Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/4PVLHqbzf8IQPikrm5tu3Jemccc.roa
File: 4PVLHqbzf8IQPikrm5tu3Jemccc.roa (raw, json)
Hash identifier: nezDiIcA669KuaCQyBB6PLrmDBxdTOWxl+iv83LFeMc=
Subject key identifier: E0:F5:4B:1E:A6:F3:7F:C2:10:3E:29:2B:9B:9B:6E:DC:97:A6:71:C7
Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D
Certificate serial: 0178
Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/4PVLHqbzf8IQPikrm5tu3Jemccc.roa
Signing time: Sat 30 Nov 2024 01:28:38 +0000
ROA not before: Sat 30 Nov 2024 01:28:38 +0000
ROA not after: Sat 15 Nov 2025 01:30:03 +0000
asID: 2527
IP address blocks: 219.104.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.mft
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 17 Apr 2025 14:26:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 376 (0x178)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D
Validity
Not Before: Nov 30 01:28:38 2024 GMT
Not After : Nov 15 01:30:03 2025 GMT
Subject: CN=E0F54B1EA6F37FC2103E292B9B9B6EDC97A671C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7d:0a:18:00:2e:25:06:f8:66:30:48:ac:ba:
a4:4d:db:c0:80:0f:b5:cc:03:a8:85:c4:96:7a:f3:
32:0f:58:ef:de:d1:3a:43:aa:12:70:4b:13:6b:c5:
1e:ad:e2:19:ee:10:b6:8b:c3:95:ac:cb:8a:02:f1:
51:2a:8b:40:68:7b:6d:24:6e:56:7d:d9:ac:1e:91:
49:db:8d:d2:e3:e3:95:d4:3f:17:b6:f7:48:41:40:
c4:a1:a1:b8:31:aa:3b:c8:b7:55:2c:d6:6f:45:a0:
86:89:d0:d1:aa:69:c1:38:44:27:d8:78:60:1f:2e:
2e:c3:7b:bb:bf:61:0b:68:2b:b5:14:4d:0d:a5:c8:
2a:a8:c3:f1:f6:53:dc:7f:60:66:b6:9b:06:3a:dd:
76:9d:22:2e:6b:bf:16:d7:9c:62:d5:5f:ae:9c:8a:
ce:d3:fe:41:7b:53:c6:c7:da:de:90:b9:76:5d:b8:
a2:fc:a8:d9:b8:49:5e:df:f3:e5:24:4e:f9:39:fa:
64:e3:7c:c9:14:a6:34:13:93:6a:73:b2:87:2e:2c:
ba:1f:8d:05:73:20:fb:3f:6a:c6:d4:7e:a1:de:ee:
7d:9c:2b:cd:21:e6:1f:65:8e:57:ba:ee:7e:a9:54:
1c:a9:d1:78:69:02:14:7a:81:10:9b:c6:64:7b:f3:
7d:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:F5:4B:1E:A6:F3:7F:C2:10:3E:29:2B:9B:9B:6E:DC:97:A6:71:C7
X509v3 Authority Key Identifier:
keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/4PVLHqbzf8IQPikrm5tu3Jemccc.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
219.104.192.0/18
Signature Algorithm: sha256WithRSAEncryption
a9:13:f2:e7:00:6d:f7:da:15:1e:a3:22:c2:50:0d:43:2b:5c:
e4:ef:6a:16:de:09:40:de:33:de:a5:8b:fa:24:78:a5:f4:74:
b6:14:03:63:43:04:c8:d4:3c:ec:b6:a0:6c:29:f5:da:67:ac:
f6:de:fa:f9:37:ab:de:63:a1:b3:e9:74:75:17:ae:e1:a7:24:
b2:16:29:db:89:d8:0e:d5:11:35:a6:7d:8d:71:8e:28:57:43:
7f:3f:66:e4:82:47:9a:41:4e:ca:f8:6e:f0:4f:75:ac:86:8b:
31:96:6a:f0:cc:c5:79:b4:19:74:b4:15:36:7f:09:be:de:2c:
e4:73:14:fe:80:6d:a7:1c:56:b4:cd:47:0c:b7:b2:27:cf:6b:
08:c4:2b:41:84:9a:cf:38:84:ef:75:d7:c6:eb:c9:d1:52:2e:
5b:09:c2:cb:c2:9e:10:6f:16:51:0a:02:67:b3:03:67:06:83:
c7:56:b6:f3:1b:cb:b8:e1:c9:0d:73:67:9e:d8:b6:82:4f:62:
43:69:f6:36:1f:f5:58:7c:38:58:11:b7:ac:ba:a6:18:ff:62:
f6:ef:65:f6:7e:38:46:79:e7:48:42:d2:96:cd:32:24:61:7f:
16:8d:b9:3f:a4:70:ae:e6:a2:82:81:0f:e4:de:e8:98:91:42:
1a:9a:6d:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 17:36:30 2025 by rpki-client