Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20116/snFy3ndqDO3KxUrYGt8rMWGwCR4.roa
File: snFy3ndqDO3KxUrYGt8rMWGwCR4.roa (raw, json)
Hash identifier: FfmDMQplHxIfxTbIa2vtqGgbjY7UFN35EpnlFnS3Hz4=
Subject key identifier: B2:71:72:DE:77:6A:0C:ED:CA:C5:4A:D8:1A:DF:2B:31:61:B0:09:1E
Certificate issuer: /CN=C49E64FB7C8C7C6B5CD7C7701882E8597C42838E
Certificate serial: 17
Authority key identifier: C4:9E:64:FB:7C:8C:7C:6B:5C:D7:C7:70:18:82:E8:59:7C:42:83:8E
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xJ5k-3yMfGtc18dwGILoWXxCg44.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/snFy3ndqDO3KxUrYGt8rMWGwCR4.roa
Signing time: Sat 25 Sep 2021 03:52:01 +0000
ROA not before: Sat 25 Sep 2021 03:52:01 +0000
ROA not after: Thu 15 Sep 2022 01:30:02 +0000
asID: 23816
IP address blocks: 202.239.16.0/22 maxlen: 22
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23 (0x17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E64FB7C8C7C6B5CD7C7701882E8597C42838E
Validity
Not Before: Sep 25 03:52:01 2021 GMT
Not After : Sep 15 01:30:02 2022 GMT
Subject: CN=B27172DE776A0CEDCAC54AD81ADF2B3161B0091E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:cf:a1:21:f9:b5:3d:cd:f5:d3:8c:69:a4:8c:
81:f1:c3:99:59:98:18:b6:9c:cf:7d:85:d4:e4:87:
c8:14:76:48:f0:ec:9d:bc:6d:12:88:75:b0:51:aa:
e4:82:33:07:24:71:d9:42:2a:21:f6:b7:78:64:ac:
12:e3:fe:b4:06:93:fe:8b:ba:4a:b3:ac:6f:05:8a:
e2:03:13:9b:70:af:48:54:20:62:f9:a3:cb:a7:0a:
09:4b:15:51:04:cf:e2:55:08:eb:f3:a8:92:71:8d:
88:8d:28:c3:54:f0:ed:cb:09:ff:84:e4:62:46:91:
f3:72:bc:6c:8c:02:bf:4f:f1:8f:82:c5:bf:9a:34:
52:6a:f1:37:08:a9:81:50:46:92:0c:1a:48:14:59:
32:d8:eb:ad:26:5b:3a:77:1f:e3:92:7e:81:59:96:
7c:ad:b5:f6:0a:a4:c2:7e:3c:2f:32:16:29:6a:28:
93:df:21:68:4a:15:58:3f:cc:1b:04:5e:49:1d:d3:
22:cf:7d:20:3c:b1:60:f3:22:cb:e5:d2:b2:a7:d6:
fc:73:29:a8:7d:0c:ac:fc:95:72:87:16:79:fa:56:
91:fa:00:03:6f:36:b3:20:12:5c:dd:5f:af:0d:66:
6e:06:eb:a9:0c:12:17:f1:34:e1:82:3d:c0:69:07:
73:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:71:72:DE:77:6A:0C:ED:CA:C5:4A:D8:1A:DF:2B:31:61:B0:09:1E
X509v3 Authority Key Identifier:
keyid:C4:9E:64:FB:7C:8C:7C:6B:5C:D7:C7:70:18:82:E8:59:7C:42:83:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/xJ5k-3yMfGtc18dwGILoWXxCg44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xJ5k-3yMfGtc18dwGILoWXxCg44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/snFy3ndqDO3KxUrYGt8rMWGwCR4.roa
sbgp-ipAddrBlock: critical
IPv4:
202.239.16.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:79:0c:55:62:a3:38:3f:bf:2e:f9:3e:e0:ef:be:bf:6f:08:
54:60:20:f2:ba:62:ba:e8:21:9a:2d:f1:c3:e0:d2:25:15:8e:
19:9e:dd:2b:dc:4a:9a:a7:b1:ca:a8:c9:fd:e6:4f:d4:9c:5c:
2b:55:5c:f6:cf:51:45:02:3d:e9:7b:d5:66:dc:a6:34:e0:03:
69:1b:8a:e9:90:e0:0e:81:16:68:54:40:84:c7:23:54:99:6b:
c0:fc:a1:79:ad:3b:76:9c:00:84:dd:6b:d3:d8:82:32:08:1e:
73:85:ac:d8:6d:19:e8:7a:2e:dc:e0:86:59:68:a4:b5:c3:76:
d5:59:dc:f8:b5:ee:ac:22:d9:a7:66:d5:01:c5:a7:69:72:b3:
44:49:88:e5:a3:1b:bb:28:80:af:86:03:60:2c:19:fb:07:23:
45:10:e8:2d:e1:2f:88:96:d3:f3:4f:3d:cb:a7:d6:46:80:18:
4c:6c:4c:6e:37:71:77:23:53:a7:8a:7c:87:01:9a:f8:f0:5e:
ea:b7:e5:66:ee:cf:f9:07:e7:77:b0:72:d8:24:3b:e3:94:dd:
66:4e:b4:71:30:f8:b8:8e:ff:e8:08:9e:f0:c2:bc:67:01:db:
bf:4c:c6:19:3b:85:43:9a:24:03:f1:5d:f1:ea:d6:49:64:7d:
5c:28:20:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:45 2024 by rpki-client on console-fra.rpki-client.org