Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/454/tca1mxR8IIfo00O3xbX8viCLyo0.roa
File: tca1mxR8IIfo00O3xbX8viCLyo0.roa (raw, json)
Hash identifier: bDVIXFn+no/InyNrJGb+/MA6/cUUq9KEhdnMJn+IqUY=
Subject key identifier: B5:C6:B5:9B:14:7C:20:87:E8:D3:43:B7:C5:B5:FC:BE:20:8B:CA:8D
Certificate issuer: /CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0
Certificate serial: 4A
Authority key identifier: AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/tca1mxR8IIfo00O3xbX8viCLyo0.roa
Signing time: Sat 31 Aug 2024 01:31:31 +0000
ROA not before: Sat 31 Aug 2024 01:31:31 +0000
ROA not after: Fri 15 Aug 2025 01:30:02 +0000
asID: 10000
IP address blocks: 203.170.32.0/20 maxlen: 20
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.mft
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 18:14:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74 (0x4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0
Validity
Not Before: Aug 31 01:31:31 2024 GMT
Not After : Aug 15 01:30:02 2025 GMT
Subject: CN=B5C6B59B147C2087E8D343B7C5B5FCBE208BCA8D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:38:7e:6e:76:86:2c:33:26:36:24:47:27:99:
ca:dc:b7:da:3e:c3:45:59:9c:94:64:ff:3a:cc:c2:
24:2c:92:43:9f:9f:15:aa:68:07:eb:e3:1e:b5:88:
a6:f5:0b:ae:5e:84:6f:ce:c2:b0:d5:39:72:e6:ef:
da:68:03:a3:c8:c2:84:84:3d:ff:48:3f:0b:9f:f9:
4d:40:9b:27:af:86:c2:5a:20:8a:ae:48:78:8f:c3:
d8:11:ed:69:55:17:55:ff:4b:13:09:25:b8:6b:f0:
8a:e2:94:c4:96:2d:5a:94:13:da:1b:20:9a:39:ff:
f2:cf:0f:2f:6a:0d:2c:5b:9a:c6:ff:73:5f:10:b1:
e7:0a:98:70:85:fe:c9:da:d5:11:92:ff:67:6f:14:
9e:c6:49:ce:5f:e7:bd:63:4a:a7:5e:72:d0:0c:9b:
40:d0:5c:a4:a8:67:c9:1b:5f:a2:36:6c:98:8f:a8:
41:44:64:a5:ec:14:5b:b9:fe:09:a2:5c:d4:39:72:
61:9c:52:4d:9f:9f:a0:d7:39:e2:0e:2a:97:2c:32:
10:6e:f6:e2:e0:21:fa:4a:c6:16:a6:54:ce:4b:d5:
33:73:ea:dc:c1:d9:96:32:32:61:72:9c:8d:37:12:
94:5d:85:f2:bc:00:e0:91:44:b8:19:9e:0a:e4:f9:
0c:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:C6:B5:9B:14:7C:20:87:E8:D3:43:B7:C5:B5:FC:BE:20:8B:CA:8D
X509v3 Authority Key Identifier:
keyid:AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/tca1mxR8IIfo00O3xbX8viCLyo0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.170.32.0/20
Signature Algorithm: sha256WithRSAEncryption
2d:23:60:16:6d:25:d7:16:5b:2f:2e:28:df:e1:5e:f2:20:90:
16:54:b5:df:0a:10:3d:ba:80:d6:a1:86:e1:0b:52:a2:1f:02:
20:5a:23:44:20:10:dc:62:d6:28:7e:f3:5b:c5:f4:47:7a:b7:
b5:e8:d8:78:fd:88:98:14:e1:6a:f2:0b:9a:b9:f9:ea:6e:e3:
81:54:97:35:83:7e:1f:7f:36:37:26:77:8d:af:6a:de:2d:e9:
a9:05:59:11:56:83:b9:bd:01:00:4a:fa:32:03:ef:c3:21:93:
c2:00:71:26:fb:ce:0e:5e:be:24:c1:10:65:48:49:ec:89:94:
cf:84:30:4a:23:01:ad:cf:fc:49:d0:f0:b5:da:d3:88:8a:3a:
5a:73:7e:db:35:06:3a:bb:74:ad:6b:d6:55:db:88:3b:9f:17:
ce:5f:7a:07:39:c2:f8:38:00:24:66:4a:03:5d:ee:0c:6a:e7:
9c:32:f0:dd:a9:9e:4a:88:0a:5a:48:86:69:0e:ba:37:c9:1e:
a3:e5:8c:cb:67:5d:ee:e8:c8:ae:ae:4c:d5:51:c5:6e:56:43:
b4:46:0b:06:4f:0a:7b:31:61:03:cf:af:35:9c:88:b6:0a:9c:
87:5f:fe:ec:44:b4:f7:c4:2b:76:b9:fd:21:5f:aa:4b:1f:68:
82:8e:5e:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 01:12:17 2025 by rpki-client