Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/820/R87Cwmd5LJtjjFPU5GaNL6W3Ees.roa
File: R87Cwmd5LJtjjFPU5GaNL6W3Ees.roa (raw, json)
Hash identifier: 8hHaXt/fnPMDd8O4a7KDNHqKz7fwYxnxWWf9AqFZ4O4=
Subject key identifier: 47:CE:C2:C2:67:79:2C:9B:63:8C:53:D4:E4:66:8D:2F:A5:B7:11:EB
Certificate issuer: /CN=9FEB105C67E5FD5C9E1AFD06A343C841F05A7F15
Certificate serial: 0E
Authority key identifier: 9F:EB:10:5C:67:E5:FD:5C:9E:1A:FD:06:A3:43:C8:41:F0:5A:7F:15
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/n-sQXGfl_VyeGv0Go0PIQfBafxU.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/820/R87Cwmd5LJtjjFPU5GaNL6W3Ees.roa
Signing time: Sat 08 Jul 2023 04:24:36 +0000
ROA not before: Sat 08 Jul 2023 04:24:36 +0000
ROA not after: Fri 14 Jun 2024 01:30:02 +0000
asID: 23614
IP address blocks: 210.158.176.0/20 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14 (0xe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9FEB105C67E5FD5C9E1AFD06A343C841F05A7F15
Validity
Not Before: Jul 8 04:24:36 2023 GMT
Not After : Jun 14 01:30:02 2024 GMT
Subject: CN=47CEC2C267792C9B638C53D4E4668D2FA5B711EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:43:67:6b:bc:ee:ef:90:87:85:e8:21:5a:1f:
06:19:63:39:09:ca:3f:17:a7:cd:68:26:59:50:49:
ce:ec:0d:05:68:27:f9:e8:65:16:5f:54:d8:89:f0:
cd:54:b0:21:59:0d:6c:93:32:05:7a:f6:f2:49:50:
31:94:31:7c:9b:7a:25:e7:b0:55:32:52:26:14:71:
0d:78:75:5f:2c:3e:39:6b:f2:eb:6a:91:99:8d:a5:
1e:5d:30:82:9e:24:1f:7c:a6:04:44:b2:88:d0:bd:
3f:89:00:34:52:48:08:2a:e2:23:35:52:17:2c:7d:
ed:5c:0d:5f:9b:c5:5c:33:aa:8b:c9:ff:85:fd:e8:
14:11:e6:c5:47:5f:3b:6b:ab:7b:f8:7e:4f:48:84:
f2:35:37:1a:db:e6:67:3e:7f:0b:40:09:51:bd:0c:
fa:4b:3e:8c:c1:ab:20:69:01:11:1d:50:b0:3c:5c:
60:61:1c:83:b5:68:e1:f8:68:61:d8:48:d4:1b:54:
15:4b:d9:02:05:96:c5:31:ef:60:12:a1:47:a5:6a:
54:f7:84:57:a8:28:1b:22:02:be:d2:d6:ba:be:74:
cf:88:bd:0a:f6:73:3c:4f:fd:a1:0d:e0:9a:6b:80:
be:61:b8:64:33:2a:6a:19:ce:ec:a8:09:c8:a9:be:
78:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:CE:C2:C2:67:79:2C:9B:63:8C:53:D4:E4:66:8D:2F:A5:B7:11:EB
X509v3 Authority Key Identifier:
keyid:9F:EB:10:5C:67:E5:FD:5C:9E:1A:FD:06:A3:43:C8:41:F0:5A:7F:15
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/820/n-sQXGfl_VyeGv0Go0PIQfBafxU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/n-sQXGfl_VyeGv0Go0PIQfBafxU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/820/R87Cwmd5LJtjjFPU5GaNL6W3Ees.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
210.158.176.0/20
Signature Algorithm: sha256WithRSAEncryption
02:3b:6d:d3:2b:b5:1e:4f:d8:b3:b1:d8:3f:4a:c7:79:1c:9a:
3b:f3:4a:87:3f:15:55:5b:57:10:3a:f8:03:5d:b5:f7:2c:e5:
03:5d:06:a2:0c:d5:14:74:78:aa:cc:96:7e:09:9a:8a:0a:11:
3a:3e:49:06:3c:56:8e:59:d6:b5:14:d5:3c:47:76:35:bc:24:
07:f6:ca:7f:c8:13:3d:14:a0:fa:bd:08:f6:a4:7c:39:5d:70:
f6:e6:78:1d:a8:33:16:48:16:34:c9:0d:b8:f5:ef:d5:5b:1b:
ca:4b:d3:dc:7b:1e:97:7c:99:d9:5c:f0:c5:42:9a:ec:85:49:
41:78:fe:f6:73:68:11:89:d9:ec:19:72:c0:0b:f6:52:20:d4:
5c:a6:96:dd:5f:17:a4:c6:b0:ed:f0:c2:05:a8:43:db:fa:cd:
4a:e7:15:f9:6e:48:20:95:3d:52:4f:42:f0:e5:fd:b5:0e:04:
4e:b3:b1:1f:d3:aa:9b:7d:fd:6a:e6:36:16:3e:e8:c1:04:12:
0d:19:66:38:3b:61:02:40:43:d4:b0:c5:82:c8:38:1a:83:d2:
88:ae:85:7f:44:d6:93:cf:99:5b:60:b4:68:3f:93:cc:6e:5a:
95:57:a6:e5:2c:27:9f:62:66:b6:7f:01:ee:fe:2c:62:c8:1b:
85:0b:4e:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:56 2024 by rpki-client on console-fra.rpki-client.org