Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/68/CU3CaOPUXGCuNXD8etcdVuNG44U.roa
File: CU3CaOPUXGCuNXD8etcdVuNG44U.roa (raw, json)
Hash identifier: rsFWiTVwdXKODDLxAwCbBK3MKpe72E84rLHNcZQjRsQ=
Subject key identifier: 09:4D:C2:68:E3:D4:5C:60:AE:35:70:FC:7A:D7:1D:56:E3:46:E3:85
Certificate issuer: /CN=65DE52E64BE43E328AA69F3AB2D347F8833EC637
Certificate serial: 5A
Authority key identifier: 65:DE:52:E6:4B:E4:3E:32:8A:A6:9F:3A:B2:D3:47:F8:83:3E:C6:37
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/CU3CaOPUXGCuNXD8etcdVuNG44U.roa
Signing time: Sat 31 Aug 2024 01:31:53 +0000
ROA not before: Sat 31 Aug 2024 01:31:53 +0000
ROA not after: Fri 15 Aug 2025 01:30:02 +0000
asID: 9374
IP address blocks: 218.216.144.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90 (0x5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65DE52E64BE43E328AA69F3AB2D347F8833EC637
Validity
Not Before: Aug 31 01:31:53 2024 GMT
Not After : Aug 15 01:30:02 2025 GMT
Subject: CN=094DC268E3D45C60AE3570FC7AD71D56E346E385
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:46:2e:95:89:7d:d7:3b:e4:23:c8:55:35:2b:
7e:e4:40:9b:62:cb:11:9d:be:b8:8b:3e:44:3c:37:
1b:77:ef:ff:79:eb:35:93:d9:b9:0c:70:2a:e6:3f:
f2:db:48:5d:e6:95:b7:91:94:7e:5d:5b:43:18:f7:
d2:3f:15:97:56:29:fb:0d:b2:47:7e:93:ed:79:1d:
ec:53:86:f7:25:4d:d2:f1:3a:3d:70:9e:14:ab:06:
54:16:51:74:c5:7f:e9:a3:da:c4:8e:0c:60:60:a3:
08:64:44:7d:0c:c0:00:86:82:e9:0c:47:97:80:82:
e5:be:1a:32:f8:04:47:bc:d8:7b:fb:a4:44:c4:53:
30:3f:dd:ee:30:2a:b9:3d:09:9f:f7:8a:93:cb:4c:
07:5b:b0:c5:3b:1e:23:b3:11:4c:0b:a8:38:63:54:
09:3a:53:5f:96:5c:03:57:aa:04:6d:7b:62:a5:22:
f6:8b:c6:92:2c:84:4c:02:ab:60:71:af:0d:48:cd:
53:8e:eb:91:41:64:6c:82:1d:a9:90:31:59:9d:2d:
ba:fc:67:e3:fe:f3:13:43:c1:2e:f4:33:1d:55:4a:
69:e3:02:05:8b:ba:6a:67:66:18:6d:f7:98:04:9a:
2a:e6:86:47:86:fc:1e:b9:88:31:85:f8:da:a4:ec:
52:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:4D:C2:68:E3:D4:5C:60:AE:35:70:FC:7A:D7:1D:56:E3:46:E3:85
X509v3 Authority Key Identifier:
keyid:65:DE:52:E6:4B:E4:3E:32:8A:A6:9F:3A:B2:D3:47:F8:83:3E:C6:37
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/CU3CaOPUXGCuNXD8etcdVuNG44U.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
218.216.144.0/20
Signature Algorithm: sha256WithRSAEncryption
8d:32:da:37:e3:fb:bf:5c:39:60:48:03:5e:79:cd:35:4b:5e:
7f:b9:6c:e0:c3:55:19:fe:91:93:3c:01:65:c8:b6:4e:06:3a:
d2:c0:21:f7:cd:49:54:42:20:af:26:9b:22:d8:cb:ca:fe:cb:
57:6f:67:0b:b2:f8:ef:3e:51:14:9b:9c:cd:ce:fb:d8:34:03:
