Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/820/GhNIyIeYDlNX0EBr-RXzv9_ePFk.roa
File: GhNIyIeYDlNX0EBr-RXzv9_ePFk.roa (raw, json)
Hash identifier: AXpVlyZqmi3PjWhHmtWeAyUTRo5vY/veRB0gIohYlns=
Subject key identifier: 1A:13:48:C8:87:98:0E:53:57:D0:40:6B:F9:15:F3:BF:DF:DE:3C:59
Certificate issuer: /CN=9FEB105C67E5FD5C9E1AFD06A343C841F05A7F15
Certificate serial: 02
Authority key identifier: 9F:EB:10:5C:67:E5:FD:5C:9E:1A:FD:06:A3:43:C8:41:F0:5A:7F:15
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/n-sQXGfl_VyeGv0Go0PIQfBafxU.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/820/GhNIyIeYDlNX0EBr-RXzv9_ePFk.roa
Signing time: Fri 22 Jul 2022 05:15:07 +0000
ROA not before: Fri 22 Jul 2022 05:15:07 +0000
ROA not after: Sat 22 Jul 2023 04:25:47 +0000
asID: 23614
IP address blocks: 210.158.176.0/20 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9FEB105C67E5FD5C9E1AFD06A343C841F05A7F15
Validity
Not Before: Jul 22 05:15:07 2022 GMT
Not After : Jul 22 04:25:47 2023 GMT
Subject: CN=1A1348C887980E5357D0406BF915F3BFDFDE3C59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f8:46:82:4c:8c:f0:61:60:ee:fc:d9:d4:93:
67:2d:2b:b1:85:bc:4b:65:5e:e8:a9:4d:92:e4:f9:
86:bd:40:1b:67:46:6b:f7:28:98:9b:34:c0:83:27:
aa:fb:5e:d1:59:b2:95:28:96:66:69:94:f2:50:da:
bc:fe:d9:9a:5b:58:24:d8:39:f7:15:fa:3e:b1:6a:
7a:4a:1e:9d:d9:7f:85:3e:b9:0d:2b:cf:ef:80:b8:
7e:c6:f1:50:da:74:9b:40:bb:1b:bc:9d:b0:72:5d:
ee:3d:a9:2b:1d:49:84:18:b8:18:b4:47:9e:9f:e3:
78:e6:ab:0c:65:15:e5:60:4b:cc:d3:b1:b2:8a:d9:
38:ff:21:fd:6d:6a:28:42:b9:88:d5:b2:d2:dd:ab:
6f:60:eb:29:4c:88:20:04:90:ce:b7:bb:e9:5e:a3:
42:9a:d3:5f:96:cf:11:15:6c:1c:06:ca:56:ca:2b:
f7:fb:6d:6a:21:0b:76:73:3d:62:9a:9e:f4:a2:52:
2e:30:cd:53:39:a0:43:16:8d:ae:48:1b:2c:ba:1d:
62:07:a5:31:d2:2f:96:48:25:e7:3d:8c:2d:83:3d:
03:ee:c7:f3:fe:43:64:35:fa:11:3c:03:fa:4e:74:
66:a8:4e:1f:13:ef:48:2a:b4:57:b8:b1:9c:df:22:
31:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:13:48:C8:87:98:0E:53:57:D0:40:6B:F9:15:F3:BF:DF:DE:3C:59
X509v3 Authority Key Identifier:
keyid:9F:EB:10:5C:67:E5:FD:5C:9E:1A:FD:06:A3:43:C8:41:F0:5A:7F:15
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/820/n-sQXGfl_VyeGv0Go0PIQfBafxU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/n-sQXGfl_VyeGv0Go0PIQfBafxU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/820/GhNIyIeYDlNX0EBr-RXzv9_ePFk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
210.158.176.0/20
Signature Algorithm: sha256WithRSAEncryption
39:2b:4a:45:c5:fb:9d:08:51:05:cf:59:c5:69:e9:8a:7b:cc:
aa:c7:78:c4:44:6d:4a:1b:c5:61:53:5c:f8:60:0b:8c:11:45:
ed:32:bd:e5:a0:5c:9a:54:e2:f4:29:8d:dd:32:40:08:7f:30:
a3:09:66:ee:2c:25:70:65:0c:5b:80:bc:49:da:e5:d2:6a:72:
f4:4a:19:10:a1:75:8a:ad:68:8f:20:7b:01:9b:b8:40:ba:98:
42:e5:1a:8c:4e:fe:a8:f1:db:6b:ff:8e:86:96:e5:68:55:3a:
47:09:94:34:f7:49:c3:dd:00:6f:f7:a9:94:bf:a5:a8:5e:21:
1e:c6:8b:de:5e:4d:a5:39:ac:fc:0a:47:ee:53:91:4b:b0:a9:
be:f1:86:54:6f:fe:11:3f:cf:34:29:90:d8:ae:c2:67:cd:61:
aa:85:92:ba:44:d6:c6:e9:26:eb:ec:cb:83:2c:ec:15:a0:2c:
34:1f:c7:52:bd:10:9e:79:e5:e3:47:16:e6:d3:00:30:44:8b:
f8:f6:f4:77:d0:a9:6d:c4:bb:0e:7b:86:a6:13:b5:f0:4e:e0:
6d:f6:48:ff:dd:0e:f8:9a:de:40:e6:94:cc:b6:f5:37:26:1d:
e0:1e:04:78:8c:10:3d:95:69:e5:2f:26:54:3e:8e:39:04:3c:
dd:e5:2b:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:56 2024 by rpki-client on console-fra.rpki-client.org