Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/354/qe72oPAN9BVqxf2Ho2qPNQCKCzY.roa
File: qe72oPAN9BVqxf2Ho2qPNQCKCzY.roa (raw, json)
Hash identifier: OJS7PmDqj+HkvckWGzo6B9gxsCigu5r+ShrV/ScTU98=
Subject key identifier: A9:EE:F6:A0:F0:0D:F4:15:6A:C5:FD:87:A3:6A:8F:35:00:8A:0B:36
Certificate issuer: /CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC
Certificate serial: F5
Authority key identifier: 0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/qe72oPAN9BVqxf2Ho2qPNQCKCzY.roa
Signing time: Sun 30 Jun 2024 01:28:30 +0000
ROA not before: Sun 30 Jun 2024 01:28:30 +0000
ROA not after: Tue 24 Jun 2025 10:46:45 +0000
asID: 23816
IP address blocks: 124.147.32.0/19 maxlen: 19
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 245 (0xf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC
Validity
Not Before: Jun 30 01:28:30 2024 GMT
Not After : Jun 24 10:46:45 2025 GMT
Subject: CN=A9EEF6A0F00DF4156AC5FD87A36A8F35008A0B36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:9a:aa:96:26:0e:40:6b:33:86:b0:64:95:c8:
5c:f4:09:5e:42:dd:43:5b:bb:5d:8b:83:fe:1d:c7:
a6:5e:2e:ab:f7:70:6d:4d:9f:e2:90:7b:de:75:b6:
40:be:cb:f4:c2:ed:86:1e:c9:46:0b:13:75:a0:c0:
1c:1c:e8:93:bc:f5:8f:82:19:d0:e8:72:39:4d:c4:
82:20:02:f3:22:9e:37:e5:05:54:46:c6:87:1f:06:
2a:a4:1a:c7:82:74:54:fa:1a:50:4b:b1:95:7a:db:
c7:20:d6:f3:b3:50:fb:3a:e0:2f:a7:63:50:5e:19:
aa:2a:c6:bd:7f:b5:75:28:88:5a:f2:57:0c:c4:dc:
8e:8e:5b:e1:d7:b8:f6:6a:7e:be:fd:3c:81:09:30:
50:e6:7c:56:32:14:16:c4:c3:6f:54:0b:34:5a:29:
76:06:92:b9:ff:23:9c:33:cf:4e:bc:5d:6d:38:eb:
ab:f5:81:95:7e:f7:7e:ac:bd:9c:1f:04:b4:e1:24:
43:7a:ea:01:3b:1d:0b:cd:6e:51:a6:8c:de:a7:61:
20:0c:15:9f:4f:9d:ba:92:75:0b:b7:1b:40:fb:0c:
50:14:23:ae:9f:4c:92:00:4e:a6:63:8a:a0:00:b9:
26:a8:e0:83:de:b0:a6:87:6b:5e:e0:3c:1c:f0:11:
a0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:EE:F6:A0:F0:0D:F4:15:6A:C5:FD:87:A3:6A:8F:35:00:8A:0B:36
X509v3 Authority Key Identifier:
keyid:0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/qe72oPAN9BVqxf2Ho2qPNQCKCzY.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
124.147.32.0/19
Signature Algorithm: sha256WithRSAEncryption
70:c1:e6:80:f7:0e:b6:78:4d:f3:10:8a:a9:4b:5d:a5:87:16:
e4:05:56:cd:e3:23:9b:4c:60:25:a7:3d:d5:ac:98:f4:f9:09:
41:56:71:85:da:6c:84:c0:c3:35:f7:d8:af:77:7b:38:de:cb:
00:0e:df:3e:00:10:18:2d:f9:2f:f6:53:8a:94:3c:85:10:16:
17:aa:13:da:5f:6f:bd:fc:7d:dd:e7:d1:3b:3a:c8:f6:e4:11:
d0:fe:00:d0:ec:8e:39:74:79:21:55:59:c2:d5:a5:3e:4d:51:
62:30:af:d5:d7:89:3d:7b:9f:0c:eb:bc:bd:21:c4:78:e7:3a:
cf:f8:e3:6f:7c:08:7b:00:67:8a:27:ab:03:8c:1f:f5:dc:11:
99:cf:ec:6b:c1:16:79:8f:e7:92:7c:ea:1c:a4:99:17:29:29:
6b:30:a2:3c:8d:5b:c4:b8:57:d3:bd:75:86:5e:ba:e5:b1:88:
c7:83:e8:01:9a:b2:e0:2a:de:ac:81:b7:a1:e0:2e:98:20:33:
d3:08:85:37:79:5f:b3:ae:e9:e1:e6:57:fc:5d:8e:2c:48:98:
58:d6:b5:1b:3f:c4:6f:af:dc:53:b0:8f:2b:6f:d2:05:59:fc:
5c:76:e4:75:b9:1b:35:7f:17:ef:78:7c:3b:40:79:fa:1d:e2:
d7:6b:c3:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 22 09:06:45 2024 by rpki-client on console-fra.rpki-client.org