Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/ujeHOciS3dZ1QuBJp0NZUNutZgY.roa
File: ujeHOciS3dZ1QuBJp0NZUNutZgY.roa (raw, json)
Hash identifier: kQK7OJZ1Le1nOy1BeFOlH//x6yvV8ZhpxM4DC2F+XUs=
Subject key identifier: BA:37:87:39:C8:92:DD:D6:75:42:E0:49:A7:43:59:50:DB:AD:66:06
Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Certificate serial: 04CD
Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/ujeHOciS3dZ1QuBJp0NZUNutZgY.roa
Signing time: Tue 01 Apr 2025 01:52:58 +0000
ROA not before: Tue 01 Apr 2025 01:52:58 +0000
ROA not after: Sun 15 Mar 2026 01:30:03 +0000
asID: 9605
IP address blocks: 240a:6b:e800::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 22:44:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1229 (0x4cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Validity
Not Before: Apr 1 01:52:58 2025 GMT
Not After : Mar 15 01:30:03 2026 GMT
Subject: CN=BA378739C892DDD67542E049A7435950DBAD6606
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b0:37:da:23:a1:b1:1e:79:6d:c8:78:e2:16:
5a:ae:ab:b8:3f:93:04:51:32:ed:8f:3e:a5:17:c8:
d8:91:75:15:2c:93:99:3b:96:d4:02:2e:09:15:2e:
69:4a:f2:15:57:a0:da:cb:a3:62:9c:eb:de:83:ae:
ec:f2:62:39:5a:97:d0:fd:b6:c0:8b:a7:99:7f:b6:
d9:6f:6c:26:05:d6:e4:ee:1e:27:05:28:40:55:da:
ee:79:bb:ef:dc:35:89:07:46:f4:96:42:2c:72:da:
f4:a3:bb:f3:79:21:d7:12:26:1c:d9:22:25:2d:9a:
8f:e7:78:94:30:d5:e9:7f:79:be:17:73:4e:a3:10:
02:62:69:13:d4:61:b3:b4:66:3e:42:d3:78:10:b8:
da:52:b0:d6:c2:2e:85:fa:22:1c:fa:f9:6b:81:0a:
02:ba:4b:32:75:2a:e3:bf:40:0a:6d:ff:1e:30:6e:
b0:98:40:46:ef:d5:a7:83:49:5f:f4:92:0b:25:dd:
9d:73:db:70:2f:8d:f2:84:f4:6a:9f:fc:62:4e:32:
dd:af:39:fd:cc:94:de:90:48:45:17:cd:fe:b0:3f:
25:3b:d0:d2:a0:69:6f:32:f0:39:8b:2d:66:73:91:
0d:90:94:ba:75:4d:5d:0d:e1:c2:b0:74:54:44:89:
33:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:37:87:39:C8:92:DD:D6:75:42:E0:49:A7:43:59:50:DB:AD:66:06
X509v3 Authority Key Identifier:
keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/ujeHOciS3dZ1QuBJp0NZUNutZgY.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
240a:6b:e800::/40
Signature Algorithm: sha256WithRSAEncryption
21:cc:8f:3c:be:7c:7c:2f:43:3e:24:9d:c3:d5:9d:1b:dc:57:
8e:c3:3c:92:8a:22:78:f6:79:35:e1:90:0e:1e:41:44:fb:83:
9b:6b:2c:53:8d:5a:66:9b:14:9c:fa:f0:ac:60:6c:03:b6:7c:
e6:ec:33:75:98:6b:45:33:6a:eb:0a:82:27:cc:85:20:15:60:
3a:c2:89:29:e1:5e:99:d1:98:4c:d4:0d:c0:a0:6a:4b:c6:40:
af:9e:7e:65:b5:52:2a:04:50:1f:e8:de:d6:12:61:ae:ae:ef:
57:4e:d0:77:ce:08:df:c5:9f:0d:17:5c:c5:5f:ad:a7:62:0f:
3b:64:16:c7:54:6f:4b:81:b4:e9:2a:ac:15:3f:cc:9a:71:9b:
00:8d:f3:90:8c:69:16:43:32:02:9c:8c:62:a6:1f:0d:63:59:
dc:19:ba:b1:91:c5:8f:fd:e3:b9:05:67:b9:c2:39:e2:3b:80:
4e:0f:c7:9f:d3:2b:12:38:0b:92:18:7e:6d:4d:77:fb:ba:2d:
be:da:d3:03:bb:3c:ed:dd:20:8e:b9:ae:7f:e1:92:2c:5e:62:
8a:5f:90:82:26:19:98:f5:34:6b:d7:c0:32:ae:15:fb:c7:19:
2f:e2:cf:fe:00:13:c5:52:00:73:26:3a:0d:64:cb:81:04:1b:
75:7e:ab:01
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgICBM0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy
NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNTA0MDEw
MTUyNThaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEJBMzc4NzM5Qzg5MkRE
RDY3NTQyRTA0OUE3NDM1OTUwREJBRDY2MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCssDfaI6GxHnltyHjiFlquq7g/kwRRMu2PPqUXyNiRdRUsk5k7
ltQCLgkVLmlK8hVXoNrLo2Kc696DruzyYjlal9D9tsCLp5l/ttlvbCYF1uTuHicF
KEBV2u55u+/cNYkHRvSWQixy2vSju/N5IdcSJhzZIiUtmo/neJQw1el/eb4Xc06j
EAJiaRPUYbO0Zj5C03gQuNpSsNbCLoX6Ihz6+WuBCgK6SzJ1KuO/QApt/x4wbrCY
QEbv1aeDSV/0kgsl3Z1z23AvjfKE9Gqf/GJOMt2vOf3MlN6QSEUXzf6wPyU70NKg
aW8y8DmLLWZzkQ2QlLp1TV0N4cKwdFREiTP3AgMBAAGjggIqMIICJjAdBgNVHQ4E
FgQUujeHOciS3dZ1QuBJp0NZUNutZgYwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7
BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g
W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI
KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y
eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt
WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj
BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw
L0E5MUE3MzgxMDAwMC8zMDEyOS91amVIT2NpUzNkWjFRdUJKcDBOWlVOdXRaZ1ku
cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu
anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO
BAIAAjAIAwYAJAoAa+gwDQYJKoZIhvcNAQELBQADggEBACHMjzy+fHwvQz4kncPV
nRvcV47DPJKKInj2eTXhkA4eQUT7g5trLFONWmabFJz68KxgbAO2fObsM3WYa0Uz
ausKgifMhSAVYDrCiSnhXpnRmEzUDcCgakvGQK+efmW1UioEUB/o3tYSYa6u71dO
0HfOCN/Fnw0XXMVfradiDztkFsdUb0uBtOkqrBU/zJpxmwCN85CMaRZDMgKcjGKm
Hw1jWdwZurGRxY/947kFZ7nCOeI7gE4Px5/TKxI4C5IYfm1Nd/u6Lb7a0wO7PO3d
II65rn/hkixeYopfkIImGZj1NGvXwDKuFfvHGS/iz/4AE8VSAHMmOg1ky4EEG3V+
qwE=
-----END CERTIFICATE-----
Generated at Mon Apr 14 22:22:29 2025 by rpki-client