Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/9L7PGw0kZ1z75aNrL3d7VXT4Rx0.roa
File: 9L7PGw0kZ1z75aNrL3d7VXT4Rx0.roa (raw, json)
Hash identifier: 6Npm1tDFTch/D/VjriEQqh2+TSUVyfwGQa8HrsJHujU=
Subject key identifier: F4:BE:CF:1B:0D:24:67:5C:FB:E5:A3:6B:2F:77:7B:55:74:F8:47:1D
Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Certificate serial: 0548
Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/9L7PGw0kZ1z75aNrL3d7VXT4Rx0.roa
Signing time: Fri 31 Jan 2025 01:36:06 +0000
ROA not before: Fri 31 Jan 2025 01:36:06 +0000
ROA not after: Thu 15 Jan 2026 01:30:03 +0000
asID: 10010
IP address blocks: 210.146.96.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.mft
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 22:44:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1352 (0x548)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Validity
Not Before: Jan 31 01:36:06 2025 GMT
Not After : Jan 15 01:30:03 2026 GMT
Subject: CN=F4BECF1B0D24675CFBE5A36B2F777B5574F8471D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c5:4a:05:5d:9f:ea:eb:05:5e:1c:74:d4:5f:
a7:6e:8d:c1:04:38:d9:a4:99:e0:cc:ff:be:f9:5a:
bb:14:66:de:d3:ed:2d:d9:39:c6:b4:da:65:16:dd:
9c:af:d6:fb:8c:c2:d3:e0:67:97:57:71:a3:08:78:
b3:95:68:b2:cb:91:a1:0c:29:10:5a:28:ca:e8:51:
56:55:a3:d6:a6:52:15:55:3d:ca:e4:93:6f:79:d2:
ce:c3:f4:cd:ae:d2:3d:20:ef:e7:01:f9:47:77:1a:
d7:4f:53:62:a6:bd:95:3b:6f:5a:41:7f:65:4f:c0:
f6:4c:2c:73:c0:b8:52:ab:76:57:74:57:2e:1c:86:
de:45:91:d5:75:4f:3c:61:6c:96:ef:97:47:ba:0f:
66:0d:2f:12:0c:bf:1d:e7:48:09:24:cb:7d:89:5a:
6e:9b:5b:f7:f2:08:9d:20:92:63:29:5c:48:5e:c7:
24:31:86:1d:18:73:02:ec:73:70:ac:60:a3:13:f7:
bb:8a:b2:b9:39:0f:b4:f4:52:a7:e6:c5:ab:fb:47:
1a:a1:8b:8c:ac:3b:6a:4b:14:c1:36:96:8d:95:8b:
b1:68:90:0b:ee:50:79:16:95:00:72:c2:34:57:dd:
09:e5:06:f9:e0:28:a1:67:c2:3c:b5:23:f7:cd:6f:
1e:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:BE:CF:1B:0D:24:67:5C:FB:E5:A3:6B:2F:77:7B:55:74:F8:47:1D
X509v3 Authority Key Identifier:
keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/9L7PGw0kZ1z75aNrL3d7VXT4Rx0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
210.146.96.0/19
Signature Algorithm: sha256WithRSAEncryption
b7:08:a3:a2:f6:4b:39:93:19:86:f1:e1:0c:b2:2d:8a:12:19:
ce:9e:a0:cb:a4:54:db:34:63:57:0f:27:4e:5b:03:b1:57:6e:
ec:a3:92:48:99:01:39:8f:8a:0d:b3:ba:db:46:97:ae:da:4b:
1d:ee:72:6e:b6:9c:84:81:04:76:40:11:74:87:84:33:36:3a:
9d:83:84:82:80:71:0d:12:ad:e2:97:4d:0c:67:ea:7f:40:4b:
1a:ef:d0:96:25:35:8f:1d:f0:0e:4c:e7:1e:0f:a3:5b:98:da:
df:b5:db:75:ef:9e:78:fc:7c:00:09:40:95:cc:29:61:07:ff:
15:82:89:f0:a3:de:e5:3e:12:9e:ad:65:46:ed:41:ce:c4:5b:
3a:b4:60:ea:6f:2d:99:25:54:53:b8:80:cf:c7:44:0b:20:4a:
bd:37:21:38:d6:d3:b9:4a:8c:86:4a:86:13:9c:b3:28:d0:1a:
48:f0:99:82:e4:08:13:61:8d:15:6b:6d:00:0d:af:b4:dc:a5:
02:49:24:22:13:74:2a:20:eb:86:51:09:64:c6:2b:dc:4e:d2:
66:c7:3c:fc:f0:63:96:9f:69:04:40:bf:0e:71:99:51:3d:f4:
40:61:a8:7c:e5:52:7f:bf:60:92:86:60:49:79:c9:ad:c6:d7:
7e:16:57:ba
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICBUgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJE
Q0Q1MjZCMDlFNzg5N0Y3MUZFMDQ4NThCRTc1QzA2RUM0RjEzQTAeFw0yNTAxMzEw
MTM2MDZaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEY0QkVDRjFCMEQyNDY3
NUNGQkU1QTM2QjJGNzc3QjU1NzRGODQ3MUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6xUoFXZ/q6wVeHHTUX6dujcEEONmkmeDM/775WrsUZt7T7S3Z
Oca02mUW3Zyv1vuMwtPgZ5dXcaMIeLOVaLLLkaEMKRBaKMroUVZVo9amUhVVPcrk
k2950s7D9M2u0j0g7+cB+Ud3GtdPU2KmvZU7b1pBf2VPwPZMLHPAuFKrdld0Vy4c
ht5FkdV1TzxhbJbvl0e6D2YNLxIMvx3nSAkky32JWm6bW/fyCJ0gkmMpXEhexyQx
hh0YcwLsc3CsYKMT97uKsrk5D7T0Uqfmxav7Rxqhi4ysO2pLFME2lo2Vi7FokAvu
UHkWlQBywjRX3QnlBvngKKFnwjy1I/fNbx5DAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQU9L7PGw0kZ1z75aNrL3d7VXT4Rx0wHwYDVR0jBBgwFoAUu9zVJrCeeJf3H+BI
WL51wG7E8TowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzU0NS91OXpWSnJDZWVKZjNILUJJV0w1MXdHN0U4VG8uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91OXpWSnJDZWVKZjNILUJJV0w1MXdH
N0U4VG8uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvNTQ1LzlMN1BHdzBrWjF6NzVhTnJMM2Q3VlhUNFJ4MC5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAXSkmAwDQYJKoZIhvcNAQELBQADggEBALcIo6L2SzmTGYbx4QyyLYoSGc6e
oMukVNs0Y1cPJ05bA7FXbuyjkkiZATmPig2zuttGl67aSx3ucm62nISBBHZAEXSH
hDM2Op2DhIKAcQ0SreKXTQxn6n9ASxrv0JYlNY8d8A5M5x4Po1uY2t+123Xvnnj8
fAAJQJXMKWEH/xWCifCj3uU+Ep6tZUbtQc7EWzq0YOpvLZklVFO4gM/HRAsgSr03
ITjW07lKjIZKhhOcsyjQGkjwmYLkCBNhjRVrbQANr7TcpQJJJCITdCog64ZRCWTG
K9xO0mbHPPzwY5afaQRAvw5xmVE99EBhqHzlUn+/YJKGYEl5ya3G134WV7o=
-----END CERTIFICATE-----
Generated at Mon Apr 14 15:05:41 2025 by rpki-client