Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/826/y4U1YR6vhlyruosJ9umUYe6QN38.roa
File: y4U1YR6vhlyruosJ9umUYe6QN38.roa (raw, json)
Hash identifier: rds4YXVduaT5SFpOdP8KLFZbt2nsA29YSRu9rv/2XXU=
Subject key identifier: CB:85:35:61:1E:AF:86:5C:AB:BA:8B:09:F6:E9:94:61:EE:90:37:7F
Certificate issuer: /CN=5E708E85B10AC603C06D785B42153DCFE1663AEA
Certificate serial: 3C
Authority key identifier: 5E:70:8E:85:B1:0A:C6:03:C0:6D:78:5B:42:15:3D:CF:E1:66:3A:EA
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XnCOhbEKxgPAbXhbQhU9z-FmOuo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/826/y4U1YR6vhlyruosJ9umUYe6QN38.roa
Signing time: Fri 31 Jan 2025 01:29:16 +0000
ROA not before: Fri 31 Jan 2025 01:29:16 +0000
ROA not after: Thu 15 Jan 2026 01:30:03 +0000
asID: 23618
IP address blocks: 117.18.24.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60 (0x3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5E708E85B10AC603C06D785B42153DCFE1663AEA
Validity
Not Before: Jan 31 01:29:16 2025 GMT
Not After : Jan 15 01:30:03 2026 GMT
Subject: CN=CB8535611EAF865CABBA8B09F6E99461EE90377F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:88:fb:5b:08:28:5b:9b:b3:2e:38:3d:60:ba:
63:e3:91:89:f3:6e:61:8d:ec:50:72:b7:70:c5:38:
cc:ad:73:ac:46:28:59:5e:f5:88:b1:1a:ce:c3:f4:
b1:32:72:36:d4:52:72:fc:1c:d9:11:3b:0c:8b:74:
73:25:92:ab:8e:8e:f9:c5:a2:63:90:9d:09:f6:d4:
8d:91:de:b6:53:b1:0a:ee:4f:7f:38:73:10:a7:cb:
95:5d:0c:a9:e3:37:7f:db:8b:7a:ab:1b:c3:18:0e:
c8:93:19:42:af:12:77:d3:6b:bb:88:63:a1:75:ac:
19:30:0f:bc:6a:ad:33:9b:00:75:24:f1:52:9c:83:
14:bb:9a:89:95:f1:1e:36:d0:ce:63:40:3f:69:af:
3d:9a:ad:d1:6c:0b:29:51:10:5a:85:82:18:cf:5a:
c8:00:da:3b:34:ce:14:70:24:32:8a:a5:0e:87:1a:
8d:0e:4d:d7:2c:ed:1e:40:3d:56:5e:e0:80:16:7a:
15:ad:e5:6c:31:66:a0:75:7d:83:b7:d5:9e:82:63:
94:a5:8d:3d:48:04:c3:4e:b7:fc:a1:a4:a7:eb:22:
ad:5d:c2:07:9a:85:f4:26:df:ad:cf:00:e8:51:60:
11:87:82:0c:ff:fc:41:de:ff:48:c3:56:12:36:62:
f1:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:85:35:61:1E:AF:86:5C:AB:BA:8B:09:F6:E9:94:61:EE:90:37:7F
X509v3 Authority Key Identifier:
keyid:5E:70:8E:85:B1:0A:C6:03:C0:6D:78:5B:42:15:3D:CF:E1:66:3A:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/826/XnCOhbEKxgPAbXhbQhU9z-FmOuo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XnCOhbEKxgPAbXhbQhU9z-FmOuo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/826/y4U1YR6vhlyruosJ9umUYe6QN38.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
117.18.24.0/21
Signature Algorithm: sha256WithRSAEncryption
9d:97:7b:7b:cc:13:e0:45:84:c4:04:e2:dc:0a:40:1d:36:6f:
e1:00:65:26:81:69:a8:80:8b:70:74:0b:8b:a3:37:21:3d:04:
f0:15:bb:6f:e1:dc:f9:75:b0:c9:cb:ca:f0:5c:d9:74:8e:60:
55:78:ea:06:69:f9:b0:a5:61:ed:30:36:49:f4:4f:d9:05:54:
84:d0:92:de:f2:5c:0f:e3:26:f0:a0:63:de:c5:45:85:74:01:
e4:3f:cf:1f:d4:ae:bd:c8:8c:6a:d3:d0:51:5b:d1:bb:c3:09:
e9:77:1b:8b:ac:ca:27:ab:c6:09:b1:7b:b1:27:9c:01:44:7c:
45:cf:99:92:2c:ea:79:6a:02:50:9b:69:4d:e7:d1:1d:b4:12:
3f:7d:63:12:45:35:91:37:af:05:6d:e9:65:e0:6f:e1:63:6f:
2d:ca:94:2e:36:32:44:ab:94:f4:0e:ca:c5:72:4a:a3:f9:2f:
1a:b0:8b:a5:18:0f:ce:1c:bd:9a:16:da:23:6d:18:7c:86:8b:
bc:6a:47:dc:e7:f7:e7:6c:1f:b6:8c:76:a6:9d:36:be:0d:b5:
09:5b:66:2a:2a:c4:db:f2:be:5c:19:b0:d6:d2:d0:72:b7:c2:
9b:76:52:03:5e:a7:74:97:79:1a:26:af:9a:f3:5d:2b:d7:43:
45:db:3c:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:45:46 2025 by rpki-client