1e:8e:47:88:
7d:cb:a2:83:2e:94:8a:8c:d2:9b:db:ac:cc:b6:26:62:b6:6a:
f6:aa:cd:fe:72:92:ea:9b:71:e5:4d:d8:e0:34:76:d3:a6:9b:
87:02:69:7e:75:83:b8:27:f5:48:7b:72:51:d6:2a:f4:be:db:
7e:1d:9b:fd:66:5d:91:78:fd:36:87:6b:9f:5a:fb:00:16:00:
70:44:45:47:e4:df:8d:50:00:c6:03:77:30:c9:df:41:3a:89:
87:b4:b8:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:20:21 2025 by rpki-client