Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/173/hfSHFV4DyeNxA2xvq3aBmPr1Q-M.roa
File: hfSHFV4DyeNxA2xvq3aBmPr1Q-M.roa (raw, json)
Hash identifier: HoNm62rA86M+fCGfwhGJZdkjUCy6zMxCpTj86BTXFNg=
Subject key identifier: 85:F4:87:15:5E:03:C9:E3:71:03:6C:6F:AB:76:81:98:FA:F5:43:E3
Certificate issuer: /CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5
Certificate serial: D2
Authority key identifier: CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/hfSHFV4DyeNxA2xvq3aBmPr1Q-M.roa
Signing time: Fri 31 Jan 2025 01:31:26 +0000
ROA not before: Fri 31 Jan 2025 01:31:26 +0000
ROA not after: Thu 15 Jan 2026 01:30:03 +0000
asID: 18126
IP address blocks: 202.124.0.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.mft
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 18:14:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 210 (0xd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5
Validity
Not Before: Jan 31 01:31:26 2025 GMT
Not After : Jan 15 01:30:03 2026 GMT
Subject: CN=85F487155E03C9E371036C6FAB768198FAF543E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:5b:f2:25:07:0e:c3:11:56:16:5c:74:81:fb:
f7:73:22:a8:c7:74:39:6f:31:32:fc:15:54:f7:0d:
9a:a8:3a:16:cd:2c:67:e9:0d:25:57:ea:d8:da:0e:
06:33:f2:be:82:20:75:7b:37:f5:20:9e:92:e5:8e:
b4:09:74:ee:7c:d5:02:9e:c4:b4:97:c5:c7:c9:6c:
ad:b7:29:6e:80:c8:eb:64:4b:13:6c:1d:92:e0:79:
3b:2a:84:16:7d:12:f2:a5:73:5e:ad:4d:aa:d4:dc:
97:96:d4:49:6b:6d:03:83:08:6d:6a:b2:97:ad:05:
90:6f:e9:11:cd:c0:d1:39:27:03:60:b7:4d:53:54:
13:a7:90:c5:94:d5:28:bb:d8:a5:0e:61:ef:ae:1a:
92:66:60:de:e4:9d:55:23:e1:67:3b:0d:d4:e6:f7:
f3:89:c3:61:35:a6:1b:b4:97:ac:13:10:90:f3:bf:
21:4a:8a:23:a0:b4:78:94:1e:f4:e3:1b:32:26:8b:
62:59:42:00:19:29:a8:61:e1:40:8e:96:4c:06:42:
c2:88:19:f0:ce:37:62:8a:ba:d0:1a:9b:b2:96:d7:
f0:ec:09:bc:a3:95:6e:b8:59:5b:f7:97:eb:9c:90:
b1:d1:3f:3c:98:78:43:5b:d8:a5:86:60:98:81:0b:
bb:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:F4:87:15:5E:03:C9:E3:71:03:6C:6F:AB:76:81:98:FA:F5:43:E3
X509v3 Authority Key Identifier:
keyid:CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/hfSHFV4DyeNxA2xvq3aBmPr1Q-M.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.124.0.0/20
Signature Algorithm: sha256WithRSAEncryption
0b:63:32:4e:48:ec:a6:5c:76:bb:6a:d1:d6:6e:39:51:83:f4:
96:fb:eb:0e:1e:11:50:c6:c4:ec:e1:61:fa:c8:9f:9d:8e:8c:
56:39:31:32:de:5f:40:a3:46:53:e3:ee:b9:bd:ee:90:d3:08:
b3:06:16:7d:47:f5:ad:22:f3:af:47:b5:01:fe:63:1e:c8:ef:
f2:77:7a:d4:5a:d6:02:56:31:a4:f5:05:35:28:56:4d:00:e2:
40:bd:7c:45:97:7d:72:c9:7c:59:1d:52:55:6d:ef:99:c4:81:
34:b7:7a:76:03:23:bc:36:1f:13:5c:55:81:ff:1b:11:91:e3:
93:cf:e5:31:19:fe:e7:91:ad:4a:56:60:d4:1b:16:a8:32:8e:
30:2e:b4:b5:81:13:3e:31:99:a6:e3:ac:ca:f6:7d:bb:ab:84:
e7:b6:d4:7c:57:50:71:25:78:d2:df:3e:12:04:5c:18:7e:8c:
42:8c:c0:2e:74:46:6a:20:e0:40:7a:c7:e1:01:d5:d2:d2:ac:
85:45:27:92:a2:d9:e0:cb:83:ce:47:67:4b:01:d9:cd:e2:22:
aa:35:62:45:a6:3c:fe:42:76:98:b7:48:35:5d:32:a5:21:7e:
92:31:43:8f:8a:74:1c:1b:11:e6:33:46:06:f2:71:51:0c:f2:
f7:99:b6:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 01:12:14 2025 by rpki-client