Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/354/yI0Dgqy7V0a83Ig-b-F1A0KF6qo.roa
File: yI0Dgqy7V0a83Ig-b-F1A0KF6qo.roa (raw, json)
Hash identifier: ABZe3pzwkxMX/ATfboMIvgU800QAv21EyAKN88NTamc=
Subject key identifier: C8:8D:03:82:AC:BB:57:46:BC:DC:88:3E:6F:E1:75:03:42:85:EA:AA
Certificate issuer: /CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC
Certificate serial: 0104
Authority key identifier: 0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/yI0Dgqy7V0a83Ig-b-F1A0KF6qo.roa
Signing time: Sun 30 Jun 2024 01:28:38 +0000
ROA not before: Sun 30 Jun 2024 01:28:38 +0000
ROA not after: Tue 24 Jun 2025 10:46:45 +0000
asID: 23816
IP address blocks: 203.141.32.0/20 maxlen: 20
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 260 (0x104)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC
Validity
Not Before: Jun 30 01:28:38 2024 GMT
Not After : Jun 24 10:46:45 2025 GMT
Subject: CN=C88D0382ACBB5746BCDC883E6FE175034285EAAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:33:bb:f2:7a:4f:c5:c7:36:43:77:88:7e:ec:
29:a1:5f:dc:96:14:fc:5a:35:6a:8b:20:ac:cd:91:
c1:6c:29:54:5d:7a:d1:60:fe:de:73:76:05:32:5d:
f7:bc:50:6a:b9:27:ae:b9:0e:9c:79:2a:e5:b5:8a:
f5:fc:b9:f6:af:a3:ee:b6:b2:f7:43:70:64:39:4e:
74:bd:f8:fb:6e:a6:c0:2b:a8:ca:64:0b:65:5f:07:
df:bb:4c:68:90:27:d3:87:31:c4:75:3b:33:3b:9a:
3c:e7:35:a4:9c:d7:76:69:08:ab:19:1d:68:63:c3:
6a:e7:19:b5:e4:1f:4d:b9:11:9c:59:f0:3d:62:d9:
41:7a:19:45:06:35:b8:72:db:e0:3d:9f:1c:31:09:
0e:6f:c1:f2:cf:4d:aa:ea:11:2b:64:07:b7:a6:b6:
ed:d5:95:4e:03:f8:f1:63:7a:08:aa:25:62:fd:ac:
be:b0:99:29:1b:7b:f5:ab:5f:7a:98:07:17:7e:6f:
e3:61:84:af:be:a5:44:4f:9f:00:c6:4c:22:6c:92:
83:5a:60:6b:83:6a:4d:be:2b:61:f4:79:6c:53:23:
a8:4b:4c:e1:69:d4:c1:7f:c0:6a:5c:8d:23:9b:1e:
65:f9:f8:db:13:cb:92:8f:4c:36:7c:ec:b1:0b:8e:
b6:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:8D:03:82:AC:BB:57:46:BC:DC:88:3E:6F:E1:75:03:42:85:EA:AA
X509v3 Authority Key Identifier:
keyid:0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/yI0Dgqy7V0a83Ig-b-F1A0KF6qo.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.141.32.0/20
Signature Algorithm: sha256WithRSAEncryption
56:9c:b4:53:73:ed:9c:dc:bc:61:01:82:1f:6c:50:94:f4:f0:
f5:a5:ca:9f:e9:52:59:ae:1d:ab:ab:c5:59:82:14:40:27:94:
b5:88:c9:27:fc:36:c4:9c:6c:ad:02:18:6c:c8:1f:9f:ab:6a:
4c:a1:92:eb:9f:6c:98:fc:df:be:7a:25:d1:5f:f2:56:b9:77:
ff:57:9c:23:22:5c:50:31:f0:82:33:8d:17:3a:3e:0b:a5:65:
13:9b:cb:9a:66:fa:57:15:87:10:91:70:3c:d7:1a:74:9f:66:
39:b6:44:bc:d2:92:55:05:ac:d0:d2:0e:6f:1e:48:f4:46:89:
5f:14:e3:27:52:8c:a8:01:f0:48:15:df:5e:16:4d:90:f1:99:
48:b9:04:09:32:8b:c1:d5:a0:d2:da:7f:08:ac:a4:e2:10:f6:
58:8e:63:71:8d:02:d7:72:53:ef:3f:af:e5:a9:9b:74:a9:16:
93:6d:fc:02:99:a4:6d:4c:7d:ee:a1:4c:49:a0:d2:af:c6:7a:
96:e6:ce:f7:ab:70:d4:8b:ce:01:53:41:bb:a7:af:b1:69:5d:
5d:5f:02:79:92:07:8d:f5:4e:92:f1:80:7a:30:f1:8d:41:11:
1b:8b:a6:03:ef:cb:87:d1:eb:aa:d3:d7:9d:14:b5:1a:9b:eb:
b6:ff:f7:db
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEE1
QUNBQzI5OTBCRDhGODY1NUMwQzcyMUJBQ0ZGMDMwQTU5RDFGQzAeFw0yNDA2MzAw
MTI4MzhaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEM4OEQwMzgyQUNCQjU3
NDZCQ0RDODgzRTZGRTE3NTAzNDI4NUVBQUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDXM7vyek/FxzZDd4h+7CmhX9yWFPxaNWqLIKzNkcFsKVRdetFg
/t5zdgUyXfe8UGq5J665Dpx5KuW1ivX8ufavo+62svdDcGQ5TnS9+PtupsArqMpk
C2VfB9+7TGiQJ9OHMcR1OzM7mjznNaSc13ZpCKsZHWhjw2rnGbXkH025EZxZ8D1i
2UF6GUUGNbhy2+A9nxwxCQ5vwfLPTarqEStkB7emtu3VlU4D+PFjegiqJWL9rL6w
mSkbe/WrX3qYBxd+b+NhhK++pURPnwDGTCJskoNaYGuDak2+K2H0eWxTI6hLTOFp
1MF/wGpcjSObHmX5+NsTy5KPTDZ87LELjrZ1AgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUyI0Dgqy7V0a83Ig+b+F1A0KF6qowHwYDVR0jBBgwFoAUClrKwpkL2PhlXAxy
G6z/AwpZ0fwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzM1NC9DbHJLd3BrTDJQaGxYQXh5RzZ6X0F3cFowZncuY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9DbHJLd3BrTDJQaGxYQXh5RzZ6X0F3
cFowZncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzU0L3lJMERncXk3VjBhODNJZy1iLUYxQTBLRjZxby5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBATLjSAwDQYJKoZIhvcNAQELBQADggEBAFactFNz7ZzcvGEBgh9sUJT08PWl
yp/pUlmuHaurxVmCFEAnlLWIySf8NsScbK0CGGzIH5+rakyhkuufbJj83756JdFf
8la5d/9XnCMiXFAx8IIzjRc6PgulZROby5pm+lcVhxCRcDzXGnSfZjm2RLzSklUF
rNDSDm8eSPRGiV8U4ydSjKgB8EgV314WTZDxmUi5BAkyi8HVoNLafwispOIQ9liO
Y3GNAtdyU+8/r+Wpm3SpFpNt/AKZpG1Mfe6hTEmg0q/GepbmzvercNSLzgFTQbun
r7FpXV1fAnmSB431TpLxgHow8Y1BERuLpgPvy4fR66rT150UtRqb67b/99s=
-----END CERTIFICATE-----
Generated at Mon Jul 22 09:00:28 2024 by rpki-client on console-ams.rpki-client.org