Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/354/eVGxMumDR3qI69d0ijoyJwR9GU4.roa
File: eVGxMumDR3qI69d0ijoyJwR9GU4.roa (raw, json)
Hash identifier: PUfvkb/d3eQVa8NBcF+t3tdLPXdPaAFlBkDZ79Yv5EQ=
Subject key identifier: 79:51:B1:32:E9:83:47:7A:88:EB:D7:74:8A:3A:32:27:04:7D:19:4E
Certificate issuer: /CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC
Certificate serial: FE
Authority key identifier: 0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/eVGxMumDR3qI69d0ijoyJwR9GU4.roa
Signing time: Sun 30 Jun 2024 01:28:34 +0000
ROA not before: Sun 30 Jun 2024 01:28:34 +0000
ROA not after: Tue 24 Jun 2025 10:46:45 +0000
asID: 23816
IP address blocks: 211.14.20.0/22 maxlen: 22
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 254 (0xfe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC
Validity
Not Before: Jun 30 01:28:34 2024 GMT
Not After : Jun 24 10:46:45 2025 GMT
Subject: CN=7951B132E983477A88EBD7748A3A3227047D194E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d2:9d:78:c9:81:6a:17:a8:69:89:f1:c4:48:
d4:c5:c0:08:17:92:ad:e9:60:9c:8a:f2:45:5f:7c:
91:8a:32:80:41:8f:92:c0:ec:95:08:b6:62:e9:4b:
7c:52:46:b1:db:f0:fa:db:e6:81:8e:8c:a0:24:7e:
dd:f5:04:5b:72:67:c6:f8:5b:8c:b9:98:f4:56:5d:
76:87:5e:4e:2f:51:77:2e:29:ef:c5:9e:25:60:a7:
b6:f5:6c:ea:be:e6:da:bf:a3:5c:c2:de:5e:ce:47:
de:d6:09:e8:44:6a:2c:d0:75:db:76:12:be:13:57:
ca:5a:46:60:85:9d:ae:97:0e:73:18:e7:44:88:54:
7f:16:d2:40:71:87:d6:4d:94:1f:86:22:8f:49:ef:
d9:06:27:38:fb:2e:00:f6:66:aa:11:73:63:95:f9:
e5:16:9d:f8:b3:45:d1:de:72:ed:17:04:05:e2:9c:
57:b2:82:ea:91:0a:7a:94:51:95:ac:b4:bf:bd:cd:
fa:ee:0c:33:f5:f8:35:f4:9a:df:12:37:24:20:02:
f5:ea:13:fe:a4:c8:7d:c4:47:d1:ca:4a:91:c7:a1:
d7:bf:c5:3f:aa:61:3f:ca:bc:73:46:86:dc:d9:db:
e3:26:48:b4:26:6a:e5:ac:5e:c1:c6:48:2c:e4:53:
d5:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:51:B1:32:E9:83:47:7A:88:EB:D7:74:8A:3A:32:27:04:7D:19:4E
X509v3 Authority Key Identifier:
keyid:0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/eVGxMumDR3qI69d0ijoyJwR9GU4.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
211.14.20.0/22
Signature Algorithm: sha256WithRSAEncryption
62:b2:3f:73:fb:58:d6:95:ed:e4:54:92:e3:e2:d5:63:75:30:
86:65:68:7e:fc:85:e0:dd:8d:b4:6e:7e:c6:69:db:ee:eb:b7:
0a:b1:ab:32:ca:d3:ea:76:93:95:fc:cb:8d:c9:97:71:72:69:
6b:5e:29:a6:51:42:eb:5a:8d:25:a4:1c:58:38:21:d3:52:63:
d4:09:38:22:a2:ca:0d:03:93:b4:a6:e1:cd:dd:57:04:9b:9b:
2f:e9:be:02:c7:b4:7a:b3:6c:b7:6c:77:ba:d4:21:13:d9:78:
1d:98:38:ea:6a:9b:7b:19:cf:d6:bb:e3:ca:ea:09:04:d6:0a:
6d:c5:d8:2d:92:54:6c:da:e3:11:7c:9a:65:f9:a1:96:29:0c:
60:4e:d3:27:b4:a3:f9:6f:15:31:ba:2f:32:80:26:f6:63:0c:
c3:26:0c:fa:df:cd:ed:b9:28:f7:d7:96:6c:e9:26:65:b1:c1:
88:04:4f:a7:aa:97:fa:df:10:70:36:17:6f:00:42:65:0e:db:
ae:36:c6:a0:66:f9:b2:2e:30:47:ac:32:ae:40:19:54:63:5b:
5f:f0:ff:8d:dd:df:b8:e5:c9:cd:f9:df:b8:e0:af:15:5e:db:
ca:26:61:59:1c:b4:99:f9:57:be:56:c9:d1:e6:68:83:0b:6d:
0e:bc:64:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 22 09:00:28 2024 by rpki-client on console-ams.rpki-client.org