Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/vEc_zp-OmNfJy5pVSIeYnOcLA7g.roa
File: vEc_zp-OmNfJy5pVSIeYnOcLA7g.roa (raw, json)
Hash identifier: aAOzAXg7eoKasrKgEY9ru9z46hLwOhQB1v90lVRWCb0=
Subject key identifier: BC:47:3F:CE:9F:8E:98:D7:C9:CB:9A:55:48:87:98:9C:E7:0B:03:B8
Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Certificate serial: 0455
Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/vEc_zp-OmNfJy5pVSIeYnOcLA7g.roa
Signing time: Tue 01 Apr 2025 01:42:23 +0000
ROA not before: Tue 01 Apr 2025 01:42:23 +0000
ROA not after: Sun 15 Mar 2026 01:30:03 +0000
asID: 9605
IP address blocks: 240a:6b:3900::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 22:44:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1109 (0x455)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Validity
Not Before: Apr 1 01:42:23 2025 GMT
Not After : Mar 15 01:30:03 2026 GMT
Subject: CN=BC473FCE9F8E98D7C9CB9A554887989CE70B03B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b3:1a:ff:7a:db:75:e9:e6:25:64:71:ff:6f:
64:f2:1d:64:d2:bc:33:7a:94:53:92:0c:3e:25:64:
7d:7b:8d:4d:00:95:d4:71:45:b2:58:31:ce:0b:08:
74:a4:e0:7c:cf:e3:f3:13:fc:9a:c1:85:b5:1a:9d:
4f:ac:76:c0:6a:59:73:3a:70:77:64:89:bf:2e:b7:
2f:5d:02:85:fd:04:52:6d:ec:b8:03:18:20:28:b7:
12:67:5e:53:79:46:98:22:6b:66:23:e6:b1:f3:31:
eb:1c:34:92:cd:0a:2d:38:02:71:c8:47:71:20:85:
78:a8:24:9b:34:2a:ae:8d:6f:75:d8:c4:9c:52:9c:
b3:59:f2:9e:57:a8:e1:44:33:05:88:ca:27:87:ac:
3b:49:20:74:68:60:75:c5:fc:c2:12:67:c2:aa:b5:
e6:a9:74:e1:6b:a1:b9:01:8d:49:7e:2d:8c:39:d9:
77:df:50:b5:a0:56:d6:ce:41:80:bf:33:66:6b:b1:
b8:fc:50:fe:2d:c2:48:24:f7:e8:7c:ee:4e:7a:50:
19:09:2f:00:74:d2:20:2f:c4:be:65:72:91:0e:43:
5f:85:78:b8:6d:7d:6e:43:08:82:b1:96:87:92:bd:
8f:42:8a:3a:8a:b6:3a:3b:7c:33:66:91:bd:2f:6e:
d5:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:47:3F:CE:9F:8E:98:D7:C9:CB:9A:55:48:87:98:9C:E7:0B:03:B8
X509v3 Authority Key Identifier:
keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/vEc_zp-OmNfJy5pVSIeYnOcLA7g.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
240a:6b:3900::/40
Signature Algorithm: sha256WithRSAEncryption
c3:52:08:a5:80:2a:18:2d:12:81:02:33:b0:38:3d:26:d0:0e:
bf:b6:dc:11:cc:1d:4e:31:c9:4b:95:40:45:05:19:e6:cc:5c:
54:c3:20:c2:cb:b0:14:06:c6:ea:58:2a:71:ad:81:95:ea:b0:
d3:01:84:40:1d:92:e2:f6:ae:70:bb:9e:5f:ca:fa:dc:8b:f9:
76:1e:86:4a:40:69:f9:1c:37:00:d5:cf:54:5d:d3:76:0d:13:
d7:c9:ce:1b:a5:83:12:74:83:a5:d0:b0:73:f8:b2:b2:ac:94:
32:33:d4:82:2b:38:4b:cb:9e:e9:b7:14:95:5b:2d:50:a0:6a:
28:1c:91:d6:e8:e4:d9:40:44:61:cb:c0:3f:35:b2:72:c8:03:
b3:54:2a:59:d0:f4:19:c5:2e:d7:88:b1:3f:f2:e6:fa:ec:83:
1b:23:fa:34:1c:63:32:83:f0:00:ec:67:8e:08:f5:50:9f:90:
18:2d:72:5f:b3:3d:bd:9b:1c:31:03:d0:e1:ef:66:aa:71:2e:
0b:24:f3:d7:36:b8:ff:51:f3:76:53:96:58:8a:96:aa:af:1c:
cc:d1:a2:7d:5f:08:4c:81:1a:48:58:9a:d6:9b:92:e8:ec:5f:
9e:0c:a9:b7:a2:39:08:f2:8b:57:4c:e5:ab:c3:2c:7d:31:cd:
08:3c:d7:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 22:07:20 2025 by rpki-client