38:f4:f4:81:e4:10:c4:eb:32:7b:17:65:08:b0:f4:fb:af:f8:
e8:05:d2:1f:19:f0:bb:43:8d:5f:88:44:84:dc:2c:6c:70:c0:
94:be:6e:36:b9:40:6e:ad:2f:2c:2f:d0:1a:17:a0:09:1a:d1:
6b:6f:48:f6:19:2e:2b:2e:b0:dc:b0:71:3f:f2:9d:ae:77:36:
22:eb:5f:be:17:8d:91:19:f0:45:50:5b:83:bd:39:3f:bd:28:
b3:71:15:c3:b4:32:be:1c:d8:a9:50:61:9d:f2:4b:0b:3e:bb:
8a:86:fc:05:67:96:ec:43:ec:43:b0:a5:b5:08:d9:6f:2d:e0:
c3:5d:dc:1f:a8:30:f6:e2:5a:ea:7f:00:e3:7b:a5:7c:9e:d7:
90:86:44:5a:54:d7:40:18:a7:f5:4b:55:3f:02:c5:7a:c1:fc:
46:a2:f8:82:46:bc:d1:b1:b7:58:b3:a1:07:e2:39:90:48:fe:
cc:fc:4c:bc
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgIBWjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2NURF
NTJFNjRCRTQzRTMyOEFBNjlGM0FCMkQzNDdGODgzM0VDNjM3MB4XDTI0MDgzMTAx
MzE1M1oXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoMDk0REMyNjhFM0Q0NUM2
MEFFMzU3MEZDN0FENzFENTZFMzQ2RTM4NTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAKtGLpWJfdc75CPIVTUrfuRAm2LLEZ2+uIs+RDw3G3fv/3nrNZPZ
uQxwKuY/8ttIXeaVt5GUfl1bQxj30j8Vl1Yp+w2yR36T7Xkd7FOG9yVN0vE6PXCe
FKsGVBZRdMV/6aPaxI4MYGCjCGREfQzAAIaC6QxHl4CC5b4aMvgER7zYe/ukRMRT
MD/d7jAquT0Jn/eKk8tMB1uwxTseI7MRTAuoOGNUCTpTX5ZcA1eqBG17YqUi9ovG
kiyETAKrYHGvDUjNU47rkUFkbIIdqZAxWZ0tuvxn4/7zE0PBLvQzHVVKaeMCBYu6
amdmGG33mASaKuaGR4b8HrmIMYX42qTsUhkCAwEAAaOCAiIwggIeMB0GA1UdDgQW
BBQJTcJo49RcYK41cPx61x1W40bjhTAfBgNVHSMEGDAWgBRl3lLmS+Q+Moqmnzqy
00f4gz7GNzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY
oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvNjgvWmQ1UzVrdmtQaktLcHA4NnN0TkgtSU0teGpjLmNybDBtBggrBgEF
BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p
Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvWmQ1UzVrdmtQaktLcHA4NnN0TkgtSU0t
eGpjLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG
AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx
QTczODEwMDAwLzY4L0NVM0NhT1BVWEdDdU5YRDhldGNkVnVORzQ0VS5yb2EwRgYI
KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw
L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BATa2JAwDQYJKoZIhvcNAQELBQADggEBAI0y2jfj+79cOWBIA155zTVLXn+5bODD
VRn+kZM8AWXItk4GOtLAIffNSVRCIK8mmyLYy8r+y1dvZwuy+O8+URSbnM3O+9g0
Azj09IHkEMTrMnsXZQiw9Puv+OgF0h8Z8LtDjV+IRITcLGxwwJS+bja5QG6tLywv
0BoXoAka0WtvSPYZLisusNywcT/yna53NiLrX74XjZEZ8EVQW4O9OT+9KLNxFcO0
Mr4c2KlQYZ3ySws+u4qG/AVnluxD7EOwpbUI2W8t4MNd3B+oMPbiWup/AON7pXye
15CGRFpU10AYp/VLVT8CxXrB/Eai+IJGvNGxt1izoQfiOZBI/sz8TLw=
-----END CERTIFICATE-----
Generated at Sun Apr 6 12:25:42 2025 by rpki-client