Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30423/B5KUPmSpMDA2h9jhmXkhNXir9Pk.roa
File: B5KUPmSpMDA2h9jhmXkhNXir9Pk.roa (raw, json)
Hash identifier: pmeM1U0qdafsyMzcRKjSIQYRVv9T3X1NXd1Hr5aLhNk=
Subject key identifier: 07:92:94:3E:64:A9:30:30:36:87:D8:E1:99:79:21:35:78:AB:F4:F9
Certificate issuer: /CN=B910BD9437967C7AFDD374E1EA6EBED7FA6F96B5
Certificate serial: 3A
Authority key identifier: B9:10:BD:94:37:96:7C:7A:FD:D3:74:E1:EA:6E:BE:D7:FA:6F:96:B5
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uRC9lDeWfHr903Th6m6-1_pvlrU.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/B5KUPmSpMDA2h9jhmXkhNXir9Pk.roa
Signing time: Tue 01 Apr 2025 01:30:46 +0000
ROA not before: Tue 01 Apr 2025 01:30:46 +0000
ROA not after: Sun 15 Mar 2026 01:30:03 +0000
asID: 151381
IP address blocks: 2401:d20:a::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/uRC9lDeWfHr903Th6m6-1_pvlrU.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/uRC9lDeWfHr903Th6m6-1_pvlrU.mft
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uRC9lDeWfHr903Th6m6-1_pvlrU.cer
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 22:44:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58 (0x3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B910BD9437967C7AFDD374E1EA6EBED7FA6F96B5
Validity
Not Before: Apr 1 01:30:46 2025 GMT
Not After : Mar 15 01:30:03 2026 GMT
Subject: CN=0792943E64A930303687D8E19979213578ABF4F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:80:58:8a:34:ec:09:50:f9:6f:50:16:a6:14:
05:aa:4f:51:48:3a:c0:62:08:74:d5:88:79:52:9c:
8b:1b:65:90:a2:d2:34:32:95:8d:a9:99:f0:0c:5a:
75:43:d5:56:36:b2:ba:b1:38:31:43:d4:13:82:c3:
f5:0d:ca:e3:ae:8d:3b:73:39:e4:d1:53:eb:2d:f2:
eb:b5:bf:88:14:30:54:a6:79:c6:8a:f8:68:a8:58:
cf:22:8d:ad:9a:26:5b:86:b1:a1:10:23:63:56:b2:
3b:0f:03:f7:09:d1:10:04:08:e4:06:3f:dc:59:b8:
72:8f:50:5f:7a:cd:31:22:c6:13:35:2f:de:77:56:
58:31:74:3b:34:c7:fa:ed:67:52:77:0b:39:82:7d:
c7:1d:cf:56:dc:14:49:c2:ee:bf:36:f6:8d:48:28:
35:45:eb:af:35:bc:70:62:4b:ea:9e:1d:54:ee:65:
54:0d:fd:bc:d8:9e:09:d0:43:0d:be:5f:fc:12:5a:
fd:58:32:eb:8b:dc:29:77:81:1e:fc:48:17:d7:89:
b0:6a:57:72:3d:d4:96:3b:f4:72:76:41:d6:e3:e7:
f8:ec:22:0e:e7:4d:53:db:7d:3f:ab:8b:7d:36:45:
98:78:9c:71:45:fc:d1:db:c3:5d:d8:0e:22:93:22:
0b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:92:94:3E:64:A9:30:30:36:87:D8:E1:99:79:21:35:78:AB:F4:F9
X509v3 Authority Key Identifier:
keyid:B9:10:BD:94:37:96:7C:7A:FD:D3:74:E1:EA:6E:BE:D7:FA:6F:96:B5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/uRC9lDeWfHr903Th6m6-1_pvlrU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uRC9lDeWfHr903Th6m6-1_pvlrU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/B5KUPmSpMDA2h9jhmXkhNXir9Pk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:d20:a::/48
Signature Algorithm: sha256WithRSAEncryption
67:61:eb:75:a7:7c:2c:96:c3:bf:f4:31:16:44:45:3a:b9:84:
c4:f9:e5:be:40:9c:17:96:cf:78:61:68:d0:05:c8:fb:1a:d2:
2e:4b:14:96:12:2e:73:f1:f5:9b:98:e6:f0:1f:8f:c1:11:76:
b3:7f:f2:f6:df:de:0d:be:7b:c2:d1:08:f6:03:89:06:1c:c5:
1a:69:0a:60:51:87:24:29:14:b8:82:ad:e0:ad:8e:e0:93:af:
12:79:74:98:da:c8:36:31:79:8c:6f:b0:2c:49:8e:ac:70:c8:
01:81:c2:be:54:30:32:47:4d:23:0d:d2:5c:c6:6e:f0:26:5c:
b4:3f:71:4f:dc:c2:85:aa:96:63:3a:85:64:7d:59:5a:60:19:
cd:b5:f5:8b:6e:3e:41:2e:86:eb:99:38:93:9a:07:ca:63:29:
09:6b:c5:4a:dc:25:16:cd:6c:52:eb:7d:a0:e9:9f:8b:6d:08:
71:94:ce:99:17:ba:f3:db:d0:f7:7a:e5:2c:45:a6:11:ec:49:
87:2b:2d:69:bf:25:9d:85:7e:29:20:6c:42:83:9d:ca:6f:7e:
8d:8a:28:39:bb:0e:e3:c4:2c:54:96:a2:a5:eb:03:85:d9:b7:
f0:67:39:59:94:41:e6:dc:66:41:2b:3c:b9:a5:c9:16:c8:86:
6f:0d:74:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 05:10:53 2025 by rpki-client