Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/s8zCK4XYQYqoyd3IaC2gSmtIn0k.roa
File: s8zCK4XYQYqoyd3IaC2gSmtIn0k.roa (raw, json)
Hash identifier: 9PaNA8uL5MmvgAFYsUwUuU4Yhg+xBigBHjOaOYC7DHc=
Subject key identifier: B3:CC:C2:2B:85:D8:41:8A:A8:C9:DD:C8:68:2D:A0:4A:6B:48:9F:49
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0E22
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/s8zCK4XYQYqoyd3IaC2gSmtIn0k.roa
Signing time: Tue 01 Apr 2025 02:31:38 +0000
ROA not before: Tue 01 Apr 2025 02:31:38 +0000
ROA not after: Sun 15 Mar 2026 01:30:03 +0000
asID: 9605
IP address blocks: 49.98.140.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 22:44:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3618 (0xe22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Apr 1 02:31:38 2025 GMT
Not After : Mar 15 01:30:03 2026 GMT
Subject: CN=B3CCC22B85D8418AA8C9DDC8682DA04A6B489F49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:bc:93:3a:7d:c8:08:38:b7:4a:06:cd:f4:fc:
61:f7:92:b6:34:7d:eb:f1:70:0f:73:11:41:88:1a:
97:d1:8b:cb:2d:79:1b:05:dc:d2:89:34:69:14:8b:
95:d8:01:0a:da:5c:3d:03:34:a7:7d:b9:82:fe:d2:
8b:fd:87:04:4e:45:99:e8:54:00:3d:3a:73:86:52:
93:2f:c8:f5:6e:13:c2:8e:5f:46:0a:b5:90:04:90:
59:61:16:a6:63:66:98:3a:04:bb:da:5f:80:2b:49:
bf:4b:ad:db:1e:88:24:2f:f8:dd:9f:c8:79:2f:c4:
3d:86:de:64:e7:77:0a:74:48:1a:1b:f1:c5:a1:16:
03:8a:7f:c4:77:37:41:6d:ff:04:59:10:88:41:a6:
d5:3c:6b:1f:6d:78:ee:f5:37:ba:e1:3a:03:4a:8b:
c6:cb:ad:5c:0d:34:8c:55:4e:1b:cd:c9:86:93:ba:
03:93:6c:b3:c6:72:1f:49:c1:a2:cf:bb:5a:0e:c3:
f8:14:7a:46:cf:17:ad:55:36:b9:82:e4:74:bf:d5:
e9:4f:84:b9:29:71:dc:bd:17:7d:dd:70:a5:a4:83:
d6:5d:48:31:96:dc:06:f0:df:f2:f2:ab:83:64:26:
19:f8:b4:5d:63:55:c5:13:e9:56:a3:51:25:eb:f2:
22:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:CC:C2:2B:85:D8:41:8A:A8:C9:DD:C8:68:2D:A0:4A:6B:48:9F:49
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/s8zCK4XYQYqoyd3IaC2gSmtIn0k.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.140.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:cc:c0:64:c3:6c:e2:5c:f2:e5:af:2b:0f:16:2b:6b:69:37:
12:c4:65:47:6f:34:90:70:ef:ee:58:a6:f0:86:16:70:41:0f:
41:ca:55:cb:1f:a1:0e:23:f6:e1:73:27:ea:a1:5a:67:0a:a9:
ff:39:d3:55:a7:26:b2:c4:b9:80:cb:e3:f5:6b:34:b9:f9:a8:
b2:df:56:9b:69:ec:d9:a1:84:98:33:10:78:ce:e6:1d:cc:02:
80:d9:ae:4e:05:0f:c0:25:19:ac:99:4e:7d:7a:c2:4f:d5:09:
87:52:a9:d2:57:a2:d3:f4:35:d3:d1:4e:3e:68:5c:94:f1:bd:
1f:7b:21:01:d4:c3:aa:13:53:4f:00:cc:22:c1:c2:ea:34:35:
90:d4:21:15:e7:51:73:33:67:a8:bd:6f:01:e4:c3:9d:40:df:
95:68:74:d6:ed:af:b3:ed:43:5a:d3:fa:2b:ad:9c:94:56:c6:
5e:5d:50:53:d7:05:4b:3c:e4:6a:3b:59:bf:15:f8:2d:c1:e8:
0b:23:9b:54:ed:e2:21:58:17:d5:80:b0:ae:63:bb:44:28:ca:
e1:d9:82:50:9c:bd:fc:4c:97:70:bc:41:b5:8b:74:20:ec:23:
e3:ed:d5:0f:2f:82:3f:34:85:b7:d7:4f:36:b5:6f:7a:ab:84:
b2:40:1a:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 02:37:03 2025 by rpki-client