Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/859/qh1hcK1IKFMdDa0PIXTMizvTOSI.roa
File: qh1hcK1IKFMdDa0PIXTMizvTOSI.roa (raw, json)
Hash identifier: +ucjTo31G0R+oxxk3rt9nVLGraAquFR++xE1vt9tvSU=
Subject key identifier: AA:1D:61:70:AD:48:28:53:1D:0D:AD:0F:21:74:CC:8B:3B:D3:39:22
Certificate issuer: /CN=3F90F2FBCAA2538CA6574FB22D8C6EB3E9CA046B
Certificate serial: 58
Authority key identifier: 3F:90:F2:FB:CA:A2:53:8C:A6:57:4F:B2:2D:8C:6E:B3:E9:CA:04:6B
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/qh1hcK1IKFMdDa0PIXTMizvTOSI.roa
Signing time: Sat 01 Mar 2025 01:28:29 +0000
ROA not before: Sat 01 Mar 2025 01:28:29 +0000
ROA not after: Sun 15 Feb 2026 01:30:03 +0000
asID: 23778
IP address blocks: 202.95.176.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88 (0x58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3F90F2FBCAA2538CA6574FB22D8C6EB3E9CA046B
Validity
Not Before: Mar 1 01:28:29 2025 GMT
Not After : Feb 15 01:30:03 2026 GMT
Subject: CN=AA1D6170AD4828531D0DAD0F2174CC8B3BD33922
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:8d:57:52:68:b2:9b:1e:54:26:d2:83:0c:78:
44:b7:f4:62:53:d9:ee:7c:99:cf:e9:b9:0b:c1:d0:
39:9a:59:21:ec:80:58:3a:be:56:03:03:60:e3:65:
3e:16:70:a4:c5:13:9a:ea:20:c3:f9:e9:17:ee:ed:
cb:1f:26:ed:da:fb:3d:f0:2c:81:fd:3c:3b:37:d5:
e5:1d:64:93:d3:7b:27:f3:72:2e:15:fc:29:99:90:
d1:e0:4b:20:f0:2e:91:44:07:06:7e:05:8b:dd:35:
f9:97:28:8b:84:16:db:f3:75:c3:db:04:ca:6f:fe:
0b:29:e0:f5:d3:af:c0:4a:4f:ba:89:a7:45:ab:b3:
ca:67:26:f5:38:f4:f7:8d:67:48:62:32:f2:06:5c:
e2:9b:c5:01:1f:bd:2f:23:31:09:4c:02:68:61:90:
78:f4:86:b6:ec:97:33:53:f8:d3:b9:0b:9d:d2:51:
d5:23:5b:91:33:4e:26:cf:78:4e:e0:4d:49:ad:87:
33:3b:48:60:d1:d0:c4:85:01:0f:2d:45:a8:43:f3:
61:a2:b7:43:b0:77:f0:b7:38:89:0a:82:fd:58:20:
d1:47:d6:26:5d:ac:f3:e8:4e:59:8d:69:2c:df:75:
67:60:a3:8c:d2:63:aa:19:35:23:0d:cd:d0:49:19:
18:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:1D:61:70:AD:48:28:53:1D:0D:AD:0F:21:74:CC:8B:3B:D3:39:22
X509v3 Authority Key Identifier:
keyid:3F:90:F2:FB:CA:A2:53:8C:A6:57:4F:B2:2D:8C:6E:B3:E9:CA:04:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/P5Dy-8qiU4ymV0-yLYxus-nKBGs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/qh1hcK1IKFMdDa0PIXTMizvTOSI.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.95.176.0/20
Signature Algorithm: sha256WithRSAEncryption
31:16:2a:04:03:d7:a1:84:52:39:92:9e:05:d8:a5:5a:dd:27:
