Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/597/VSgHAYfQ842PL5ZQcQZ0HW0SGAE.roa
File: VSgHAYfQ842PL5ZQcQZ0HW0SGAE.roa (raw, json)
Hash identifier: DaMoxwTbOEhY7TXxpGBuj0KdvpqmRATOhG2/qe6hNAc=
Subject key identifier: 55:28:07:01:87:D0:F3:8D:8F:2F:96:50:71:06:74:1D:6D:12:18:01
Certificate issuer: /CN=71F76FA07735F685991FC882C885E21EFBB161BC
Certificate serial: 25
Authority key identifier: 71:F7:6F:A0:77:35:F6:85:99:1F:C8:82:C8:85:E2:1E:FB:B1:61:BC
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cfdvoHc19oWZH8iCyIXiHvuxYbw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/597/VSgHAYfQ842PL5ZQcQZ0HW0SGAE.roa
Signing time: Wed 03 Jan 2024 04:45:51 +0000
ROA not before: Wed 03 Jan 2024 04:45:51 +0000
ROA not after: Sat 14 Dec 2024 01:30:03 +0000
asID: 2915
IP address blocks: 61.195.40.0/22 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37 (0x25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71F76FA07735F685991FC882C885E21EFBB161BC
Validity
Not Before: Jan 3 04:45:51 2024 GMT
Not After : Dec 14 01:30:03 2024 GMT
Subject: CN=5528070187D0F38D8F2F96507106741D6D121801
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:15:e6:63:1f:97:6e:da:c4:c2:01:c8:0d:66:
34:80:26:7c:05:11:00:ab:13:a9:e4:b3:70:02:e1:
5e:9c:37:0f:cc:3c:4b:72:db:37:5d:28:93:df:5f:
27:aa:f9:cf:0a:43:8b:e8:bc:92:75:88:df:b5:bc:
8a:c9:60:a8:60:33:e8:ed:5d:1d:8b:58:9f:1a:2d:
b3:3b:bd:a8:ea:ef:5c:87:06:44:e2:4c:1e:8c:84:
c7:9c:d4:63:6e:92:ec:8f:d7:39:f3:77:d1:b0:d2:
95:f0:28:0e:83:1c:e4:80:c1:cc:85:44:0f:b7:b9:
00:78:bf:07:3d:04:c7:60:f6:8c:09:a2:99:2d:86:
df:90:23:19:48:bc:e2:87:a1:20:4d:93:59:82:4e:
cb:a3:af:b2:db:e5:a4:d2:94:15:e9:00:59:5c:38:
da:92:79:b7:20:79:dc:5e:a3:5d:52:8f:35:a3:46:
63:86:39:9f:0c:e2:28:8e:7a:0a:e9:92:0f:de:ea:
1b:31:16:e1:26:6f:37:29:07:b1:ba:e5:0a:cc:e3:
be:1b:1f:53:ed:01:a4:9b:52:fe:40:66:95:33:87:
86:c8:8d:7f:35:a8:7b:86:ce:e4:41:ec:38:41:52:
87:3d:db:93:d8:78:b6:aa:f3:b5:fd:39:00:17:1a:
25:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:28:07:01:87:D0:F3:8D:8F:2F:96:50:71:06:74:1D:6D:12:18:01
X509v3 Authority Key Identifier:
keyid:71:F7:6F:A0:77:35:F6:85:99:1F:C8:82:C8:85:E2:1E:FB:B1:61:BC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/597/cfdvoHc19oWZH8iCyIXiHvuxYbw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cfdvoHc19oWZH8iCyIXiHvuxYbw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/597/VSgHAYfQ842PL5ZQcQZ0HW0SGAE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
61.195.40.0/22
