Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/hn1zFEgJEf-WBOlN4pss52nbhHI.roa
File: hn1zFEgJEf-WBOlN4pss52nbhHI.roa (raw, json)
Hash identifier: iUbfo+o+c8RX7Tp9w8JdeaaFJpqjSxoLYOioKz1c1fk=
Subject key identifier: 86:7D:73:14:48:09:11:FF:96:04:E9:4D:E2:9B:2C:E7:69:DB:84:72
Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Certificate serial: 03D6
Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/hn1zFEgJEf-WBOlN4pss52nbhHI.roa
Signing time: Wed 18 Dec 2024 02:16:26 +0000
ROA not before: Wed 18 Dec 2024 02:16:26 +0000
ROA not after: Mon 15 Dec 2025 01:30:03 +0000
asID: 2516
IP address blocks: 59.132.0.0/16 maxlen: 16
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 22:44:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 982 (0x3d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Validity
Not Before: Dec 18 02:16:26 2024 GMT
Not After : Dec 15 01:30:03 2025 GMT
Subject: CN=867D7314480911FF9604E94DE29B2CE769DB8472
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:95:80:a5:6c:39:a3:e2:90:aa:20:57:27:0a:
fa:5b:4b:fa:0f:ee:3c:56:b0:7d:74:03:31:0f:2d:
e5:fd:81:09:6a:c2:95:b1:57:c9:e6:82:53:27:e4:
fb:1e:00:04:9c:0f:5c:7c:96:62:a5:80:d1:61:7a:
54:91:54:4a:c5:3a:79:b3:d4:22:53:a0:c8:03:29:
88:e5:11:0a:d2:5b:bc:b6:1c:53:c0:77:58:55:9e:
bb:72:e7:d0:aa:5c:62:3f:d0:a4:13:23:b5:cf:42:
10:59:46:f0:ef:db:43:4a:3a:52:a5:5d:68:66:f6:
8d:96:19:4a:c2:a2:28:bc:2f:7f:7a:97:d4:8d:6e:
27:0b:90:7c:63:99:02:22:f3:0c:a3:9c:96:da:c8:
56:e9:2a:96:6b:ac:71:50:d6:7c:8f:ee:a3:79:4e:
ed:48:59:20:97:97:37:02:6e:71:30:3a:8e:22:da:
1e:97:e5:61:03:c5:eb:d2:ef:41:c1:8b:38:31:47:
3c:55:d2:16:4d:5f:49:b6:2a:ce:cf:fa:32:3a:38:
b1:5a:4d:a2:a8:bf:c0:03:08:ab:52:cc:f4:dc:58:
59:4d:b6:08:14:15:79:c9:ef:f2:5e:59:58:46:90:
ec:67:f0:bd:a2:5a:30:5f:4a:da:59:25:16:d8:6e:
63:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:7D:73:14:48:09:11:FF:96:04:E9:4D:E2:9B:2C:E7:69:DB:84:72
X509v3 Authority Key Identifier:
keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/hn1zFEgJEf-WBOlN4pss52nbhHI.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
59.132.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3b:c5:39:42:9b:c7:1d:71:f1:68:b8:d3:7c:92:82:37:d0:fb:
41:2a:89:4a:79:2f:bb:44:b9:f8:77:9c:17:f8:ba:e6:84:67:
5b:68:bf:68:3d:42:87:d6:76:d1:58:d7:27:e5:a5:f7:8a:cf:
a3:c0:b3:ea:9e:4e:58:3c:b9:d2:38:46:af:2b:e9:36:8d:11:
23:5f:09:65:15:3b:dd:db:ef:25:53:be:45:55:e0:a9:04:da:
88:f0:12:6d:7c:64:33:ba:e8:0f:c2:d7:12:ee:c4:07:20:f6:
f7:58:db:41:63:80:ac:31:57:c7:36:75:47:d1:3b:27:dd:78:
ef:43:45:b2:c1:38:0d:fc:3d:64:f8:3e:3c:6f:77:1e:73:6f:
ca:53:bf:ba:08:99:d8:62:25:05:f3:b9:1c:1b:d0:5a:27:c4:
da:f4:70:22:25:2a:98:4c:6c:a5:15:c1:12:85:c3:c5:06:be:
57:1b:e9:02:d0:69:60:da:2a:5f:39:49:55:33:1d:8f:f9:1f:
93:91:12:d4:d0:6c:75:3d:96:32:31:72:ad:d5:1b:ae:4f:3f:
9f:86:d2:5c:3c:5c:27:46:a1:a6:ff:b2:b5:99:7d:c7:57:a9:
ee:6f:50:ff:c2:bb:fe:94:3f:c5:f8:7f:65:66:d6:f9:f9:17:
98:1c:ef:b6
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgICA9YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC
RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw
MjE2MjZaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDg2N0Q3MzE0NDgwOTEx
RkY5NjA0RTk0REUyOUIyQ0U3NjlEQjg0NzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDGlYClbDmj4pCqIFcnCvpbS/oP7jxWsH10AzEPLeX9gQlqwpWx
V8nmglMn5PseAAScD1x8lmKlgNFhelSRVErFOnmz1CJToMgDKYjlEQrSW7y2HFPA
d1hVnrty59CqXGI/0KQTI7XPQhBZRvDv20NKOlKlXWhm9o2WGUrCoii8L396l9SN
bicLkHxjmQIi8wyjnJbayFbpKpZrrHFQ1nyP7qN5Tu1IWSCXlzcCbnEwOo4i2h6X
5WEDxevS70HBizgxRzxV0hZNX0m2Ks7P+jI6OLFaTaKov8ADCKtSzPTcWFlNtggU
FXnJ7/JeWVhGkOxn8L2iWjBfStpZJRbYbmMxAgMBAAGjggIjMIICHzAdBgNVHQ4E
FgQUhn1zFEgJEf+WBOlN4pss52nbhHIwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf
2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG
cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMTYxL2huMXpGRWdKRWYtV0JPbE40cHNzNTJuYmhISS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwA7hDANBgkqhkiG9w0BAQsFAAOCAQEAO8U5QpvHHXHxaLjTfJKCN9D7QSqJ
Snkvu0S5+HecF/i65oRnW2i/aD1Ch9Z20VjXJ+Wl94rPo8Cz6p5OWDy50jhGryvp
No0RI18JZRU73dvvJVO+RVXgqQTaiPASbXxkM7roD8LXEu7EByD291jbQWOArDFX
xzZ1R9E7J91470NFssE4Dfw9ZPg+PG93HnNvylO/ugiZ2GIlBfO5HBvQWifE2vRw
IiUqmExspRXBEoXDxQa+VxvpAtBpYNoqXzlJVTMdj/kfk5ES1NBsdT2WMjFyrdUb
rk8/n4bSXDxcJ0ahpv+ytZl9x1ep7m9Q/8K7/pQ/xfh/ZWbW+fkXmBzvtg==
-----END CERTIFICATE-----
Generated at Mon Apr 14 23:01:11 2025 by rpki-client