Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/33/H_2Z0rQ4lFVS_t_4vqcd9QVR6_k.roa
File: H_2Z0rQ4lFVS_t_4vqcd9QVR6_k.roa (raw, json)
Hash identifier: vVgSBCNMSjCvZXvXhszjUZaYYnZLOpxOv2+H1spliCA=
Subject key identifier: 1F:FD:99:D2:B4:38:94:55:52:FE:DF:F8:BE:A7:1D:F5:05:51:EB:F9
Certificate issuer: /CN=CE05E71ADDEC0F8E361BB55AB103F53D3856C60A
Certificate serial: 1A
Authority key identifier: CE:05:E7:1A:DD:EC:0F:8E:36:1B:B5:5A:B1:03:F5:3D:38:56:C6:0A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zgXnGt3sD442G7VasQP1PThWxgo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/33/H_2Z0rQ4lFVS_t_4vqcd9QVR6_k.roa
Signing time: Tue 01 Apr 2025 01:31:18 +0000
ROA not before: Tue 01 Apr 2025 01:31:18 +0000
ROA not after: Sun 15 Mar 2026 01:30:03 +0000
asID: 17955
IP address blocks: 210.56.160.0/19 maxlen: 20
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/33/zgXnGt3sD442G7VasQP1PThWxgo.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/33/zgXnGt3sD442G7VasQP1PThWxgo.mft
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zgXnGt3sD442G7VasQP1PThWxgo.cer
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 17 Apr 2025 14:26:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26 (0x1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CE05E71ADDEC0F8E361BB55AB103F53D3856C60A
Validity
Not Before: Apr 1 01:31:18 2025 GMT
Not After : Mar 15 01:30:03 2026 GMT
Subject: CN=1FFD99D2B438945552FEDFF8BEA71DF50551EBF9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:68:00:7a:3c:fb:cf:db:9d:01:19:ee:2b:1a:
39:ab:ff:52:c8:7e:5b:b4:00:d7:4e:01:2f:b6:ea:
2d:61:a7:74:40:f6:be:1f:9e:2a:56:61:0e:ca:8d:
b4:89:d5:20:48:f9:43:05:26:c9:72:32:f1:f2:5a:
b3:93:3c:b1:f7:6a:23:03:c9:ef:ca:a6:32:ba:a6:
d8:a3:19:61:52:83:0a:77:79:ca:a1:9d:9b:64:44:
5f:0f:6a:67:21:42:7b:74:26:df:62:05:18:99:f6:
21:07:0a:6e:af:d9:48:51:e3:f9:b2:97:00:32:9d:
da:0e:f0:50:bd:59:8f:f4:7f:77:cb:a6:df:4b:79:
09:57:12:bf:b2:08:3f:79:a3:18:55:07:2d:a1:e2:
08:5c:26:af:d7:5b:31:b4:10:78:65:51:df:05:12:
6c:d5:2d:ad:28:cb:ff:55:f0:d5:e8:37:34:9f:f5:
56:fc:bd:a6:c7:ec:f9:45:4f:2e:ee:57:14:30:68:
f3:83:99:65:21:79:c6:39:87:c4:10:8f:25:96:fe:
a6:c7:9e:96:60:ee:c8:bf:e9:af:1e:75:33:38:f0:
79:f1:ee:80:ee:7d:fa:c2:3b:fa:dc:9b:43:20:73:
c2:6f:27:e0:10:31:ba:3e:c2:b9:00:bc:87:e7:f4:
1c:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:FD:99:D2:B4:38:94:55:52:FE:DF:F8:BE:A7:1D:F5:05:51:EB:F9
X509v3 Authority Key Identifier:
keyid:CE:05:E7:1A:DD:EC:0F:8E:36:1B:B5:5A:B1:03:F5:3D:38:56:C6:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/33/zgXnGt3sD442G7VasQP1PThWxgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zgXnGt3sD442G7VasQP1PThWxgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/33/H_2Z0rQ4lFVS_t_4vqcd9QVR6_k.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
