Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/13131/z4itnMgbpVzC9cWtZoHlquWgl3k.roa
File: z4itnMgbpVzC9cWtZoHlquWgl3k.roa (raw, json)
Hash identifier: 2yaycYyYrbSUF1ONaAKXUQ9HnpIbsiXsvsGMoJxy6Ck=
Subject key identifier: CF:88:AD:9C:C8:1B:A5:5C:C2:F5:C5:AD:66:81:E5:AA:E5:A0:97:79
Certificate issuer: /CN=FD13D822A4DD7BA05078F9E60025F8BFF11BEF82
Certificate serial: 5C
Authority key identifier: FD:13:D8:22:A4:DD:7B:A0:50:78:F9:E6:00:25:F8:BF:F1:1B:EF:82
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/_RPYIqTde6BQePnmACX4v_Eb74I.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/13131/z4itnMgbpVzC9cWtZoHlquWgl3k.roa
Signing time: Fri 31 Jan 2025 01:30:11 +0000
ROA not before: Fri 31 Jan 2025 01:30:11 +0000
ROA not after: Thu 15 Jan 2026 01:30:03 +0000
asID: 38639
IP address blocks: 115.69.224.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/13131/_RPYIqTde6BQePnmACX4v_Eb74I.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/13131/_RPYIqTde6BQePnmACX4v_Eb74I.mft
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/_RPYIqTde6BQePnmACX4v_Eb74I.cer
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 22:44:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92 (0x5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FD13D822A4DD7BA05078F9E60025F8BFF11BEF82
Validity
Not Before: Jan 31 01:30:11 2025 GMT
Not After : Jan 15 01:30:03 2026 GMT
Subject: CN=CF88AD9CC81BA55CC2F5C5AD6681E5AAE5A09779
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:98:05:a0:9c:30:df:26:36:46:fc:13:b7:64:
ba:47:8e:e4:34:7a:94:19:2d:67:07:30:e8:6a:ec:
35:cb:cb:94:71:96:72:8b:dc:da:e9:86:60:c9:ca:
fc:69:b7:44:0e:7b:3d:73:9e:8f:33:de:ec:12:66:
63:dd:96:93:bb:3c:ca:2f:15:92:6e:d3:71:d3:66:
64:c4:e4:e0:db:d4:0c:9e:e3:b4:a2:b0:92:73:2e:
a1:72:b0:4e:ef:21:12:a0:e0:e0:e8:a3:10:f4:9c:
c6:ef:4e:79:30:23:a6:b9:c0:19:10:ad:78:3a:9e:
f0:dd:f7:d3:70:02:d9:e8:af:dd:fa:de:d3:26:d1:
5b:2c:0b:03:36:51:73:8b:d0:6c:0a:84:1f:ed:bf:
91:da:96:24:11:75:46:01:fe:5b:71:5e:01:d3:4b:
ca:5e:98:0f:99:cf:a2:ea:93:19:ea:9c:65:59:f8:
fd:a5:57:9f:07:8b:13:b2:ed:af:69:7a:c0:ff:92:
3d:02:11:03:4f:97:30:0b:1b:8f:5c:1d:19:33:94:
5b:1b:3b:92:31:7b:45:f5:c2:ee:6e:bf:81:d0:22:
00:34:f3:70:8c:94:6e:e2:46:84:54:c2:5c:54:04:
0a:30:f7:b8:40:e4:d2:cd:5a:6e:2c:10:56:c5:ab:
d8:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:88:AD:9C:C8:1B:A5:5C:C2:F5:C5:AD:66:81:E5:AA:E5:A0:97:79
X509v3 Authority Key Identifier:
keyid:FD:13:D8:22:A4:DD:7B:A0:50:78:F9:E6:00:25:F8:BF:F1:1B:EF:82
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/13131/_RPYIqTde6BQePnmACX4v_Eb74I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/_RPYIqTde6BQePnmACX4v_Eb74I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/13131/z4itnMgbpVzC9cWtZoHlquWgl3k.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.69.224.0/21
Signature Algorithm: sha256WithRSAEncryption
9f:bf:63:e6:1f:77:03:48:c8:e7:a0:2c:e8:13:09:0b:55:23:
23:87:6a:0e:bf:85:30:73:ec:49:39:90:e6:10:c4:52:bd:cd:
9d:38:47:3d:41:66:8d:3d:ea:9b:a0:19:04:52:9a:6d:5b:86:
3f:23:44:62:10:28:af:60:c9:98:be:ba:83:54:6e:78:a0:b7:
63:e7:69:9e:7f:c5:f8:7b:3b:f6:a5:52:45:06:b2:c9:88:6f:
11:b6:8f:f7:f5:4e:05:a8:6a:29:84:97:57:fa:43:95:d3:b3:
cb:5c:8c:3d:91:2f:24:8f:6d:96:f5:5f:61:c1:3f:30:44:31:
ba:e2:4d:ed:65:04:a7:5a:e7:4f:09:96:ae:69:79:35:e2:77:
bd:21:24:2e:00:9d:f8:22:f2:2b:91:98:81:5c:30:50:e5:48:
e0:94:29:3e:3e:ef:84:f6:3b:9a:39:15:41:4d:b7:a1:92:1a:
38:02:1b:50:4f:d7:36:a1:e4:94:0e:72:e7:e8:7a:77:fd:ac:
3c:ea:df:24:00:e1:32:a2:90:6f:76:07:aa:bc:47:fd:1a:12:
75:10:b5:f6:f9:fe:ff:cf:2d:ef:a0:a0:03:85:dc:d6:c5:63:
3d:25:2a:2e:f9:27:ee:77:2e:ae:3d:11:37:4a:dd:cd:72:10:
af:06:0e:75
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Apr 14 23:01:07 2025 by rpki-client