Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/PrdgnM7sVd1Mcxqu5H1AaJ9MyAY.roa
File: PrdgnM7sVd1Mcxqu5H1AaJ9MyAY.roa (raw, json)
Hash identifier: GObakb/HVT52RjeqR1RwWNEoTmlQpbJlGqQ9nV5oqQQ=
Subject key identifier: 3E:B7:60:9C:CE:EC:55:DD:4C:73:1A:AE:E4:7D:40:68:9F:4C:C8:06
Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138
Certificate serial: BC
Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/PrdgnM7sVd1Mcxqu5H1AaJ9MyAY.roa
Signing time: Thu 05 Dec 2024 16:47:11 +0000
ROA not before: Thu 05 Dec 2024 16:47:11 +0000
ROA not after: Sat 15 Nov 2025 01:30:03 +0000
asID: 2914
IP address blocks: 27.50.96.0/19 maxlen: 19
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.mft
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 22:44:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188 (0xbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138
Validity
Not Before: Dec 5 16:47:11 2024 GMT
Not After : Nov 15 01:30:03 2025 GMT
Subject: CN=3EB7609CCEEC55DD4C731AAEE47D40689F4CC806
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:51:24:24:0c:f8:ac:f2:07:1c:d3:54:cf:da:
fc:10:37:d4:e4:ba:df:fc:e9:8c:75:07:e6:41:14:
18:c3:7f:b4:31:bd:5c:9d:af:3c:eb:a0:68:1b:75:
1a:c3:9b:a6:96:b9:a2:09:6a:72:2d:15:80:ae:6d:
25:1f:ed:98:7e:b5:68:7b:6f:9e:9e:98:70:90:17:
2d:9d:a3:69:3b:e9:69:f1:5e:05:35:64:56:59:5f:
16:a7:82:37:2a:f8:da:ca:3b:ac:cf:c0:e7:33:30:
b0:59:54:7d:a5:51:92:26:8b:33:3c:d1:77:20:36:
ae:3a:73:fd:45:c1:c2:65:01:ef:58:8a:92:3c:cc:
a7:99:b3:f0:03:29:1d:64:04:63:9f:ab:34:9d:5f:
55:2a:8f:05:1e:41:b2:68:f9:ad:34:2c:ac:2f:55:
03:ce:0f:29:dc:7d:57:d0:43:b7:4a:bf:29:7e:02:
5e:fe:fa:9e:b2:bc:ce:4c:e1:2c:1b:b9:34:3e:b2:
5c:5e:c4:82:0a:0f:22:26:29:15:03:2b:c3:f0:9a:
25:c1:95:ba:3a:be:ad:b8:b1:f3:d0:e7:36:23:d9:
1b:20:e4:8e:54:29:bb:44:90:73:02:a7:a9:3e:d0:
58:ab:5b:d2:4b:04:48:fb:88:e6:81:21:19:9a:0a:
f7:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:B7:60:9C:CE:EC:55:DD:4C:73:1A:AE:E4:7D:40:68:9F:4C:C8:06
X509v3 Authority Key Identifier:
keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/PrdgnM7sVd1Mcxqu5H1AaJ9MyAY.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.50.96.0/19
Signature Algorithm: sha256WithRSAEncryption
5c:41:1f:03:89:43:b8:14:d6:15:5d:36:7e:92:ca:3d:4d:56:
0e:db:e0:de:4a:ec:70:9a:fa:39:98:0d:2c:27:4f:04:fb:a3:
cf:6f:d3:c5:b8:cd:cd:c1:a3:08:cc:a2:60:75:dd:48:74:f1:
2d:96:70:eb:3b:53:91:63:86:a5:84:f0:7c:cf:3c:94:de:17:
