Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/840/9ZG0b03xc2OirWCsVXPmIJk8AJg.roa
File: 9ZG0b03xc2OirWCsVXPmIJk8AJg.roa (raw, json)
Hash identifier: Q6AFyrv7W6O+uwaPADzNEqgEf72a8BMY97dp9+4ayKw=
Subject key identifier: F5:91:B4:6F:4D:F1:73:63:A2:AD:60:AC:55:73:E6:20:99:3C:00:98
Certificate issuer: /CN=D79B3890C2DA3795148976B954C2024056797554
Certificate serial: 34
Authority key identifier: D7:9B:38:90:C2:DA:37:95:14:89:76:B9:54:C2:02:40:56:79:75:54
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/9ZG0b03xc2OirWCsVXPmIJk8AJg.roa
Signing time: Tue 28 May 2024 01:03:08 +0000
ROA not before: Tue 28 May 2024 01:03:08 +0000
ROA not after: Thu 15 May 2025 01:30:03 +0000
asID: 131934
IP address blocks: 222.229.0.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52 (0x34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D79B3890C2DA3795148976B954C2024056797554
Validity
Not Before: May 28 01:03:08 2024 GMT
Not After : May 15 01:30:03 2025 GMT
Subject: CN=F591B46F4DF17363A2AD60AC5573E620993C0098
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:aa:a6:a3:6b:ad:c6:1f:ed:d0:03:4a:f4:9d:
e7:84:1b:74:92:c7:44:7b:35:ff:62:05:47:e1:09:
63:97:0e:ae:75:5a:16:cb:5a:dc:b3:b1:31:e2:9d:
33:0f:ed:fa:39:25:6b:26:9b:e8:df:7f:9a:df:fd:
94:00:5e:b3:ca:d3:c2:c1:73:0b:09:8b:d6:56:a9:
c5:32:ce:22:ca:e7:a8:e0:27:33:71:f9:ee:35:8b:
d1:fa:f8:8e:a1:df:1b:a3:8b:c2:e6:ef:df:7b:9e:
cb:73:f9:bd:30:8d:7a:02:66:b3:87:32:20:89:28:
e9:61:14:3b:0b:02:46:fd:2e:db:b5:2a:82:bd:11:
d3:cf:1c:7b:56:3b:e3:ff:4b:bb:d1:fd:8f:17:69:
a4:bf:62:aa:19:69:e3:8b:8d:d5:ec:6a:ec:e9:b7:
54:cb:f5:6b:39:f5:5d:2e:89:80:4d:64:29:3f:27:
06:80:db:73:08:57:72:bb:b0:70:11:95:e8:33:55:
42:ef:f0:c3:9f:3d:c0:0a:a3:1d:fa:3f:9b:c0:de:
40:87:33:83:3c:f3:04:04:d2:38:5a:1e:29:f3:a9:
da:e2:65:21:d9:cc:dd:4d:48:5e:47:fb:c5:b1:eb:
fb:ac:df:9c:c5:cd:cc:3a:9d:33:d8:5b:67:10:9a:
d8:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:91:B4:6F:4D:F1:73:63:A2:AD:60:AC:55:73:E6:20:99:3C:00:98
X509v3 Authority Key Identifier:
keyid:D7:9B:38:90:C2:DA:37:95:14:89:76:B9:54:C2:02:40:56:79:75:54
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/15s4kMLaN5UUiXa5VMICQFZ5dVQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/9ZG0b03xc2OirWCsVXPmIJk8AJg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
222.229.0.0/20
Signature Algorithm: sha256WithRSAEncryption
aa:d4:db:7c:f0:4c:85:b3:fa:85:f6:d4:97:e6:c6:d2:1b:5c:
