Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/354/1MyWaPtdbEjXki3C_j2aH3Nu2lY.roa
File: 1MyWaPtdbEjXki3C_j2aH3Nu2lY.roa (raw, json)
Hash identifier: o4tNQT9xbpIx8V6BMb3LqYvLXkQiniexo5wexeUUMxs=
Subject key identifier: D4:CC:96:68:FB:5D:6C:48:D7:92:2D:C2:FE:3D:9A:1F:73:6E:DA:56
Certificate issuer: /CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC
Certificate serial: 9A
Authority key identifier: 0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/1MyWaPtdbEjXki3C_j2aH3Nu2lY.roa
Signing time: Thu 01 Sep 2022 01:28:12 +0000
ROA not before: Thu 01 Sep 2022 01:28:12 +0000
ROA not after: Tue 15 Aug 2023 01:30:03 +0000
asID: 55898
IP address blocks: 203.141.54.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154 (0x9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC
Validity
Not Before: Sep 1 01:28:12 2022 GMT
Not After : Aug 15 01:30:03 2023 GMT
Subject: CN=D4CC9668FB5D6C48D7922DC2FE3D9A1F736EDA56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:f9:ee:84:e0:4d:8c:c7:dc:7c:a9:89:e3:dc:
43:28:83:49:e1:0d:cc:6f:12:fb:c9:d3:d3:75:d6:
bd:1f:04:f2:fd:c0:0d:42:cd:17:f7:7f:cf:eb:a3:
5e:14:94:e5:20:e0:ba:25:21:eb:84:57:8b:92:31:
50:68:2d:80:2d:4c:c8:e7:31:1b:76:4d:9a:a8:69:
85:55:6b:e1:34:63:20:35:c5:9f:23:7b:ca:d3:87:
37:88:98:87:c0:bc:10:d9:ed:4a:32:01:77:af:5c:
67:2a:ed:03:c7:4d:3f:ae:0b:e6:d7:c6:36:b5:a5:
04:4f:05:f5:0c:ef:78:58:ef:b2:87:d4:44:92:5c:
e7:e3:fd:68:70:31:4c:92:4a:f4:28:93:14:c9:c6:
c3:4a:9a:e2:79:85:d8:16:c1:b6:fe:ad:06:a1:5d:
32:6e:e4:1b:f2:b5:fc:23:f5:40:57:90:46:05:01:
2b:bc:10:6d:88:44:4b:cc:54:db:c5:19:13:a0:33:
e5:88:65:d6:12:e7:80:f3:ae:c0:5c:a6:70:8a:8d:
96:84:7c:1b:23:bc:48:ae:ab:72:a2:b3:f4:1a:05:
1d:75:c5:c2:8c:de:4f:ac:76:55:cd:fd:72:f4:90:
40:f0:04:1a:e1:39:fd:ce:d9:7b:b5:6b:1f:c6:bd:
d6:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:CC:96:68:FB:5D:6C:48:D7:92:2D:C2:FE:3D:9A:1F:73:6E:DA:56
X509v3 Authority Key Identifier:
keyid:0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/1MyWaPtdbEjXki3C_j2aH3Nu2lY.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.141.54.0/24
Signature Algorithm: sha256WithRSAEncryption
26:16:66:c8:a8:51:26:82:a9:c4:df:84:12:56:4b:7d:4f:60:
81:51:5d:c8:4f:21:d2:e3:b3:35:62:38:c1:95:00:02:ea:44:
10:0b:f7:e7:fb:8a:6a:c5:88:87:c7:39:eb:69:f8:ab:c0:f1:
52:cd:e2:93:59:5d:44:8f:06:73:dc:f2:21:ae:41:5f:7d:15:
b7:7f:17:0d:cc:dd:4d:8a:3a:76:fb:c1:ad:8e:d6:84:92:b4:
69:2d:dc:aa:90:ef:5a:10:50:ef:87:b1:77:87:91:e5:cb:3a:
de:c6:67:90:87:55:19:04:a2:a3:c1:b6:47:6a:be:cb:b7:cd:
e3:ff:3d:39:ea:24:b8:52:01:6b:79:5b:83:1a:89:e2:9c:4a:
71:f0:b9:39:20:57:82:57:30:51:7b:cf:d4:e1:dc:02:c2:b9:
c5:30:27:e6:8c:6a:76:c0:b9:45:99:b0:48:a3:a8:3d:d2:25:
e9:54:1b:53:9d:0c:25:a4:40:0e:49:43:48:c3:16:a5:32:79:
23:75:c2:da:a4:6e:7b:b8:84:be:4d:19:c3:f9:f4:ba:84:7a:
0b:b1:f6:af:ea:02:6e:91:61:15:fe:ec:c0:a6:33:6b:ef:0b:
f2:ac:91:20:f3:58:bc:ad:a1:3a:97:cc:69:bb:8a:d8:d4:17:
8f:f9:12:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:12:25 2025 by rpki-client