8d:98:0b:a2:42:90:80:62:70:a0:b7:8c:f1:51:30:e2:da:52:
f7:8b:fe:6a:5a:be:4b:d3:37:6f:66:77:3a:3f:b5:5d:ef:15:
61:6d:06:54:43:3e:55:39:55:dc:5d:4b:5d:92:8f:99:cd:ed:
15:f0:1d:2b:02:ba:e6:d7:ce:6e:15:4f:45:70:58:aa:e5:26:
7c:8d:58:4a:c1:47:c7:aa:4a:b0:04:98:54:4f:1b:d6:ac:3d:
6a:5a:d7:e7:de:7f:24:94:d3:15:d1:9b:8f:59:1a:30:d4:38:
e4:0f:10:26:cf:6f:b5:f7:7b:b5:fc:b9:b0:66:e5:5a:bf:ac:
02:25:0f:90:8d:0b:ae:35:7b:6b:75:02:3d:f5:28:87:7a:cd:
df:dc:f4:07:da:57:c7:63:ef:e1:b2:3b:5c:70:fb:d6:70:f4:
33:18:0b:72:05:35:af:0c:4a:d2:33:d6:bf:4c:d5:b0:61:bf:
49:9c:a5:ae:2b:05:fe:92:48:93:7f:4c:30:a0:80:ac:51:74:
8b:04:cf:c1:84:98:e0:c4:eb:a1:f2:9e:e3:fb:5b:83:a6:15:
28:df:a8:12:9a:51:d4:7c:fe:d5:6a:35:9b:dc:d2:5c:7f:d0:
41:a8:a0:66
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBWDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzRjkw
RjJGQkNBQTI1MzhDQTY1NzRGQjIyRDhDNkVCM0U5Q0EwNDZCMB4XDTI1MDMwMTAx
MjgyOVoXDTI2MDIxNTAxMzAwM1owMzExMC8GA1UEAxMoQUExRDYxNzBBRDQ4Mjg1
MzFEMERBRDBGMjE3NENDOEIzQkQzMzkyMjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAKqNV1JospseVCbSgwx4RLf0YlPZ7nyZz+m5C8HQOZpZIeyAWDq+
VgMDYONlPhZwpMUTmuogw/npF+7tyx8m7dr7PfAsgf08OzfV5R1kk9N7J/NyLhX8
KZmQ0eBLIPAukUQHBn4Fi901+Zcoi4QW2/N1w9sEym/+Cyng9dOvwEpPuomnRauz
ymcm9Tj0941nSGIy8gZc4pvFAR+9LyMxCUwCaGGQePSGtuyXM1P407kLndJR1SNb
kTNOJs94TuBNSa2HMztIYNHQxIUBDy1FqEPzYaK3Q7B38Lc4iQqC/Vgg0UfWJl2s
8+hOWY1pLN91Z2CjjNJjqhk1Iw3N0EkZGA0CAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBSqHWFwrUgoUx0NrQ8hdMyLO9M5IjAfBgNVHSMEGDAWgBQ/kPL7yqJTjKZXT7It
jG6z6coEazAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvODU5L1A1RHktOHFpVTR5bVYwLXlMWXh1cy1uS0JHcy5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1A1RHktOHFpVTR5bVYwLXlMWXh1cy1u
S0JHcy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC84NTkvcWgxaGNLMUlLRk1kRGEwUElYVE1penZUT1NJLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEBMpfsDANBgkqhkiG9w0BAQsFAAOCAQEAMRYqBAPXoYRSOZKeBdilWt0njZgL
okKQgGJwoLeM8VEw4tpS94v+alq+S9M3b2Z3Oj+1Xe8VYW0GVEM+VTlV3F1LXZKP
mc3tFfAdKwK65tfObhVPRXBYquUmfI1YSsFHx6pKsASYVE8b1qw9alrX595/JJTT
FdGbj1kaMNQ45A8QJs9vtfd7tfy5sGblWr+sAiUPkI0LrjV7a3UCPfUoh3rN39z0
B9pXx2Pv4bI7XHD71nD0MxgLcgU1rwxK0jPWv0zVsGG/SZylrisF/pJIk39MMKCA
rFF0iwTPwYSY4MTrofKe4/tbg6YVKN+oEppR1Hz+1Wo1m9zSXH/QQaigZg==
-----END CERTIFICATE-----
Generated at Fri Apr 11 22:20:00 2025 by rpki-client