Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/HlQ7ZbNO1nbFm-FjSQvUWkRwIUs.roa
File: HlQ7ZbNO1nbFm-FjSQvUWkRwIUs.roa (raw, json)
Hash identifier: a/yLKMT2f7L/77G7niP2kIIaj976YhpOWfyyyuaigM0=
Subject key identifier: 1E:54:3B:65:B3:4E:D6:76:C5:9B:E1:63:49:0B:D4:5A:44:70:21:4B
Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Certificate serial: 0400
Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/HlQ7ZbNO1nbFm-FjSQvUWkRwIUs.roa
Signing time: Tue 01 Apr 2025 01:32:12 +0000
ROA not before: Tue 01 Apr 2025 01:32:12 +0000
ROA not after: Sun 15 Mar 2026 01:30:03 +0000
asID: 9605
IP address blocks: 240a:6b:e500::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 22:44:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1024 (0x400)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Validity
Not Before: Apr 1 01:32:12 2025 GMT
Not After : Mar 15 01:30:03 2026 GMT
Subject: CN=1E543B65B34ED676C59BE163490BD45A4470214B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:db:35:6f:a8:c7:6e:c4:c5:ad:d3:f4:8a:91:
50:5e:e9:07:3b:bc:d5:bf:bb:e9:70:c0:93:94:e2:
dd:89:6b:9e:7c:1f:ef:17:f9:27:23:79:f1:67:04:
e1:bb:aa:f7:f2:ae:2b:b3:41:2d:69:84:e7:47:e4:
91:db:68:d1:b4:14:1d:ad:8d:d4:82:02:e5:d7:c3:
5c:04:be:e4:cb:e8:63:90:9e:87:a6:3a:59:89:37:
2f:87:13:03:55:ee:29:2f:ca:63:c9:74:d9:93:6e:
15:c8:a3:0a:63:40:08:5c:1f:28:b3:a2:5d:3d:1d:
d9:7a:b5:d4:1b:51:c4:3b:f3:ae:a4:38:75:c3:3a:
2d:59:40:aa:b4:85:2b:04:b8:df:b6:0c:46:1c:70:
e4:2f:82:61:e7:5c:9e:6e:58:cc:6b:6c:1d:9a:f9:
41:22:c7:47:b0:1c:45:f6:1c:4b:05:9d:01:e2:be:
9e:23:80:de:76:7b:aa:a7:11:1c:9f:27:5d:80:fb:
16:b6:a0:aa:5f:1e:99:68:07:d0:8a:eb:cd:72:1d:
1f:9c:5a:ea:e6:e2:60:13:32:70:b8:51:f9:5e:e8:
7d:93:c6:f0:85:d5:71:01:a4:ad:46:b9:18:84:cf:
fc:6f:a4:a9:63:43:e9:a3:b5:e0:f2:66:8c:0a:2c:
f4:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:54:3B:65:B3:4E:D6:76:C5:9B:E1:63:49:0B:D4:5A:44:70:21:4B
X509v3 Authority Key Identifier:
keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/HlQ7ZbNO1nbFm-FjSQvUWkRwIUs.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
240a:6b:e500::/40
Signature Algorithm: sha256WithRSAEncryption
98:93:e2:52:28:22:b7:be:86:e1:71:88:a8:bf:59:51:ac:65:
e3:bc:3c:a5:77:3a:44:76:62:c6:6e:f5:c8:a0:0c:b1:e8:df:
54:df:de:f4:a3:16:73:bc:82:87:f8:77:a4:71:c4:a5:9a:77:
93:4c:4a:84:35:6c:07:5f:a4:f7:7f:85:4d:c0:03:1d:9e:d4:
5c:7b:16:23:80:b0:41:84:b5:f9:b6:4c:a1:c9:17:d3:95:d8:
ee:a8:be:ec:ec:2f:ad:0b:80:35:2b:4d:60:cf:5d:da:67:46:
b5:ab:0d:39:1c:6d:dd:e3:0e:71:8d:95:bc:00:00:c7:2b:1f:
f8:0b:90:c7:92:de:40:6c:82:77:15:25:7c:44:ea:1a:5c:8f:
fb:e7:1a:30:3e:c6:46:11:e3:b8:d3:1f:d6:b4:65:5c:0e:e2:
98:b7:23:86:8f:e2:35:3c:dc:fc:2b:20:10:97:90:1e:a4:38:
cf:de:2b:44:76:ef:1b:fa:87:b6:ae:d2:54:dc:59:53:b4:21:
d4:a9:69:84:f2:9d:a7:60:a4:7e:c7:65:18:b0:c8:f3:0d:95:
94:a9:9b:68:14:8a:a2:93:2c:d4:2e:63:f9:fd:90:b1:15:f5:
8c:30:d5:bb:2f:14:ae:e2:cc:39:73:f5:71:44:b6:37:19:e8:
95:06:23:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 19:58:05 2025 by rpki-client