Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/HfxN6EMd_dvqggbpr3thExeyHoA.roa
File: HfxN6EMd_dvqggbpr3thExeyHoA.roa (raw, json)
Hash identifier: PHuN1uXGmAjulky74gu37g30JEutvmXYEf0y+PSnaXQ=
Subject key identifier: 1D:FC:4D:E8:43:1D:FD:DB:EA:82:06:E9:AF:7B:61:13:17:B2:1E:80
Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C
Certificate serial: 0248
Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/HfxN6EMd_dvqggbpr3thExeyHoA.roa
Signing time: Fri 31 May 2024 01:35:33 +0000
ROA not before: Fri 31 May 2024 01:35:33 +0000
ROA not after: Thu 15 May 2025 01:30:03 +0000
asID: 10013
IP address blocks: 27.134.176.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 18:14:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 584 (0x248)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C
Validity
Not Before: May 31 01:35:33 2024 GMT
Not After : May 15 01:30:03 2025 GMT
Subject: CN=1DFC4DE8431DFDDBEA8206E9AF7B611317B21E80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:32:8e:de:94:06:ae:b1:9f:69:cc:67:bc:22:
68:5d:08:3e:60:f7:15:39:b6:b7:44:76:90:63:b0:
58:72:68:4b:dc:20:cb:c3:95:17:ba:e1:93:e1:84:
b8:20:4b:ee:34:01:3b:c6:ae:97:e7:06:ea:08:44:
00:97:51:c4:6d:7f:4d:5c:b6:6a:b0:15:da:2c:9d:
76:e1:51:24:e4:5b:15:0f:a0:b4:01:06:67:fe:8f:
7b:45:8e:7d:23:59:50:d2:1f:49:73:ef:87:d8:13:
88:ab:1c:4e:4a:1b:5d:23:5c:bc:0a:5e:c1:af:85:
57:0f:b4:3d:b2:ee:29:04:92:32:14:4f:6b:99:87:
4a:1d:40:df:b6:04:9c:45:f5:13:18:4d:98:e8:af:
ce:30:b7:a0:32:38:de:f4:15:56:7b:8e:25:04:53:
53:1b:5e:aa:ef:62:b0:b4:33:a6:9e:93:b7:29:e5:
a4:45:a8:7b:b4:d6:12:50:af:27:08:b6:31:d4:fe:
94:d3:29:dc:19:44:65:22:e0:85:ac:e8:71:e5:b7:
ad:a1:6a:36:5e:d7:85:e5:45:d8:25:11:cd:9b:43:
ce:61:21:a7:60:a4:b5:53:c5:92:8a:28:39:9d:57:
96:fd:08:92:8c:60:bd:72:ae:53:0a:6a:b7:30:3d:
b9:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:FC:4D:E8:43:1D:FD:DB:EA:82:06:E9:AF:7B:61:13:17:B2:1E:80
X509v3 Authority Key Identifier:
keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/HfxN6EMd_dvqggbpr3thExeyHoA.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.134.176.0/21
Signature Algorithm: sha256WithRSAEncryption
73:84:18:24:67:50:95:5e:98:c7:16:8f:b0:de:f0:aa:eb:ec:
9e:89:20:96:e2:b0:ff:d5:0b:57:00:bc:d4:58:ea:b4:9d:2f:
5c:f3:35:9e:87:4d:77:79:db:8b:77:c7:c7:a5:7f:d0:3b:9d:
7f:5a:20:6d:2c:8a:1c:80:a2:c0:54:00:51:db:de:7f:ec:7d:
20:3a:c6:1b:15:f3:11:a1:bb:01:13:df:e4:25:6b:28:b2:75:
6b:68:e8:7f:28:07:14:7b:35:6d:06:57:3f:ab:4f:e8:50:1a:
9d:15:32:45:6a:c5:30:ea:44:a4:f7:03:30:6f:de:95:ee:ab:
9a:22:57:16:85:62:cc:89:82:64:b0:ab:b0:ab:ef:67:42:d6:
cc:d2:1b:b1:50:ce:6a:50:1b:9e:b6:57:ee:b7:2a:db:b5:ef:
34:58:95:90:07:03:35:bd:cd:5e:ca:fc:38:36:b2:1d:ce:ac:
48:6a:cf:92:e4:ae:7f:0c:d3:cf:73:fc:12:00:fb:7f:5f:28:
c2:69:c2:b1:10:2b:7e:cc:36:d2:33:24:40:2d:a4:4c:8b:6a:
9a:21:20:8b:e1:26:7b:3a:25:ac:94:46:38:05:78:bc:94:c2:
57:35:99:c1:cd:45:91:37:af:22:47:62:a6:12:ad:33:1a:b6:
3c:ed:33:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 00:23:39 2025 by rpki-client