Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/699/bkqeJzVTPVpOXDMPDUQnaPOy7iw.roa
File: bkqeJzVTPVpOXDMPDUQnaPOy7iw.roa (raw, json)
Hash identifier: EsRAi1IEQO61OTbLVwhnRFQv9b7HN5hEyP6JQGaTP8w=
Subject key identifier: 6E:4A:9E:27:35:53:3D:5A:4E:5C:33:0F:0D:44:27:68:F3:B2:EE:2C
Certificate issuer: /CN=6522E2C3EF4D93F13E758A807A40A8E1BF9AB130
Certificate serial: 3200
Authority key identifier: 65:22:E2:C3:EF:4D:93:F1:3E:75:8A:80:7A:40:A8:E1:BF:9A:B1:30
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZSLiw-9Nk_E-dYqAekCo4b-asTA.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/bkqeJzVTPVpOXDMPDUQnaPOy7iw.roa
Signing time: Wed 25 Aug 2021 10:13:06 +0000
ROA not before: Wed 25 Aug 2021 10:13:06 +0000
ROA not after: Mon 15 Aug 2022 01:30:03 +0000
asID: 7671
IP address blocks: 210.247.0.0/17 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12800 (0x3200)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6522E2C3EF4D93F13E758A807A40A8E1BF9AB130
Validity
Not Before: Aug 25 10:13:06 2021 GMT
Not After : Aug 15 01:30:03 2022 GMT
Subject: CN=6E4A9E2735533D5A4E5C330F0D442768F3B2EE2C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:bc:f7:d3:6e:8b:83:6a:9b:b4:9c:4e:40:3c:
fc:50:80:9b:b3:fe:2e:23:c0:f2:19:2b:7b:d6:0d:
b2:d4:50:1e:c5:5f:c2:3b:30:a7:c8:b1:2c:83:d1:
5c:a9:4a:00:37:d6:41:e7:25:95:7c:55:e0:d6:7f:
53:d1:05:83:a5:95:d2:8e:32:7e:2a:e3:ed:a3:81:
a3:6b:ae:b9:75:b6:aa:af:23:67:20:6a:46:c2:ed:
98:10:ac:7e:55:5c:5a:58:c8:7d:7c:d9:e2:3c:59:
43:cf:0c:df:da:51:c8:a8:92:a7:a2:d0:8a:dd:a4:
a2:45:bf:91:21:48:ed:38:b1:46:c8:1c:c1:af:0d:
f3:d0:fc:d2:4a:aa:96:a6:3b:93:13:f0:d8:14:e4:
b4:ee:63:84:d4:48:0e:9e:7b:47:ad:21:b4:3f:e5:
2e:5b:17:e5:a0:b9:f5:28:3e:27:ab:81:16:a3:d3:
6f:ac:b3:09:66:97:1f:a1:27:62:6b:3e:25:7a:94:
25:b4:c9:d9:26:c6:ab:ee:0d:16:0a:3d:f2:6f:2d:
f1:f4:17:57:df:48:68:d7:7b:e0:f4:66:19:d3:02:
a9:70:e4:60:51:cf:24:6e:e2:b2:24:08:c2:c2:27:
a6:97:0c:e8:ef:52:8e:18:38:d4:a3:b8:e7:9f:0e:
60:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:4A:9E:27:35:53:3D:5A:4E:5C:33:0F:0D:44:27:68:F3:B2:EE:2C
X509v3 Authority Key Identifier:
keyid:65:22:E2:C3:EF:4D:93:F1:3E:75:8A:80:7A:40:A8:E1:BF:9A:B1:30
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/ZSLiw-9Nk_E-dYqAekCo4b-asTA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZSLiw-9Nk_E-dYqAekCo4b-asTA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/bkqeJzVTPVpOXDMPDUQnaPOy7iw.roa
sbgp-ipAddrBlock: critical
IPv4:
210.247.0.0/17
Signature Algorithm: sha256WithRSAEncryption
