Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1937/aXBJ9MW0sRrLmrzdGXKGgQeF6QI.roa
File: aXBJ9MW0sRrLmrzdGXKGgQeF6QI.roa (raw, json)
Hash identifier: u1DoyiQSFcZd4DRU3/9KZFlzxiDy3TaGdYesRQk4YkA=
Subject key identifier: 69:70:49:F4:C5:B4:B1:1A:CB:9A:BC:DD:19:72:86:81:07:85:E9:02
Certificate issuer: /CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D
Certificate serial: 30
Authority key identifier: 71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/aXBJ9MW0sRrLmrzdGXKGgQeF6QI.roa
Signing time: Sat 01 Mar 2025 01:29:30 +0000
ROA not before: Sat 01 Mar 2025 01:29:30 +0000
ROA not after: Sun 15 Feb 2026 01:30:03 +0000
asID: 18071
IP address blocks: 132.182.0.0/16 maxlen: 16
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.mft
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 18:14:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48 (0x30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D
Validity
Not Before: Mar 1 01:29:30 2025 GMT
Not After : Feb 15 01:30:03 2026 GMT
Subject: CN=697049F4C5B4B11ACB9ABCDD197286810785E902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f6:84:ce:68:7b:6c:68:2b:7b:14:f8:d0:54:
4a:eb:d7:62:39:01:30:10:d9:05:cc:44:8d:cf:5e:
a4:f7:d1:cd:99:de:e2:b3:7b:12:8f:9b:0e:08:09:
08:9a:4d:ff:71:b5:9e:da:c2:d8:2d:02:53:9c:4c:
b9:f2:ac:2a:ad:7e:b6:c4:dc:04:6c:88:0a:bb:f5:
78:4f:d2:f4:d5:44:b2:e7:3a:1f:0a:88:ac:ab:61:
fc:bd:c0:94:0a:86:28:62:d0:99:35:55:2a:77:19:
90:b3:2b:b5:4e:40:15:5c:e1:ee:83:a3:ee:f8:bc:
9f:ea:70:7a:36:ff:15:9c:09:9d:e5:99:91:ca:49:
ca:50:5d:72:18:04:24:8f:af:8a:8f:ba:f4:d2:45:
51:01:6f:c6:4e:6d:ed:c5:9d:a1:d2:2a:2e:af:2a:
e7:7d:8c:be:ba:62:06:12:d2:59:d5:48:28:31:cf:
1e:e8:b0:ae:3a:f8:94:09:dd:64:89:e8:d0:e1:dd:
fa:03:0e:0e:17:cd:4f:1b:e8:2d:4e:66:90:2f:ea:
5f:e4:9a:14:84:02:e8:1b:4f:96:d7:e4:ee:c9:7a:
58:f1:89:f5:1c:a2:7a:e6:5e:ff:49:70:20:ba:64:
a3:39:d7:6d:84:48:3b:34:79:c3:3f:f1:cd:2e:eb:
5c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:70:49:F4:C5:B4:B1:1A:CB:9A:BC:DD:19:72:86:81:07:85:E9:02
X509v3 Authority Key Identifier:
keyid:71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/aXBJ9MW0sRrLmrzdGXKGgQeF6QI.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
132.182.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6d:af:92:d3:08:56:8e:31:76:b4:fb:6d:38:4f:56:92:6a:6a:
a9:08:dd:e5:32:26:3f:ba:1d:5e:66:1e:84:3e:aa:e8:e6:d9:
08:2a:86:e4:18:06:52:14:f1:4d:5b:1b:ca:d8:b2:af:1d:7b:
37:c1:1b:f4:03:dd:cf:af:96:9c:f4:f2:69:4d:62:4a:2f:c4:
47:f5:9d:1f:a7:22:28:8d:53:96:e7:b1:10:15:52:ae:01:8a:
11:92:22:0a:ac:99:98:24:a0:a1:77:3f:dc:de:5c:e2:15:99:
40:f2:4b:fa:40:04:a5:9f:87:9f:79:5e:e5:f5:5b:3d:77:cc:
f4:cd:8f:5b:19:e8:fd:8c:71:0b:fe:0d:08:62:a7:cd:d5:46:
94:27:8b:de:5c:47:bf:9c:92:29:27:63:c5:cb:5c:b8:f3:1d:
eb:a9:f0:bf:83:f1:81:c4:7a:52:67:cf:5e:a4:28:40:3b:a2:
10:bd:94:ed:00:0b:19:8b:92:9b:43:05:22:05:4c:44:58:ae:
a4:63:3d:58:54:7a:10:52:60:64:c3:63:cb:cf:6e:ff:22:ac:
c6:12:89:57:b1:9d:70:64:92:d1:9f:b9:72:a3:02:c2:89:b6:
0c:3a:c1:81:7c:a0:07:c9:34:c1:5b:ad:53:97:a5:68:c8:59:
18:e0:62:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 02:46:55 2025 by rpki-client