Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/MkuBnKSEOnIMJx_lIJZ6EolLvJs.roa
File: MkuBnKSEOnIMJx_lIJZ6EolLvJs.roa (raw, json)
Hash identifier: vJPHOcVj2lxg3jKrS1Wq8sSaFng7zkcmqqBooZzNElA=
Subject key identifier: 32:4B:81:9C:A4:84:3A:72:0C:27:1F:E5:20:96:7A:12:89:4B:BC:9B
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0E1E
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/MkuBnKSEOnIMJx_lIJZ6EolLvJs.roa
Signing time: Tue 01 Apr 2025 02:31:35 +0000
ROA not before: Tue 01 Apr 2025 02:31:35 +0000
ROA not after: Sun 15 Mar 2026 01:30:03 +0000
asID: 9605
IP address blocks: 49.98.23.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 22:44:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3614 (0xe1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Apr 1 02:31:35 2025 GMT
Not After : Mar 15 01:30:03 2026 GMT
Subject: CN=324B819CA4843A720C271FE520967A12894BBC9B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:53:e2:2e:39:14:2a:8d:5e:29:74:19:5d:1a:
de:fb:3f:09:ce:36:91:ca:c6:a5:9c:cb:7f:5c:ed:
1d:9c:69:3c:7d:d3:92:1c:1c:47:82:37:5f:85:a6:
8c:ce:d1:d0:99:02:54:b6:cf:fc:d0:92:ad:dc:f6:
bf:09:0d:6e:51:43:5b:54:5d:a8:f1:37:c8:ec:02:
91:3c:32:0a:f4:f2:94:8b:ee:b2:4d:7c:7e:18:23:
aa:b8:78:35:12:e0:07:e3:aa:19:14:20:9d:52:63:
a3:56:78:d1:aa:0b:01:10:c3:df:82:9d:98:da:2d:
58:4d:40:ba:01:32:96:c2:e6:86:22:48:12:c1:cf:
94:b4:fc:42:85:44:17:22:59:b1:22:23:59:61:fb:
d8:e9:b9:90:a7:8d:74:51:8d:f2:be:a4:c0:5c:cf:
3d:2a:dd:57:f3:b0:6b:11:6c:17:b7:4b:ad:27:1d:
87:c1:fc:c7:38:7d:a8:05:56:1c:3d:b1:64:d9:1c:
69:c6:dd:a5:15:bd:52:29:0f:66:87:ee:50:6e:3e:
fd:e9:0e:aa:ae:0b:71:4e:d6:77:b2:f4:0b:8c:30:
01:31:e4:93:9d:49:8c:e0:2b:05:32:ae:68:ab:f6:
47:f3:71:f5:8f:3e:33:e2:f0:4e:57:30:3a:51:07:
18:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:4B:81:9C:A4:84:3A:72:0C:27:1F:E5:20:96:7A:12:89:4B:BC:9B
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/MkuBnKSEOnIMJx_lIJZ6EolLvJs.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.23.0/24
Signature Algorithm: sha256WithRSAEncryption
60:ef:69:ef:b1:4b:e3:95:97:bc:81:96:ea:80:d7:92:59:88:
d7:f7:7f:0d:86:23:6a:5b:f6:9a:b4:5c:af:2e:ce:df:2c:a6:
7f:19:db:28:f2:91:b8:7d:a5:a9:63:00:7c:b6:eb:90:65:7e:
01:21:00:ea:47:5f:40:29:7e:d6:6d:92:d2:1c:ff:2c:aa:0e:
98:7e:a1:a8:d6:83:9d:28:e4:b6:92:d5:a8:4f:fe:ca:14:e9:
3c:b6:0d:70:8a:fe:20:10:40:a1:df:a5:6c:2c:78:c0:ff:3b:
bc:93:ae:96:66:8a:54:4d:b3:27:b7:ab:77:51:56:f7:0a:43:
0d:09:49:4f:2e:34:17:03:4c:2a:10:6c:2c:ee:13:7b:98:d4:
01:e4:69:0c:fd:c2:9a:0c:5a:3e:81:6f:d1:1f:04:77:dc:14:
09:42:d6:f6:03:e6:e6:40:38:00:ad:c6:e3:2a:af:1c:8d:3d:
54:2d:23:cc:81:35:be:e5:5c:1d:29:86:d8:f3:97:86:be:c4:
c5:ee:1e:2e:40:df:72:0a:aa:51:5c:46:7e:30:b7:5b:5a:59:
b8:d0:bb:cb:01:97:53:4e:3f:77:be:da:a6:66:44:35:d2:b3:
52:b4:b1:93:69:6e:b3:9b:da:9a:b4:79:48:e2:f4:c7:b2:f2:
e4:f8:48:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 04:06:40 2025 by rpki-client