Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/7cjrS4wXQd5iJ1IsUQsV8sO8uD0.roa
File: 7cjrS4wXQd5iJ1IsUQsV8sO8uD0.roa (raw, json)
Hash identifier: vSoiDSKK6MgIc6w7dT4VzANxnPm8zsu8f7dL3PmRhfc=
Subject key identifier: ED:C8:EB:4B:8C:17:41:DE:62:27:52:2C:51:0B:15:F2:C3:BC:B8:3D
Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D
Certificate serial: 0179
Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/7cjrS4wXQd5iJ1IsUQsV8sO8uD0.roa
Signing time: Sat 30 Nov 2024 01:28:39 +0000
ROA not before: Sat 30 Nov 2024 01:28:39 +0000
ROA not after: Sat 15 Nov 2025 01:30:03 +0000
asID: 2527
IP address blocks: 219.104.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.mft
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 22:44:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 377 (0x179)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D
Validity
Not Before: Nov 30 01:28:39 2024 GMT
Not After : Nov 15 01:30:03 2025 GMT
Subject: CN=EDC8EB4B8C1741DE6227522C510B15F2C3BCB83D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:08:b3:32:60:50:69:cb:6d:60:11:6c:dd:d6:
f2:1b:7e:83:8b:29:be:1d:4c:d4:5a:7f:5a:f2:1b:
79:49:ec:79:70:5c:14:11:f6:42:4c:81:b5:5c:ea:
b4:84:97:d9:27:c5:2a:c6:ea:45:17:a2:87:64:90:
0f:2c:7b:6a:33:dd:5c:8d:f3:99:fa:b0:1d:cb:72:
db:a2:c9:3a:3c:79:06:11:a0:9d:ac:db:bf:9f:4f:
30:b2:90:30:64:75:28:72:3d:27:49:2a:30:7b:19:
a1:68:c8:ee:d1:ed:bb:9c:c1:e8:7e:b5:96:45:25:
ff:3c:40:80:57:ac:b1:4e:29:0c:e7:3e:a5:6b:70:
e1:df:a0:af:70:ce:d4:b0:f5:1e:b8:53:a1:07:f4:
86:a6:91:37:83:a9:df:37:12:23:8e:64:a7:c0:02:
50:48:b5:ab:91:c9:13:0a:ca:58:c3:a4:54:9e:d9:
80:67:3b:2b:de:e2:0a:ab:88:fa:3b:48:80:31:78:
7a:fe:8c:bf:e3:d0:51:04:82:de:60:e1:a2:70:53:
c4:d4:17:e7:29:46:a9:a1:33:67:d1:05:b0:8f:36:
74:82:e4:7f:f7:19:ee:83:10:28:b6:02:51:0b:05:
e4:3d:19:b5:b9:6d:ac:c7:af:8e:4d:75:45:fd:24:
7c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:C8:EB:4B:8C:17:41:DE:62:27:52:2C:51:0B:15:F2:C3:BC:B8:3D
X509v3 Authority Key Identifier:
keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/7cjrS4wXQd5iJ1IsUQsV8sO8uD0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
219.104.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1d:b1:6a:e1:5b:1d:c1:ae:82:e4:94:02:91:5b:47:16:8d:d5:
a7:91:10:6b:ef:9f:f7:f8:5a:fb:0c:06:70:62:b1:59:fe:c3:
85:96:dd:5b:08:12:b8:3c:d3:46:ab:ca:bf:92:46:c6:88:67:
65:ae:5f:d4:2a:e3:5e:e5:f1:9b:43:f3:8f:09:9f:48:f7:33:
20:b6:04:83:d3:05:0b:80:d4:aa:08:7f:f7:5a:dc:e6:52:c6:
da:b6:a1:63:da:50:6c:3c:37:68:07:33:f8:61:c7:ed:d3:2e:
8e:19:8d:ca:df:60:dc:b9:60:bb:38:61:44:ce:ea:34:5e:2a:
07:fe:3e:90:7c:66:9d:a7:06:62:6a:ea:f9:33:72:b1:24:ae:
89:55:24:8d:8f:0d:f2:e7:79:cd:57:8c:7b:a7:9f:a2:43:cb:
1c:18:90:71:c3:f1:3e:6b:1f:aa:a2:ce:12:5c:0a:36:21:ab:
c3:cb:bb:c5:ee:86:d8:34:db:0f:51:57:42:80:34:4d:cb:e4:
b4:cf:0b:cd:43:9e:bb:d4:09:43:79:dd:14:14:33:a5:a7:06:
8c:24:82:ff:61:77:35:8d:e8:7d:7c:a0:30:50:eb:11:39:ea:
3e:51:d0:a1:06:72:9c:90:da:ce:d4:a1:34:2b:94:ac:2b:de:
46:e6:c2:bd
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDk1
QTE4MkZBMThENDU4MjMzMjg0QUE4REM4OEJEMDc1RTVENzAyRDAeFw0yNDExMzAw
MTI4MzlaFw0yNTExMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEVEQzhFQjRCOEMxNzQx
REU2MjI3NTIyQzUxMEIxNUYyQzNCQ0I4M0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCsCLMyYFBpy21gEWzd1vIbfoOLKb4dTNRaf1ryG3lJ7HlwXBQR
9kJMgbVc6rSEl9knxSrG6kUXoodkkA8se2oz3VyN85n6sB3LctuiyTo8eQYRoJ2s
27+fTzCykDBkdShyPSdJKjB7GaFoyO7R7bucweh+tZZFJf88QIBXrLFOKQznPqVr
cOHfoK9wztSw9R64U6EH9IamkTeDqd83EiOOZKfAAlBItauRyRMKyljDpFSe2YBn
Oyve4gqriPo7SIAxeHr+jL/j0FEEgt5g4aJwU8TUF+cpRqmhM2fRBbCPNnSC5H/3
Ge6DECi2AlELBeQ9GbW5bazHr45NdUX9JHz1AgMBAAGjggIhMIICHTAdBgNVHQ4E
FgQU7cjrS4wXQd5iJ1IsUQsV8sO8uD0wHwYDVR0jBBgwFoAUCVoYL6GNRYIzKEqo
3Ii9B15dcC0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg
WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzQzL0NWb1lMNkdOUllJektFcW8zSWk5QjE1ZGNDMC5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0NWb1lMNkdOUllJektFcW8zSWk5QjE1
ZGNDMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr
BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC80My83Y2pyUzR3WFFkNWlKMUlzVVFzVjhzTzh1RDAucm9hMEYG
CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk
cC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAF
AwMA22gwDQYJKoZIhvcNAQELBQADggEBAB2xauFbHcGuguSUApFbRxaN1aeREGvv
n/f4WvsMBnBisVn+w4WW3VsIErg800aryr+SRsaIZ2WuX9Qq417l8ZtD848Jn0j3
MyC2BIPTBQuA1KoIf/da3OZSxtq2oWPaUGw8N2gHM/hhx+3TLo4ZjcrfYNy5YLs4
YUTO6jReKgf+PpB8Zp2nBmJq6vkzcrEkrolVJI2PDfLnec1XjHunn6JDyxwYkHHD
8T5rH6qizhJcCjYhq8PLu8Xuhtg02w9RV0KANE3L5LTPC81DnrvUCUN53RQUM6Wn
Bowkgv9hdzWN6H18oDBQ6xE56j5R0KEGcpyQ2s7UoTQrlKwr3kbmwr0=
-----END CERTIFICATE-----
Generated at Mon Apr 14 08:59:24 2025 by rpki-client