Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/DSXuSrKsUY9JtL6WLQkM2eDjnDc.roa
File: DSXuSrKsUY9JtL6WLQkM2eDjnDc.roa (raw, json)
Hash identifier: iIcTkG67pPtBxCrFk84K8eOK/CuhZ8ZK1X8HiWJ2sI8=
Subject key identifier: 0D:25:EE:4A:B2:AC:51:8F:49:B4:BE:96:2D:09:0C:D9:E0:E3:9C:37
Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Certificate serial: 055C
Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/DSXuSrKsUY9JtL6WLQkM2eDjnDc.roa
Signing time: Fri 31 Jan 2025 01:36:15 +0000
ROA not before: Fri 31 Jan 2025 01:36:15 +0000
ROA not after: Thu 15 Jan 2026 01:30:03 +0000
asID: 10010
IP address blocks: 203.114.228.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.mft
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 22:44:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1372 (0x55c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Validity
Not Before: Jan 31 01:36:15 2025 GMT
Not After : Jan 15 01:30:03 2026 GMT
Subject: CN=0D25EE4AB2AC518F49B4BE962D090CD9E0E39C37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:11:d3:69:2f:c2:f2:10:69:6d:71:42:15:17:
fb:6a:78:a3:34:d7:c6:dc:cf:22:5e:5e:a2:33:ad:
e3:39:b9:38:39:c8:72:9f:6c:86:31:9f:81:61:f9:
76:20:7b:89:79:13:50:d2:62:41:40:96:1f:ff:6c:
98:f0:ed:3e:c6:04:8d:b8:aa:3e:af:41:31:21:d1:
9a:20:ff:9f:fc:07:e5:06:35:fa:fc:af:29:28:f3:
4a:15:4d:c3:16:34:24:bb:c6:02:51:58:d4:17:42:
b2:02:78:df:a8:00:8f:d9:84:95:d9:a6:ba:8b:47:
be:28:b4:72:a9:5a:7f:df:9b:6b:16:d3:62:fe:09:
0f:0c:0b:be:20:b2:77:ee:a0:e6:08:32:28:37:d2:
f6:99:1c:5b:97:68:62:dc:2d:80:b1:38:7f:25:60:
80:9e:2f:ae:e3:47:08:32:fe:93:9d:46:d7:98:3a:
0c:93:10:37:1a:8d:74:5a:6a:bd:e6:ee:09:08:8c:
91:a4:ba:c1:a3:e0:ff:66:5e:bb:13:3a:97:00:e5:
ed:5c:34:12:fe:93:1f:a4:24:ca:1b:4a:03:f4:9b:
e2:61:76:3b:a5:4d:dd:34:cd:83:5e:1f:08:ff:45:
0e:e9:1d:17:f7:e2:67:c2:f4:51:16:e3:fa:d6:e4:
7c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:25:EE:4A:B2:AC:51:8F:49:B4:BE:96:2D:09:0C:D9:E0:E3:9C:37
X509v3 Authority Key Identifier:
keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/DSXuSrKsUY9JtL6WLQkM2eDjnDc.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.114.228.0/22
Signature Algorithm: sha256WithRSAEncryption
29:33:a1:a2:b0:87:66:35:fe:f0:47:fe:13:33:21:fc:42:bb:
25:ca:5e:81:f7:9f:3d:b4:6d:69:58:a6:08:e7:58:a8:e2:d6:
67:54:94:fa:23:6f:4f:a7:ae:71:a2:37:90:ec:d0:62:9e:b9:
c1:ea:d2:3f:bb:56:c0:09:6c:09:80:31:85:39:ab:43:6d:b7:
cd:3b:1c:34:21:60:f5:75:79:0c:54:9f:43:5b:df:5e:33:31:
fb:24:33:51:3d:f3:47:ab:0e:12:1a:29:79:ab:77:a1:c8:27:
6b:15:ef:c7:5e:82:12:ec:2c:14:09:ae:84:82:60:55:d8:31:
8e:5b:03:61:83:01:fd:27:8e:6e:74:7b:79:a3:47:ef:a0:7e:
53:09:9b:fe:e5:eb:8d:32:61:cc:c0:db:0c:da:83:db:f8:a9:
42:a1:01:43:bc:6a:df:67:43:51:e7:f5:f9:2a:3c:38:df:b3:
17:50:11:d0:cd:7e:4d:e7:a3:15:e3:eb:ec:ed:39:e4:f5:15:
2f:2b:b2:5c:f0:5f:76:80:00:9c:4a:9f:a5:f9:19:46:b2:04:
cf:ba:6a:69:29:7a:63:ef:25:91:96:cf:66:37:8d:ab:0d:96:
1a:33:56:81:0e:c2:07:cf:1d:e2:06:2d:0d:63:ef:cf:cd:86:
54:c9:c6:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 10:29:27 2025 by rpki-client