54:a9:d2:7c:37:b6:ee:f5:63:91:96:39:65:bd:11:e6:41:68:
74:da:84:b1:e8:d4:ff:47:ca:5c:2b:04:fd:41:bb:4c:7c:e9:
f4:ad:31:1a:0c:72:6d:ac:8f:1e:d2:31:0a:fe:73:c4:7e:24:
90:b6:c9:a4:38:47:ec:4f:66:06:17:50:8a:18:0b:d3:18:8d:
32:6f:9e:7b:9b:5a:6f:54:7b:c4:c0:04:90:67:3f:2b:f7:cc:
32:6a:66:e0:bf:ed:ff:c5:bf:49:43:b8:dd:10:71:85:40:4b:
5f:05:cd:cd:65:ee:2c:03:2d:94:7a:88:49:bf:80:46:cc:05:
1f:6a:63:d2:9d:b0:20:e8:be:5b:f2:b4:7c:6e:1f:4b:b5:3f:
64:93:56:be:ff:93:74:04:8c:fa:44:b8:f5:11:b2:18:f6:73:
27:c6:b9:e0:de:c3:00:6e:a7:80:d3:cb:ae:27:7c:7a:3a:06:
90:25:89:8a:2d:4f:47:6e:c6:db:ab:f8:de:cc:22:b2:27:c0:
35:86:16:be:73:a5:d0:95:6d:d0:8b:12:58:7e:74:1c:11:bc:
76:f0:0a:a9:94:43:7c:ba:c1:fd:01:27:9b:7d:f9:48:9c:9b:
e9:78:cb:89
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBNDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhENzlC
Mzg5MEMyREEzNzk1MTQ4OTc2Qjk1NEMyMDI0MDU2Nzk3NTU0MB4XDTI0MDUyODAx
MDMwOFoXDTI1MDUxNTAxMzAwM1owMzExMC8GA1UEAxMoRjU5MUI0NkY0REYxNzM2
M0EyQUQ2MEFDNTU3M0U2MjA5OTNDMDA5ODCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAKSqpqNrrcYf7dADSvSd54QbdJLHRHs1/2IFR+EJY5cOrnVaFsta
3LOxMeKdMw/t+jklayab6N9/mt/9lABes8rTwsFzCwmL1lapxTLOIsrnqOAnM3H5
7jWL0fr4jqHfG6OLwubv33uey3P5vTCNegJms4cyIIko6WEUOwsCRv0u27Uqgr0R
088ce1Y74/9Lu9H9jxdppL9iqhlp44uN1exq7Om3VMv1azn1XS6JgE1kKT8nBoDb
cwhXcruwcBGV6DNVQu/ww589wAqjHfo/m8DeQIczgzzzBATSOFoeKfOp2uJlIdnM
3U1IXkf7xbHr+6zfnMXNzDqdM9hbZxCa2GUCAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBT1kbRvTfFzY6KtYKxVc+YgmTwAmDAfBgNVHSMEGDAWgBTXmziQwto3lRSJdrlU
wgJAVnl1VDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvODQwLzE1czRrTUxhTjVVVWlYYTVWTUlDUUZaNWRWUS5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzE1czRrTUxhTjVVVWlYYTVWTUlDUUZa
NWRWUS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC84NDAvOVpHMGIwM3hjMk9pcldDc1ZYUG1JSms4QUpnLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEBN7lADANBgkqhkiG9w0BAQsFAAOCAQEAqtTbfPBMhbP6hfbUl+bG0htcVKnS
fDe27vVjkZY5Zb0R5kFodNqEsejU/0fKXCsE/UG7THzp9K0xGgxybayPHtIxCv5z
xH4kkLbJpDhH7E9mBhdQihgL0xiNMm+ee5tab1R7xMAEkGc/K/fMMmpm4L/t/8W/
SUO43RBxhUBLXwXNzWXuLAMtlHqISb+ARswFH2pj0p2wIOi+W/K0fG4fS7U/ZJNW
vv+TdASM+kS49RGyGPZzJ8a54N7DAG6ngNPLrid8ejoGkCWJii1PR27G26v43swi
sifANYYWvnOl0JVt0IsSWH50HBG8dvAKqZRDfLrB/QEnm335SJyb6XjLiQ==
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:27:29 2025 by rpki-client