35:4d:5c:65:90:e3:31:db:2e:6b:98:98:5f:c7:c1:ab:85:47:
c5:96:e7:a6:b3:a8:08:79:0a:4f:26:61:fb:f7:60:f4:0e:b9:
e1:a3:55:64:12:ad:ca:84:64:2c:46:60:66:8b:e2:57:75:b4:
df:85:ab:c6:53:f4:15:53:b7:1f:57:64:1f:90:f7:35:20:d6:
c9:08:2a:17:a6:c3:53:15:ce:b5:4a:dd:af:56:76:85:66:2e:
82:73:44:c5:4b:1a:8b:f9:9d:07:f8:c5:e2:4c:98:bf:d2:73:
40:ba:fd:d9:af:ea:a9:40:7f:08:b0:7a:f0:d4:6a:c8:5a:e4:
e4:20:e5:d3:9e:cf:1e:e9:1c:57:d7:58:39:b4:85:cb:07:f3:
a6:cf:4b:e5:0b:c4:00:72:bb:8d:fc:d7:4f:c0:30:fc:e2:95:
e2:ae:88:03:ad:c6:9b:26:d0:a4:2b:98:5e:ac:38:80:20:3d:
3c:2f:bd:c4:75:7f:0f:68:6e:e6:87:a6:96:be:1a:55:3e:12:
10:a2:d5:34:53:64:1d:1b:48:5c:8b:90:34:6c:94:05:e6:22:
aa:7b:8a:ba:47:3c:ba:12:d0:00:7c:10:36:35:1e:54:06:73:
b1:59:c6:93:7c:da:dc:89:96:8a:f7:32:f6:37:c1:bb:6b:d9:
9d:0e:59:48
-----BEGIN CERTIFICATE-----
MIIEvTCCA6WgAwIBAgICMgAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjUy
MkUyQzNFRjREOTNGMTNFNzU4QTgwN0E0MEE4RTFCRjlBQjEzMDAeFw0yMTA4MjUx
MDEzMDZaFw0yMjA4MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDZFNEE5RTI3MzU1MzNE
NUE0RTVDMzMwRjBENDQyNzY4RjNCMkVFMkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDcvPfTbouDapu0nE5APPxQgJuz/i4jwPIZK3vWDbLUUB7FX8I7
MKfIsSyD0VypSgA31kHnJZV8VeDWf1PRBYOlldKOMn4q4+2jgaNrrrl1tqqvI2cg
akbC7ZgQrH5VXFpYyH182eI8WUPPDN/aUciokqei0IrdpKJFv5EhSO04sUbIHMGv
DfPQ/NJKqpamO5MT8NgU5LTuY4TUSA6ee0etIbQ/5S5bF+WgufUoPiergRaj02+s
swlmlx+hJ2JrPiV6lCW0ydkmxqvuDRYKPfJvLfH0F1ffSGjXe+D0ZhnTAqlw5GBR
zyRu4rIkCMLCJ6aXDOjvUo4YONSjuOefDmALAgMBAAGjggHZMIIB1TAdBgNVHQ4E
FgQUbkqeJzVTPVpOXDMPDUQnaPOy7iwwHwYDVR0jBBgwFoAUZSLiw+9Nk/E+dYqA
ekCo4b+asTAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzY5OS9aU0xpdy05TmtfRS1kWXFBZWtDbzRiLWFzVEEuY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9aU0xpdy05TmtfRS1kWXFBZWtDbzRi
LWFzVEEuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB
BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB
NzM4MTAwMDAvNjk5L2JrcWVKelZUUFZwT1hETVBEVVFuYVBPeTdpdy5yb2EwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfS9wAwDQYJKoZIhvcNAQELBQADggEB
ADVNXGWQ4zHbLmuYmF/HwauFR8WW56azqAh5Ck8mYfv3YPQOueGjVWQSrcqEZCxG
YGaL4ld1tN+Fq8ZT9BVTtx9XZB+Q9zUg1skIKhemw1MVzrVK3a9WdoVmLoJzRMVL
Gov5nQf4xeJMmL/Sc0C6/dmv6qlAfwiwevDUasha5OQg5dOezx7pHFfXWDm0hcsH
86bPS+ULxAByu43810/AMPzileKuiAOtxpsm0KQrmF6sOIAgPTwvvcR1fw9obuaH
ppa+GlU+EhCi1TRTZB0bSFyLkDRslAXmIqp7irpHPLoS0AB8EDY1HlQGc7FZxpN8
2tyJlor3MvY3wbtr2Z0OWUg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:14 2024 by rpki-client on console-ams.rpki-client.org