Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/354/fqvPVvt_8VFt5d3pH8PQz1fehNk.roa
File: fqvPVvt_8VFt5d3pH8PQz1fehNk.roa (raw, json)
Hash identifier: 0+L+84DodVnrXwzQwvB3hUi/zPK/p3Ak/9/Kzuqp0Y8=
Subject key identifier: 7E:AB:CF:56:FB:7F:F1:51:6D:E5:DD:E9:1F:C3:D0:CF:57:DE:84:D9
Certificate issuer: /CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC
Certificate serial: F6
Authority key identifier: 0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/fqvPVvt_8VFt5d3pH8PQz1fehNk.roa
Signing time: Sun 30 Jun 2024 01:28:31 +0000
ROA not before: Sun 30 Jun 2024 01:28:31 +0000
ROA not after: Tue 24 Jun 2025 10:46:45 +0000
asID: 55898
IP address blocks: 211.14.26.0/23 maxlen: 23
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 246 (0xf6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC
Validity
Not Before: Jun 30 01:28:31 2024 GMT
Not After : Jun 24 10:46:45 2025 GMT
Subject: CN=7EABCF56FB7FF1516DE5DDE91FC3D0CF57DE84D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:16:9a:43:b4:70:3c:95:38:76:d8:21:bf:97:
5a:06:ac:83:c9:79:6c:7e:0d:ee:04:00:e0:09:3b:
48:29:83:9d:27:4c:86:5f:29:43:b4:0d:52:17:6b:
39:fe:e8:da:60:2e:80:e9:48:0b:9d:0f:a5:a4:38:
ea:a5:d5:04:0a:29:b2:ed:69:0a:99:47:61:0c:b6:
d2:06:ee:96:6e:7c:cd:83:74:fa:7d:99:2c:b7:aa:
15:7c:5c:44:97:47:9f:28:99:05:79:4e:33:4a:77:
2b:cf:4b:85:65:4d:0b:30:1e:de:8e:23:28:8a:86:
5f:0c:cc:b6:0c:43:10:27:c1:11:c9:9e:24:4e:71:
7d:b8:5e:28:73:7f:0f:28:9a:0e:55:13:e8:40:c1:
bc:22:73:04:a0:99:f9:0f:ca:f6:03:76:97:eb:e3:
f4:7e:04:46:fc:bd:c9:e4:ff:b1:09:e6:13:90:65:
ff:17:f2:9a:d7:b5:22:24:8d:0a:a8:fb:14:49:bf:
9e:d6:24:73:9d:f0:ee:d3:c4:f9:13:18:47:ca:00:
c2:4e:dd:c3:92:4a:97:e4:bc:81:fa:b4:8c:72:bb:
87:41:f0:ed:a4:f2:da:88:08:3f:e6:d8:60:63:7d:
60:99:c6:e9:bc:b5:ce:f7:46:6d:d9:11:16:b4:b3:
7f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:AB:CF:56:FB:7F:F1:51:6D:E5:DD:E9:1F:C3:D0:CF:57:DE:84:D9
X509v3 Authority Key Identifier:
keyid:0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/fqvPVvt_8VFt5d3pH8PQz1fehNk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
211.14.26.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:03:27:a8:76:1a:1f:ec:2e:1b:3a:91:19:b5:0c:2c:66:6c:
83:d5:81:ec:c6:3a:7b:8f:3f:a7:83:53:5b:e6:77:e7:6d:f1:
79:58:d3:c7:a2:6e:75:4e:f3:80:fd:b9:f6:f9:c1:a1:85:4e:
c3:77:53:4f:35:82:46:da:f2:4c:58:00:3a:39:26:6a:f8:52:
99:1a:0f:d8:d2:d9:9a:59:4e:1a:20:c9:0f:bd:ed:a2:ac:40:
da:79:d1:2c:96:88:4b:f8:07:3f:5c:88:25:22:f8:b0:59:bc:
01:d4:69:0e:cf:a8:f6:66:00:93:e3:88:3e:6a:f9:86:13:f7:
e3:45:48:c5:21:d6:d5:44:bc:e9:06:dc:e4:10:0f:46:7b:fb:
13:33:86:c2:b3:40:7e:8e:6b:b3:8c:d1:8d:3f:8b:01:ae:2a:
85:6a:01:d5:05:90:7d:a7:1d:2f:9f:60:65:63:25:85:e8:48:
a6:d9:76:26:b7:0b:25:6b:27:9c:54:ff:56:68:7b:65:97:79:
bc:49:57:83:e0:2d:ef:5e:c2:16:c5:ca:ae:ab:1c:56:a8:58:
16:29:a4:6d:2e:e0:c8:37:82:0d:91:73:e4:34:c0:e1:3d:db:
00:6d:73:2a:b5:14:ea:0d:00:14:2e:f5:19:8b:e9:64:fd:56:
63:c6:48:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 01:47:01 2025 by rpki-client