5f:6a:32:77:e2:24:77:d8:eb:a0:d5:84:2f:f2:e1:75:eb:05:
b2:b6:ed:27:ff:75:89:9f:f1:be:40:de:3c:d7:c9:1a:85:84:
62:d4:38:e2:cb:71:40:d6:54:a2:6c:08:0d:2d:26:2a:66:32:
8b:7c:10:c6:c7:6c:bf:ef:5e:f0:cb:cb:73:71:32:6c:fb:85:
b9:0b:c6:c5:22:3e:bd:23:c8:9b:bd:4f:86:5c:15:46:0b:a7:
7a:8e:e7:40:b4:f4:12:93:07:eb:34:d9:0c:a9:41:ef:da:ac:
9e:d3:0b:e5:cd:96:f6:ce:77:31:dd:5d:e2:24:85:ef:ff:d2:
44:97:d0:a5:f9:87:f6:46:b8:51:2d:fa:1b:af:ee:85:67:ed:
5a:d0:f4:e8:83:07:1e:37:b2:0e:e1:89:fb:c0:22:9a:e5:09:
f3:ca:fd:3b:a5:80:23:7f:62:ca:f9:da:19:df:f7:2f:78:d8:
e8:c1:6d:bd
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgICALwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEQ0
NkRERjg4QTQ2RTRFQzJEOUE5QkFCNUZGMTMwNUZEMDU3RjEzODAeFw0yNDEyMDUx
NjQ3MTFaFw0yNTExMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDNFQjc2MDlDQ0VFQzU1
REQ0QzczMUFBRUU0N0Q0MDY4OUY0Q0M4MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDsUSQkDPis8gcc01TP2vwQN9Tkut/86Yx1B+ZBFBjDf7QxvVyd
rzzroGgbdRrDm6aWuaIJanItFYCubSUf7Zh+tWh7b56emHCQFy2do2k76WnxXgU1
ZFZZXxangjcq+NrKO6zPwOczMLBZVH2lUZImizM80XcgNq46c/1FwcJlAe9YipI8
zKeZs/ADKR1kBGOfqzSdX1UqjwUeQbJo+a00LKwvVQPODyncfVfQQ7dKvyl+Al7+
+p6yvM5M4SwbuTQ+slxexIIKDyImKRUDK8PwmiXBlbo6vq24sfPQ5zYj2Rsg5I5U
KbtEkHMCp6k+0FirW9JLBEj7iOaBIRmaCvcVAgMBAAGjggIoMIICJDAdBgNVHQ4E
FgQUPrdgnM7sVd1Mcxqu5H1AaJ9MyAYwHwYDVR0jBBgwFoAUjUbd+IpG5Owtmpur
X/EwX9BX8TgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g
W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzIwMTI4L2pVYmQtSXBHNU93dG1wdXJYX0V3WDlCWDhUZy5jcmwwbQYI
KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y
eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2pVYmQtSXBHNU93dG1wdXJYX0V3
WDlCWDhUZy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj
BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw
L0E5MUE3MzgxMDAwMC8yMDEyOC9QcmRnbk03c1ZkMU1jeHF1NUgxQWFKOU15QVku
cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu
anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM
BAIAATAGAwQFGzJgMA0GCSqGSIb3DQEBCwUAA4IBAQBcQR8DiUO4FNYVXTZ+kso9
TVYO2+DeSuxwmvo5mA0sJ08E+6PPb9PFuM3NwaMIzKJgdd1IdPEtlnDrO1ORY4al
hPB8zzyU3hdfajJ34iR32Oug1YQv8uF16wWytu0n/3WJn/G+QN4818kahYRi1Dji
y3FA1lSibAgNLSYqZjKLfBDGx2y/717wy8tzcTJs+4W5C8bFIj69I8ibvU+GXBVG
C6d6judAtPQSkwfrNNkMqUHv2qye0wvlzZb2zncx3V3iJIXv/9JEl9Cl+Yf2RrhR
Lfobr+6FZ+1a0PTogwceN7IO4Yn7wCKa5Qnzyv07pYAjf2LK+doZ3/cveNjowW29
-----END CERTIFICATE-----
Generated at Mon Apr 14 16:59:07 2025 by rpki-client