Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/MwBq-JJdERscAjf71of-a5corao.roa
File: MwBq-JJdERscAjf71of-a5corao.roa (raw, json)
Hash identifier: Ve9U6Ws23KqQb2vkGozLxCo0H6maYUe+4szkhKiSkKI=
Subject key identifier: 33:00:6A:F8:92:5D:11:1B:1C:02:37:FB:D6:87:FE:6B:97:28:AD:AA
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0D31
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/MwBq-JJdERscAjf71of-a5corao.roa
Signing time: Tue 01 Apr 2025 02:13:53 +0000
ROA not before: Tue 01 Apr 2025 02:13:53 +0000
ROA not after: Sun 15 Mar 2026 01:30:03 +0000
asID: 9605
IP address blocks: 49.96.60.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 22:44:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3377 (0xd31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Apr 1 02:13:53 2025 GMT
Not After : Mar 15 01:30:03 2026 GMT
Subject: CN=33006AF8925D111B1C0237FBD687FE6B9728ADAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8b:4b:f6:7b:22:cd:3e:18:8b:40:34:80:24:
02:3e:14:cc:9d:f3:55:31:e7:f8:26:25:83:9e:c6:
56:a8:07:0b:e8:2c:4c:f5:b8:eb:75:a7:61:46:3d:
1b:dc:95:11:d9:81:fe:de:86:d2:c7:b3:02:18:90:
f0:bb:25:b0:d2:ec:c0:e9:d9:8a:7f:52:67:b9:08:
76:e4:b3:05:09:54:02:b9:24:58:cc:51:e9:d8:ce:
da:ae:d5:8e:d7:20:c2:8b:af:0d:c4:b9:d6:75:63:
d5:61:3e:8e:57:73:b2:0e:45:29:d2:30:aa:38:53:
3c:2e:b5:f0:f6:7a:a2:ff:24:57:7c:d6:d8:ee:4e:
b2:53:62:3a:9f:af:ac:de:60:0d:c7:b6:0a:77:7f:
6e:79:20:c1:56:62:52:c1:87:bc:8c:4f:3c:16:8e:
03:75:09:c0:8f:02:85:da:b6:73:90:75:b5:fa:b2:
b2:13:c5:10:bd:ac:22:12:f3:4d:c3:af:37:4f:1b:
c9:af:af:5c:9e:9c:02:a2:fe:41:ae:0f:5c:22:c4:
18:df:0f:14:0f:85:ac:3f:8b:fe:45:15:da:a6:bf:
64:20:d2:cc:ae:3e:de:42:35:59:53:f2:c9:7c:4a:
72:08:c9:02:b2:d8:c7:24:7e:3a:f5:cc:83:b1:20:
2d:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:00:6A:F8:92:5D:11:1B:1C:02:37:FB:D6:87:FE:6B:97:28:AD:AA
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/MwBq-JJdERscAjf71of-a5corao.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.96.60.0/22
Signature Algorithm: sha256WithRSAEncryption
08:9d:e2:c1:f4:a6:24:ad:cc:91:87:4c:2b:ed:0b:c2:3e:07:
96:11:79:01:32:5d:76:30:f8:ef:62:f1:da:5a:2f:ee:96:53:
4b:49:21:f6:1c:cd:33:84:49:2b:5f:39:43:66:68:ba:bc:7a:
2e:ca:4c:7a:b3:3a:d4:64:cd:72:cc:b8:90:44:bb:7a:22:d4:
11:96:c9:d0:0e:54:c6:e3:a3:eb:ab:17:f6:e5:20:cc:70:ed:
2d:e1:f8:c4:03:49:c1:08:d5:27:79:51:9b:8c:65:31:de:c0:
fd:51:ee:96:d6:7d:5f:ab:95:96:0c:4b:52:ae:57:5e:7a:3d:
0f:86:64:b2:21:fb:f6:c7:ea:ed:7b:40:aa:9a:42:9c:f8:da:
ba:a3:2e:9d:67:13:bd:b9:fe:53:38:1e:e0:44:a4:7a:24:59:
e7:67:1a:93:e6:a9:4a:2f:d5:4c:2c:75:50:99:9b:7b:a8:8e:
f3:1c:4e:97:51:10:dd:dd:4d:71:e8:be:ed:9e:2b:18:a3:53:
64:e6:48:d2:fc:b9:c5:f7:2c:dd:08:d5:ac:03:a3:c7:ff:a8:
e4:de:8a:ab:60:aa:1d:fb:d1:56:72:81:f1:7f:04:7f:bc:79:
2a:8c:b1:e3:14:2d:70:43:68:2b:ff:f8:21:f5:df:fa:3b:e3:
8c:a0:53:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 13:55:29 2025 by rpki-client