Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/524/BkA8wyb8wW-wUM7VW6oPScpAa3c.roa
File: BkA8wyb8wW-wUM7VW6oPScpAa3c.roa (raw, json)
Hash identifier: SWTK7ZnqM8yHvUMKBTyOUXDewy5cp5fXqoSaN/6NwFw=
Subject key identifier: 06:40:3C:C3:26:FC:C1:6F:B0:50:CE:D5:5B:AA:0F:49:CA:40:6B:77
Certificate issuer: /CN=EE13ACCF7E77B0292AE17B05340211C8F971760B
Certificate serial: 36
Authority key identifier: EE:13:AC:CF:7E:77:B0:29:2A:E1:7B:05:34:02:11:C8:F9:71:76:0B
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/7hOsz353sCkq4XsFNAIRyPlxdgs.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/524/BkA8wyb8wW-wUM7VW6oPScpAa3c.roa
Signing time: Sat 01 Mar 2025 01:32:10 +0000
ROA not before: Sat 01 Mar 2025 01:32:10 +0000
ROA not after: Sun 15 Feb 2026 01:30:03 +0000
asID: 0
IP address blocks: 210.171.224.0/23 maxlen: 32
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/524/7hOsz353sCkq4XsFNAIRyPlxdgs.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/524/7hOsz353sCkq4XsFNAIRyPlxdgs.mft
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/7hOsz353sCkq4XsFNAIRyPlxdgs.cer
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 22:44:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54 (0x36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EE13ACCF7E77B0292AE17B05340211C8F971760B
Validity
Not Before: Mar 1 01:32:10 2025 GMT
Not After : Feb 15 01:30:03 2026 GMT
Subject: CN=06403CC326FCC16FB050CED55BAA0F49CA406B77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:0c:c9:45:eb:b7:65:25:b2:99:90:79:2e:ff:
e5:e7:1b:72:27:07:8f:bf:96:24:9b:f7:ee:54:7a:
93:83:73:51:50:09:66:74:6f:d6:73:d8:17:c4:46:
89:76:d3:63:51:e0:3f:2d:b3:06:97:6e:27:93:1e:
fe:c1:92:c3:21:f1:82:24:31:a2:c2:21:51:b8:63:
16:2e:54:51:eb:0d:73:7d:6d:f7:09:22:54:a2:17:
36:b7:26:23:73:bf:14:c3:74:2c:62:5d:6c:15:7e:
c0:e7:62:7b:cb:9a:54:28:78:85:41:79:76:1c:ab:
68:1d:22:e4:5c:3d:94:6d:4c:8f:6a:89:95:99:fd:
8c:92:34:5c:d5:f2:61:47:b2:1c:4b:29:76:b8:93:
31:c5:29:45:c0:35:46:21:f4:9d:20:f8:25:62:3a:
d1:79:00:88:6d:75:01:e8:0a:8e:e6:97:83:a1:ed:
2c:b0:90:28:f8:9a:d2:4e:bf:e5:5e:2a:6b:c0:8f:
66:02:59:ca:e9:6a:67:ee:f2:8e:e2:7a:6c:6e:95:
a6:e7:8b:85:0a:5e:4e:27:61:a4:35:11:cd:9a:b6:
60:5e:2f:f3:88:8b:a0:c9:c3:70:90:19:a6:a5:0b:
1f:23:95:f8:ed:0b:df:2a:a9:38:d3:f3:ba:32:c4:
82:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:40:3C:C3:26:FC:C1:6F:B0:50:CE:D5:5B:AA:0F:49:CA:40:6B:77
X509v3 Authority Key Identifier:
keyid:EE:13:AC:CF:7E:77:B0:29:2A:E1:7B:05:34:02:11:C8:F9:71:76:0B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/524/7hOsz353sCkq4XsFNAIRyPlxdgs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/7hOsz353sCkq4XsFNAIRyPlxdgs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/524/BkA8wyb8wW-wUM7VW6oPScpAa3c.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
210.171.224.0/23
Signature Algorithm: sha256WithRSAEncryption
52:87:12:14:84:bf:15:7b:61:74:c4:51:5c:b0:aa:ff:bc:41:
fa:7a:1f:82:58:83:38:56:c0:48:4d:3d:16:f8:77:42:8f:f2:
22:38:88:bd:b6:57:5e:99:0e:8c:db:c6:fa:25:b8:de:a5:b6:
70:30:d1:f1:c7:26:57:2f:3f:9e:14:85:24:8a:c0:33:5a:fd:
c5:3b:fc:d0:ba:f6:7d:36:52:bf:05:1e:3f:1a:43:62:9f:8f:
81:df:ef:00:11:18:7b:2e:dc:a6:c3:37:50:ed:7b:14:99:b2:
15:dd:7a:63:ba:b4:7e:54:f0:98:94:90:41:f5:a1:ef:6a:9b:
ab:4d:5f:b7:3c:26:78:5d:d7:13:40:3b:5d:9a:82:0b:52:87:
c0:1f:e6:03:f2:0f:14:30:91:6f:76:5a:42:ee:ef:61:56:54:
3b:14:bf:bc:50:56:ab:35:fd:ac:47:bc:3c:0a:db:a7:40:bc:
49:2f:7e:be:7f:97:3a:b6:2c:fe:3f:d7:f9:0a:df:ef:09:53:
94:20:f0:9b:59:7e:f5:14:4e:a9:c7:4f:7f:0f:88:42:60:64:
00:84:bf:e8:10:af:93:c2:e3:a8:8b:66:a8:a2:ad:af:8e:9e:
4b:dc:a1:3c:d3:ca:0a:0a:d7:97:a4:50:22:5c:83:be:d4:5b:
93:28:0c:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 15:05:34 2025 by rpki-client