Signature Algorithm: sha256WithRSAEncryption
cd:63:88:d0:39:ec:32:dd:05:9a:a9:35:21:07:2a:5b:9a:c2:
a9:0a:fe:df:0d:d5:fb:b2:53:49:27:7b:9d:77:9b:95:69:27:
f5:03:52:3e:6d:a7:91:1b:cd:d8:d0:5b:5d:86:49:17:f2:d7:
ae:26:d6:38:3f:fb:2c:97:f0:9d:69:ff:55:f3:c7:21:a6:07:
d1:39:c0:d0:f2:c6:4b:a6:4e:79:cc:d2:09:3d:c7:9b:58:23:
e4:8c:57:2b:10:86:15:d6:ac:7c:27:d1:50:1d:dd:3e:c7:4a:
b7:be:93:cf:da:9b:0f:8e:2f:18:53:05:9f:a0:2b:b7:6d:0e:
d9:b1:4d:0d:a2:56:f7:80:15:d8:f5:6f:cb:0f:80:02:95:fc:
71:1c:c8:de:f0:a7:aa:3c:27:a5:9d:2d:f6:eb:16:ba:ba:19:
db:95:a2:39:e1:11:c7:50:67:3c:eb:bb:95:4f:48:02:c7:6e:
03:07:e7:de:62:94:04:5b:dc:e8:f0:6e:18:57:64:04:36:77:
34:64:24:72:f5:b6:a6:a5:74:57:b9:eb:5e:66:66:a9:78:c9:
bd:82:6a:25:06:12:7c:00:4e:ca:08:a4:7f:b1:3f:af:d2:95:
d8:6b:82:24:d2:48:d1:02:4d:69:2a:50:1f:9b:4e:a7:de:03:
55:9e:88:3a
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBJTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3MUY3
NkZBMDc3MzVGNjg1OTkxRkM4ODJDODg1RTIxRUZCQjE2MUJDMB4XDTI0MDEwMzA0
NDU1MVoXDTI0MTIxNDAxMzAwM1owMzExMC8GA1UEAxMoNTUyODA3MDE4N0QwRjM4
RDhGMkY5NjUwNzEwNjc0MUQ2RDEyMTgwMTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALwV5mMfl27axMIByA1mNIAmfAURAKsTqeSzcALhXpw3D8w8S3Lb
N10ok99fJ6r5zwpDi+i8knWI37W8islgqGAz6O1dHYtYnxotszu9qOrvXIcGROJM
HoyEx5zUY26S7I/XOfN30bDSlfAoDoMc5IDBzIVED7e5AHi/Bz0Ex2D2jAmimS2G
35AjGUi84oehIE2TWYJOy6OvstvlpNKUFekAWVw42pJ5tyB53F6jXVKPNaNGY4Y5
nwziKI56CumSD97qGzEW4SZvNykHsbrlCszjvhsfU+0BpJtS/kBmlTOHhsiNfzWo
e4bO5EHsOEFShz3bk9h4tqrztf05ABcaJXsCAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBRVKAcBh9DzjY8vllBxBnQdbRIYATAfBgNVHSMEGDAWgBRx92+gdzX2hZkfyILI
heIe+7FhvDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvNTk3L2NmZHZvSGMxOW9XWkg4aUN5SVhpSHZ1eFlidy5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2NmZHZvSGMxOW9XWkg4aUN5SVhpSHZ1
eFlidy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC81OTcvVlNnSEFZZlE4NDJQTDVaUWNRWjBIVzBTR0FFLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAj3DKDANBgkqhkiG9w0BAQsFAAOCAQEAzWOI0DnsMt0Fmqk1IQcqW5rCqQr+
3w3V+7JTSSd7nXeblWkn9QNSPm2nkRvN2NBbXYZJF/LXribWOD/7LJfwnWn/VfPH
IaYH0TnA0PLGS6ZOeczSCT3Hm1gj5IxXKxCGFdasfCfRUB3dPsdKt76Tz9qbD44v
GFMFn6Art20O2bFNDaJW94AV2PVvyw+AApX8cRzI3vCnqjwnpZ0t9usWuroZ25Wi
OeERx1BnPOu7lU9IAsduAwfn3mKUBFvc6PBuGFdkBDZ3NGQkcvW2pqV0V7nrXmZm
qXjJvYJqJQYSfABOygikf7E/r9KV2GuCJNJI0QJNaSpQH5tOp94DVZ6IOg==
-----END CERTIFICATE-----
Generated at Thu May 23 10:55:45 2024 by rpki-client on console-fra.rpki-client.org