210.56.160.0/19
Signature Algorithm: sha256WithRSAEncryption
84:e1:d1:ba:41:0f:0f:eb:4e:61:26:12:67:d2:5e:f3:19:85:
7a:43:43:ed:fd:73:89:a9:bd:72:f8:bb:99:6f:67:af:ea:f5:
d8:1e:23:51:eb:da:2b:64:07:12:6a:f0:c3:b2:14:d1:18:67:
aa:9a:9f:dd:17:3b:39:67:88:bb:15:01:35:46:d3:11:65:6d:
c7:73:01:eb:4c:12:f4:53:46:91:31:6e:bc:ff:d6:05:1c:9a:
07:d1:59:bc:3f:3e:50:ba:86:ba:6e:66:9a:ac:25:ca:6b:94:
b0:6a:94:da:3d:ef:ad:fb:b6:09:f8:5e:18:ed:bf:2e:71:28:
82:cc:c2:d3:c3:83:cb:6f:5f:92:e0:4d:7f:9d:38:de:f7:6f:
12:b7:fc:5b:1d:ba:6b:96:60:4f:6d:ad:ae:ce:40:74:15:8a:
31:0a:7b:c2:34:3a:dc:53:51:a1:5c:d9:4a:cc:ca:79:d6:45:
18:56:1f:ee:c9:93:37:4d:11:9e:fb:28:43:21:00:29:29:95:
8b:c2:68:60:82:55:32:72:31:bd:72:be:31:eb:1e:50:1e:77:
86:3e:8b:ea:ae:c2:19:ee:a2:32:0a:b6:55:4f:39:8f:92:33:
1c:bc:a8:1b:88:99:fc:0c:87:53:2a:ac:5f:4a:9f:3f:66:1c:
69:fe:79:1b
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgIBGjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDRTA1
RTcxQURERUMwRjhFMzYxQkI1NUFCMTAzRjUzRDM4NTZDNjBBMB4XDTI1MDQwMTAx
MzExOFoXDTI2MDMxNTAxMzAwM1owMzExMC8GA1UEAxMoMUZGRDk5RDJCNDM4OTQ1
NTUyRkVERkY4QkVBNzFERjUwNTUxRUJGOTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAJpoAHo8+8/bnQEZ7isaOav/Ush+W7QA104BL7bqLWGndED2vh+e
KlZhDsqNtInVIEj5QwUmyXIy8fJas5M8sfdqIwPJ78qmMrqm2KMZYVKDCnd5yqGd
m2REXw9qZyFCe3Qm32IFGJn2IQcKbq/ZSFHj+bKXADKd2g7wUL1Zj/R/d8um30t5
CVcSv7IIP3mjGFUHLaHiCFwmr9dbMbQQeGVR3wUSbNUtrSjL/1Xw1eg3NJ/1Vvy9
psfs+UVPLu5XFDBo84OZZSF5xjmHxBCPJZb+pseelmDuyL/prx51MzjwefHugO59
+sI7+tybQyBzwm8n4BAxuj7CuQC8h+f0HIkCAwEAAaOCAiIwggIeMB0GA1UdDgQW
BBQf/ZnStDiUVVL+3/i+px31BVHr+TAfBgNVHSMEGDAWgBTOBeca3ewPjjYbtVqx
A/U9OFbGCjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY
oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMzMvemdYbkd0M3NENDQyRzdWYXNRUDFQVGhXeGdvLmNybDBtBggrBgEF
BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p
Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvemdYbkd0M3NENDQyRzdWYXNRUDFQVGhX
eGdvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG
AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx
QTczODEwMDAwLzMzL0hfMlowclE0bEZWU190XzR2cWNkOVFWUjZfay5yb2EwRgYI
KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw
L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAXSOKAwDQYJKoZIhvcNAQELBQADggEBAITh0bpBDw/rTmEmEmfSXvMZhXpDQ+39
c4mpvXL4u5lvZ6/q9dgeI1Hr2itkBxJq8MOyFNEYZ6qan90XOzlniLsVATVG0xFl
bcdzAetMEvRTRpExbrz/1gUcmgfRWbw/PlC6hrpuZpqsJcprlLBqlNo97637tgn4
Xhjtvy5xKILMwtPDg8tvX5LgTX+dON73bxK3/FsdumuWYE9tra7OQHQVijEKe8I0
OtxTUaFc2UrMynnWRRhWH+7JkzdNEZ77KEMhACkplYvCaGCCVTJyMb1yvjHrHlAe
d4Y+i+quwhnuojIKtlVPOY+SMxy8qBuImfwMh1MqrF9Knz9mHGn+eRs=
-----END CERTIFICATE-----
Generated at Fri Apr 11 13:42:52 2025 by rpki-client