Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/602/QCArDhLb3vmYFMUeCMwU-YstOng.roa
File: QCArDhLb3vmYFMUeCMwU-YstOng.roa (raw, json)
Hash identifier: mydWPWACQ7MLweBFMFDlRPY8IuJI3L4rsiVabiRv71k=
Subject key identifier: 40:20:2B:0E:12:DB:DE:F9:98:14:C5:1E:08:CC:14:F9:8B:2D:3A:78
Certificate issuer: /CN=4EFF1AB6EADA273BA066DB0F77B79D6A0D901542
Certificate serial: 73
Authority key identifier: 4E:FF:1A:B6:EA:DA:27:3B:A0:66:DB:0F:77:B7:9D:6A:0D:90:15:42
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tv8aturaJzugZtsPd7edag2QFUI.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/602/QCArDhLb3vmYFMUeCMwU-YstOng.roa
Signing time: Tue 31 Dec 2024 01:28:17 +0000
ROA not before: Tue 31 Dec 2024 01:28:17 +0000
ROA not after: Mon 15 Dec 2025 01:30:03 +0000
asID: 32787
IP address blocks: 203.169.14.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115 (0x73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4EFF1AB6EADA273BA066DB0F77B79D6A0D901542
Validity
Not Before: Dec 31 01:28:17 2024 GMT
Not After : Dec 15 01:30:03 2025 GMT
Subject: CN=40202B0E12DBDEF99814C51E08CC14F98B2D3A78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:db:36:3a:c1:b0:64:f5:63:b1:b1:86:16:66:
81:18:0c:24:bf:06:d2:53:75:8f:07:46:6b:ce:ea:
6d:09:69:76:b8:f7:51:71:b0:e0:42:43:e9:32:73:
15:b4:87:1e:a1:a0:45:0b:7f:fc:56:53:8c:a7:85:
6a:cb:c2:cc:90:ec:db:32:0b:75:a3:34:7d:33:64:
03:e4:97:eb:f6:fd:a3:b0:74:33:87:cc:21:97:53:
34:0f:80:7f:cc:e5:1b:7a:37:ec:11:54:50:2d:1d:
d7:f8:36:45:21:0c:bc:c2:4f:e4:31:3d:f8:c1:4b:
60:d8:25:39:fd:02:6d:b4:55:0a:9b:64:d2:11:f9:
4e:9f:4d:a4:64:e6:77:3e:fa:53:73:1f:c9:24:fd:
4a:1b:94:b9:e7:87:46:2c:54:62:39:41:bb:a3:3e:
42:f9:a9:0e:6d:47:a2:ec:4d:28:40:25:e6:db:00:
3d:c9:82:5d:b4:54:21:a2:c9:57:5f:71:eb:4f:1b:
c9:25:a1:e4:9c:2c:30:27:f3:22:e9:7c:0a:4a:ba:
d9:e3:85:ee:a7:83:8b:35:65:23:0f:c2:dc:27:be:
15:1e:e5:07:5a:23:84:7f:95:80:ba:e9:bc:2a:bb:
54:95:fd:dc:b7:c8:59:db:e8:d7:7d:03:f4:94:6f:
64:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:20:2B:0E:12:DB:DE:F9:98:14:C5:1E:08:CC:14:F9:8B:2D:3A:78
X509v3 Authority Key Identifier:
keyid:4E:FF:1A:B6:EA:DA:27:3B:A0:66:DB:0F:77:B7:9D:6A:0D:90:15:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/602/Tv8aturaJzugZtsPd7edag2QFUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tv8aturaJzugZtsPd7edag2QFUI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/602/QCArDhLb3vmYFMUeCMwU-YstOng.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.169.14.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:ee:a9:63:59:b3:25:d6:66:4e:a6:c8:97:c6:9d:5e:99:67:
b5:fb:de:4e:90:a7:c3:95:d9:bf:4b:71:e0:bb:65:e0:20:0e:
f3:c1:0a:a5:02:2b:a9:fa:4c:1e:d6:d8:ec:04:f1:95:30:83:
af:df:12:25:56:96:b5:c1:96:aa:9b:2f:70:34:ca:bc:6f:22:
ca:9b:06:57:59:c0:00:f1:59:9f:35:c2:9b:97:cd:ec:55:b7:
43:54:6b:e5:42:84:40:90:69:c3:b4:d7:f0:7c:26:e9:f3:b1:
ce:d4:ac:ec:d5:8a:81:0f:c2:75:0f:8a:c9:80:e8:5f:c5:1b:
4c:4f:d8:bc:bf:8b:13:97:fe:3a:f5:ef:b1:37:e4:68:c7:42:
12:5f:c8:30:0f:96:36:d5:dc:4c:17:3f:37:77:75:83:2f:ff:
3c:7b:b7:28:16:18:79:bf:5a:69:b3:a7:d5:ab:de:df:8f:58:
45:35:50:61:04:65:18:ba:e6:6f:f3:42:0f:d1:2d:86:d8:b8:
fe:59:92:02:15:af:82:6e:63:8d:a1:ea:8f:d4:9f:02:4b:f9:
02:6c:f0:e0:93:43:9b:28:4b:79:56:5e:3b:d4:38:7f:9d:d6:
0d:15:3c:9f:cc:92:4f:bb:34:88:79:6a:de:c2:92:62:9a:91:
f6:79:67:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:08:49 2025 by rpki-client