Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/859/I0u5MDE6F4DKPKic_W8-whlIJw0.roa
File: I0u5MDE6F4DKPKic_W8-whlIJw0.roa (raw, json)
Hash identifier: BOsD8TnNOsusXHnt8vxFUCkTY+49KCZRCWArh/WUsFE=
Subject key identifier: 23:4B:B9:30:31:3A:17:80:CA:3C:A8:9C:FD:6F:3E:C2:19:48:27:0D
Certificate issuer: /CN=3F90F2FBCAA2538CA6574FB22D8C6EB3E9CA046B
Certificate serial: 57
Authority key identifier: 3F:90:F2:FB:CA:A2:53:8C:A6:57:4F:B2:2D:8C:6E:B3:E9:CA:04:6B
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/I0u5MDE6F4DKPKic_W8-whlIJw0.roa
Signing time: Sat 01 Mar 2025 01:28:29 +0000
ROA not before: Sat 01 Mar 2025 01:28:29 +0000
ROA not after: Sun 15 Feb 2026 01:30:03 +0000
asID: 23778
IP address blocks: 202.58.144.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87 (0x57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3F90F2FBCAA2538CA6574FB22D8C6EB3E9CA046B
Validity
Not Before: Mar 1 01:28:29 2025 GMT
Not After : Feb 15 01:30:03 2026 GMT
Subject: CN=234BB930313A1780CA3CA89CFD6F3EC21948270D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:0b:a7:87:1b:d2:a4:7f:02:d1:67:d6:52:de:
af:e5:45:8b:fa:6d:de:11:8c:5d:0c:4e:84:0b:a8:
c7:d2:e5:bf:05:92:5b:1e:fc:a5:02:61:4d:dc:ec:
4b:64:39:f8:e2:9a:e1:9a:36:5b:51:3f:3a:39:fd:
22:d9:9c:b0:02:43:cb:ce:fa:51:e5:13:7c:5a:7e:
86:43:a1:7e:d4:b9:77:74:25:94:03:9c:62:ea:47:
04:68:26:39:5c:08:8e:0d:3a:cb:36:c9:de:5e:60:
24:5d:95:0e:7d:24:5a:08:bc:48:bf:d3:45:50:ff:
7e:0f:31:38:bd:1c:44:a8:2c:79:c3:5e:7a:72:b6:
d3:9a:55:09:a6:9a:4a:52:14:49:3c:a2:7b:26:6d:
a5:55:d5:ef:20:50:ae:db:d3:b3:81:aa:5d:55:ff:
cd:0b:ce:25:c0:fb:05:dd:47:9c:27:f0:b2:8d:6f:
a3:c5:ee:35:9f:7d:01:e0:7b:1c:05:cc:3e:e4:7c:
a5:b9:15:00:85:7d:a1:f6:66:18:60:2d:53:1a:09:
25:8b:4e:85:58:aa:40:89:48:46:ab:77:07:86:e2:
d0:44:b3:a3:38:51:25:b5:28:6d:0c:89:41:9f:ab:
b8:a4:4d:66:5c:28:15:c4:70:d9:8e:29:a1:43:52:
51:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:4B:B9:30:31:3A:17:80:CA:3C:A8:9C:FD:6F:3E:C2:19:48:27:0D
X509v3 Authority Key Identifier:
keyid:3F:90:F2:FB:CA:A2:53:8C:A6:57:4F:B2:2D:8C:6E:B3:E9:CA:04:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/P5Dy-8qiU4ymV0-yLYxus-nKBGs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/I0u5MDE6F4DKPKic_W8-whlIJw0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.58.144.0/20
Signature Algorithm: sha256WithRSAEncryption
76:a7:50:98:2f:d7:f3:e8:1e:57:c2:0c:42:ab:ca:85:0e:96:
