Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/354/RpI3WA9JU6AUE0VktyfaEFWmRss.roa
File: RpI3WA9JU6AUE0VktyfaEFWmRss.roa (raw, json)
Hash identifier: y0K5Hr5Mb19wrLT6TPo7BvTwqc4wJ5gwjsYf1JODkfs=
Subject key identifier: 46:92:37:58:0F:49:53:A0:14:13:45:64:B7:27:DA:10:55:A6:46:CB
Certificate issuer: /CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC
Certificate serial: F7
Authority key identifier: 0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/RpI3WA9JU6AUE0VktyfaEFWmRss.roa
Signing time: Sun 30 Jun 2024 01:28:31 +0000
ROA not before: Sun 30 Jun 2024 01:28:31 +0000
ROA not after: Tue 24 Jun 2025 10:46:45 +0000
asID: 55898
IP address blocks: 103.2.244.0/22 maxlen: 22
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 247 (0xf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC
Validity
Not Before: Jun 30 01:28:31 2024 GMT
Not After : Jun 24 10:46:45 2025 GMT
Subject: CN=469237580F4953A014134564B727DA1055A646CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4e:3e:86:4c:f4:ff:67:a2:26:1e:bd:83:57:
fb:36:ad:63:1d:7d:42:96:4e:96:e4:31:39:2e:61:
4a:ee:9a:a5:a9:a2:b4:a7:92:1d:70:e2:cb:3a:5e:
6c:8f:e6:a6:8f:35:be:ee:03:6e:af:a5:60:98:32:
e6:94:30:4b:eb:00:75:03:87:b4:a6:7b:ea:b5:40:
e0:72:f3:ab:f5:4f:fe:7d:f8:55:88:d1:bf:88:20:
dc:6b:1e:77:d3:28:5d:a2:d6:7a:8f:d9:bf:6a:5d:
54:44:47:7d:f3:37:44:ae:c6:51:78:84:b5:c8:20:
5a:4e:90:ae:bd:20:0a:8e:34:38:03:8f:c9:6f:c0:
98:98:19:a7:6c:1c:ea:b6:eb:6f:e1:a1:1b:a3:fb:
aa:4b:9e:ac:b1:d0:bf:a1:5b:5b:46:d9:74:93:5c:
2a:e5:79:5e:2f:1b:1e:fa:66:b5:09:49:d9:6c:af:
71:75:96:45:14:b6:00:4c:db:f1:b5:e6:c7:16:44:
81:60:65:a1:fd:63:4e:a4:91:03:7e:1d:85:14:21:
e0:ea:29:2a:80:54:9f:9e:34:c3:0d:d0:68:90:f8:
d2:f9:f2:ce:c7:5d:e9:4c:d8:6b:d3:a3:c3:ed:4e:
12:84:fd:44:c7:08:c5:56:d8:ad:75:76:97:52:ce:
63:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:92:37:58:0F:49:53:A0:14:13:45:64:B7:27:DA:10:55:A6:46:CB
X509v3 Authority Key Identifier:
keyid:0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/RpI3WA9JU6AUE0VktyfaEFWmRss.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.2.244.0/22
Signature Algorithm: sha256WithRSAEncryption
70:9d:a6:8a:77:ff:31:b9:e2:ba:23:06:bc:09:7b:c7:3b:72:
fa:46:4d:ee:5a:1e:22:f6:f2:25:a9:08:fb:28:79:65:26:39:
05:90:80:e3:4e:95:04:4b:88:86:4b:64:60:b0:ce:df:84:6a:
eb:72:76:02:6f:13:bd:43:ab:5b:f2:84:a3:f1:1b:16:86:f6:
23:51:21:37:b2:d0:61:43:a1:d6:73:80:d7:a0:fb:66:e6:85:
67:b3:f8:b4:5b:02:a8:d2:4c:fc:1b:d1:5a:b3:ff:0f:63:6c:
70:4f:2f:1e:17:4c:cc:43:22:db:e9:56:1e:9b:a7:97:b0:a0:
3c:26:92:9e:ba:f7:a8:21:f9:f5:97:14:9c:6e:f3:2a:09:4b:
e5:60:48:14:73:d4:af:44:59:ed:a3:75:98:35:3c:86:e4:02:
57:7e:2d:d3:b4:eb:ec:00:fa:7a:84:fd:5d:c1:53:cc:c8:3f:
32:3b:d4:35:b0:ba:92:47:92:1e:55:c4:68:cc:b2:cb:7d:24:
ca:a5:81:9d:36:eb:4e:49:a5:19:28:80:e1:6e:a9:21:d2:80:
8c:af:9f:5c:9c:b0:7d:b0:88:5e:92:f9:80:59:62:a1:65:b2:
35:2a:c7:17:fc:05:a3:0e:13:94:5d:f8:d1:c1:6e:f3:cd:7c:
cf:55:d2:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 22 09:00:28 2024 by rpki-client on console-ams.rpki-client.org