Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/aYcYrJQWuLNQASe8YzL6fZ2IIEg.roa
File: aYcYrJQWuLNQASe8YzL6fZ2IIEg.roa (raw, json)
Hash identifier: rhqtJP9/S+aNmKG0eFlsIDZDkmwzQJS3FdpTOCFygKw=
Subject key identifier: 69:87:18:AC:94:16:B8:B3:50:01:27:BC:63:32:FA:7D:9D:88:20:48
Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Certificate serial: 0430
Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/aYcYrJQWuLNQASe8YzL6fZ2IIEg.roa
Signing time: Tue 01 Apr 2025 01:39:24 +0000
ROA not before: Tue 01 Apr 2025 01:39:24 +0000
ROA not after: Sun 15 Mar 2026 01:30:03 +0000
asID: 9605
IP address blocks: 240a:6b:a900::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 18:14:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1072 (0x430)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Validity
Not Before: Apr 1 01:39:24 2025 GMT
Not After : Mar 15 01:30:03 2026 GMT
Subject: CN=698718AC9416B8B3500127BC6332FA7D9D882048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:81:44:24:92:d4:43:ff:c5:8b:8b:2c:04:e6:
69:a7:78:8a:73:31:84:73:c5:3c:54:b4:8a:04:22:
1b:81:05:6e:e3:2a:af:3b:b9:fe:e7:be:c9:43:b8:
7a:b0:ba:11:33:cc:92:6d:da:cf:ad:bb:15:c1:47:
dd:2b:42:bc:37:07:68:75:61:f2:f0:db:a8:a1:fc:
bb:35:11:42:85:16:fb:0e:25:16:ef:da:d2:12:16:
80:19:10:d2:aa:5f:30:aa:80:09:2c:3f:b6:39:6a:
f0:c5:c8:bb:6c:07:40:e7:ad:39:95:28:f8:c3:f0:
63:76:4e:dd:7c:15:28:ad:a2:d2:67:6a:0c:32:86:
a5:b4:16:45:b4:ed:f5:a4:9c:5f:b2:aa:e1:47:81:
d3:34:db:75:fb:a9:90:fb:78:d2:e9:f9:65:fb:33:
e7:c0:d0:e3:78:6b:3e:de:d5:16:4d:a2:4f:b8:3a:
a8:87:2d:26:8a:24:ce:2d:77:21:a3:e2:ff:92:de:
ed:a1:f2:f3:d7:11:66:1f:c8:d1:f1:97:eb:93:80:
38:65:a5:4a:7a:1c:13:58:1b:1d:4d:e4:e0:c0:68:
e0:b9:5c:00:70:11:f2:1b:9c:78:f6:cd:59:68:a7:
b3:4b:da:2c:fc:ab:54:85:79:41:f4:5d:d2:70:fb:
43:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:87:18:AC:94:16:B8:B3:50:01:27:BC:63:32:FA:7D:9D:88:20:48
X509v3 Authority Key Identifier:
keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/aYcYrJQWuLNQASe8YzL6fZ2IIEg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
240a:6b:a900::/40
Signature Algorithm: sha256WithRSAEncryption
47:66:b2:93:a8:bd:d9:31:2c:0d:73:eb:3a:90:86:06:fe:87:
d6:bd:35:a2:a1:63:c8:de:28:d5:14:46:b1:6c:fc:35:53:86:
04:33:5a:31:66:0c:75:c6:fd:36:fc:e4:af:44:dc:1a:36:12:
1b:29:67:72:54:5f:3b:b0:00:1d:31:41:e7:78:57:ed:08:7c:
05:b1:da:09:50:1c:90:c3:95:90:94:10:95:07:f5:7a:9f:01:
a7:ec:34:c6:96:69:ae:bf:59:b7:c0:ce:55:2c:72:ca:30:88:
76:98:2d:34:71:5c:4e:e2:b0:7f:71:ec:df:7a:ad:bb:74:08:
d4:08:24:91:97:72:2f:6b:d5:f4:a0:24:92:04:9d:10:3d:ab:
c7:f0:08:21:d2:a5:5a:9b:f5:71:ae:5e:e4:65:12:09:b2:42:
5b:7e:ce:6b:e4:bf:2e:82:cc:be:4e:53:35:86:8d:5a:c0:66:
7f:61:52:3f:92:80:92:90:f6:d6:ee:6d:8f:8a:cc:ab:15:d0:
68:1c:3f:e0:f2:91:8b:ba:a1:2b:fd:09:12:50:d5:53:fb:47:
f8:87:a9:11:53:db:50:1a:73:ef:0e:55:ba:a2:94:ce:ec:89:
3d:63:e6:59:1d:e7:75:d0:15:56:21:c0:14:9e:fe:0a:80:15:
b3:12:96:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 21:18:52 2025 by rpki-client