93:99:68:3d:6a:f2:96:03:da:3b:50:a6:47:57:d3:df:b0:17:
05:ba:f7:32:31:81:cf:62:bd:7a:a2:eb:39:71:3c:d0:c5:3a:
01:08:43:5f:36:13:0d:09:a3:47:69:c1:41:db:4b:b0:b1:a6:
d3:d7:ae:29:85:2f:cc:db:13:1c:5d:cc:ec:1f:ec:54:60:7d:
17:94:bc:e2:1d:f6:48:23:16:c3:b9:fd:cd:92:10:0f:d1:02:
f9:ce:0e:3a:ac:b3:1e:b4:27:87:bd:b6:08:f6:e9:8d:3f:79:
ed:77:a2:1b:f3:df:4c:41:92:46:b7:2b:42:c3:55:5c:64:65:
57:ce:e1:45:00:8f:88:09:d9:36:c2:df:7e:62:9e:a9:21:ff:
11:20:2d:4a:0e:c3:d0:36:a5:a8:99:ba:2e:1f:4e:6e:5b:e9:
87:02:db:d6:fe:34:37:92:56:de:9c:4f:a8:5e:3b:5f:37:4f:
34:9a:3f:9d:21:07:9a:ba:11:46:39:51:b2:d4:89:aa:08:f1:
29:87:a4:ae:06:da:71:af:57:b1:f3:71:c0:27:47:66:2a:ef:
fe:4e:b0:8b:db:b2:40:e4:cd:e4:c9:d6:30:4e:54:7d:24:a3:
5c:47:e4:a1
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBVzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzRjkw
RjJGQkNBQTI1MzhDQTY1NzRGQjIyRDhDNkVCM0U5Q0EwNDZCMB4XDTI1MDMwMTAx
MjgyOVoXDTI2MDIxNTAxMzAwM1owMzExMC8GA1UEAxMoMjM0QkI5MzAzMTNBMTc4
MENBM0NBODlDRkQ2RjNFQzIxOTQ4MjcwRDCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAN8Lp4cb0qR/AtFn1lLer+VFi/pt3hGMXQxOhAuox9LlvwWSWx78
pQJhTdzsS2Q5+OKa4Zo2W1E/Ojn9ItmcsAJDy876UeUTfFp+hkOhftS5d3QllAOc
YupHBGgmOVwIjg06yzbJ3l5gJF2VDn0kWgi8SL/TRVD/fg8xOL0cRKgsecNeenK2
05pVCaaaSlIUSTyieyZtpVXV7yBQrtvTs4GqXVX/zQvOJcD7Bd1HnCfwso1vo8Xu
NZ99AeB7HAXMPuR8pbkVAIV9ofZmGGAtUxoJJYtOhViqQIlIRqt3B4bi0ESzozhR
JbUobQyJQZ+ruKRNZlwoFcRw2Y4poUNSURsCAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBQjS7kwMToXgMo8qJz9bz7CGUgnDTAfBgNVHSMEGDAWgBQ/kPL7yqJTjKZXT7It
jG6z6coEazAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvODU5L1A1RHktOHFpVTR5bVYwLXlMWXh1cy1uS0JHcy5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1A1RHktOHFpVTR5bVYwLXlMWXh1cy1u
S0JHcy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC84NTkvSTB1NU1ERTZGNERLUEtpY19XOC13aGxJSncwLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEBMo6kDANBgkqhkiG9w0BAQsFAAOCAQEAdqdQmC/X8+geV8IMQqvKhQ6Wk5lo
PWrylgPaO1CmR1fT37AXBbr3MjGBz2K9eqLrOXE80MU6AQhDXzYTDQmjR2nBQdtL
sLGm09euKYUvzNsTHF3M7B/sVGB9F5S84h32SCMWw7n9zZIQD9EC+c4OOqyzHrQn
h722CPbpjT957XeiG/PfTEGSRrcrQsNVXGRlV87hRQCPiAnZNsLffmKeqSH/ESAt
Sg7D0DalqJm6Lh9OblvphwLb1v40N5JW3pxPqF47XzdPNJo/nSEHmroRRjlRstSJ
qgjxKYekrgbaca9XsfNxwCdHZirv/k6wi9uyQOTN5MnWME5UfSSjXEfkoQ==
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:42:23 2025 by rpki-client