Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/679/1CjuE46hAl8USy_wRyaz6Mgk08k.roa
File: 1CjuE46hAl8USy_wRyaz6Mgk08k.roa (raw, json)
Hash identifier: y0SvTLPVIODdm5F6Y0wI2s+L75RDVt32t0/XV75E0dM=
Subject key identifier: D4:28:EE:13:8E:A1:02:5F:14:4B:2F:F0:47:26:B3:E8:C8:24:D3:C9
Certificate issuer: /CN=0F7F3308FC95232459836FDF159AF6B4FAABAC91
Certificate serial: 3B
Authority key identifier: 0F:7F:33:08:FC:95:23:24:59:83:6F:DF:15:9A:F6:B4:FA:AB:AC:91
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/D38zCPyVIyRZg2_fFZr2tPqrrJE.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/679/1CjuE46hAl8USy_wRyaz6Mgk08k.roa
Signing time: Tue 01 Apr 2025 01:28:20 +0000
ROA not before: Tue 01 Apr 2025 01:28:20 +0000
ROA not after: Sun 15 Mar 2026 01:30:03 +0000
asID: 17958
IP address blocks: 103.2.96.0/22 maxlen: 32
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/679/D38zCPyVIyRZg2_fFZr2tPqrrJE.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/679/D38zCPyVIyRZg2_fFZr2tPqrrJE.mft
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/D38zCPyVIyRZg2_fFZr2tPqrrJE.cer
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 22:44:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59 (0x3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0F7F3308FC95232459836FDF159AF6B4FAABAC91
Validity
Not Before: Apr 1 01:28:20 2025 GMT
Not After : Mar 15 01:30:03 2026 GMT
Subject: CN=D428EE138EA1025F144B2FF04726B3E8C824D3C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:1f:7d:31:55:7c:88:12:64:10:8d:13:e2:22:
6d:36:bb:f7:d7:ed:f1:7e:d1:00:2d:16:ca:5b:4e:
e6:68:5f:4e:10:53:6d:9c:3d:af:a9:b7:ec:62:0f:
c0:fe:81:4d:c2:5b:9e:1b:9b:02:7c:e2:74:4a:0b:
82:87:aa:97:63:d1:f0:42:a2:c7:d3:8f:7a:2c:03:
04:ab:35:d2:de:4b:cb:97:1f:8b:ba:ab:1c:da:8f:
5c:02:59:04:3a:d6:ed:49:d0:26:14:57:db:da:1b:
08:7e:28:e0:47:80:c7:9f:53:93:af:15:40:03:0c:
bc:49:bd:c7:7c:89:df:fe:62:83:2e:22:cd:be:0c:
27:a2:40:60:0c:d4:d6:45:54:06:b7:b9:94:d6:88:
01:a0:4e:0e:a3:17:12:7e:67:89:2c:aa:d2:7d:a3:
27:c6:6d:82:73:a0:b7:16:d8:bf:4d:fb:46:96:95:
11:e9:37:72:1e:18:da:91:39:1a:48:0a:e2:95:9a:
44:37:8d:ae:2e:5e:6e:d7:ba:15:7a:38:54:4b:15:
c1:fa:01:a6:82:6e:4d:87:bc:8b:88:ea:3b:ae:45:
cb:15:6d:8c:5f:6e:4e:ad:25:10:f4:82:97:cf:0d:
ff:32:d8:41:57:2c:c2:2a:96:cc:08:1f:92:71:1c:
4f:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:28:EE:13:8E:A1:02:5F:14:4B:2F:F0:47:26:B3:E8:C8:24:D3:C9
X509v3 Authority Key Identifier:
keyid:0F:7F:33:08:FC:95:23:24:59:83:6F:DF:15:9A:F6:B4:FA:AB:AC:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/679/D38zCPyVIyRZg2_fFZr2tPqrrJE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/D38zCPyVIyRZg2_fFZr2tPqrrJE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/679/1CjuE46hAl8USy_wRyaz6Mgk08k.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.2.96.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:2a:aa:a8:e8:9d:9b:3c:20:f8:6f:51:c5:ce:e1:2c:96:91:
f7:39:59:60:ed:dd:f0:8a:ec:d7:18:f8:24:17:14:b5:6f:2b:
92:6c:1c:20:36:72:82:c4:67:80:f1:c1:e6:67:b1:e6:ce:42:
fe:b3:8d:14:84:8f:d4:c7:de:23:45:ef:a4:91:d9:d8:5c:f7:
1b:eb:4d:6a:18:d9:4e:da:24:1b:4e:a2:2f:0f:8e:7c:5b:db:
32:df:f0:47:67:ba:b8:2f:6c:c3:66:9d:ce:e1:0f:27:e7:a3:
c8:00:07:a5:a8:38:df:e6:75:b5:f1:e0:b2:63:6a:38:2e:d5:
b9:3d:d8:94:b7:8b:89:f4:a3:51:bf:c7:87:8f:85:ad:9e:de:
fc:96:0f:ac:a5:f2:ec:88:57:6f:d6:0f:4c:7c:82:17:09:1e:
0f:b2:86:6f:6f:6c:0e:78:b3:50:37:06:5f:e3:97:48:22:9d:
51:ca:36:a6:a2:a8:82:40:88:3e:e8:5b:a2:af:f9:82:35:d4:
34:91:80:dd:9a:9d:f6:74:dc:b7:9a:28:9b:d5:8f:8e:17:ba:
cd:28:17:d1:5e:a2:7c:86:76:d5:98:7c:0c:be:1f:54:81:e4:
27:14:5a:ba:ce:0b:66:d8:46:5b:72:a6:7b:9f:bb:2a:5c:81:
00:09:2b:9c
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBOzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwRjdG
MzMwOEZDOTUyMzI0NTk4MzZGREYxNTlBRjZCNEZBQUJBQzkxMB4XDTI1MDQwMTAx
MjgyMFoXDTI2MDMxNTAxMzAwM1owMzExMC8GA1UEAxMoRDQyOEVFMTM4RUExMDI1
RjE0NEIyRkYwNDcyNkIzRThDODI0RDNDOTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAMsffTFVfIgSZBCNE+IibTa799ft8X7RAC0WyltO5mhfThBTbZw9
r6m37GIPwP6BTcJbnhubAnzidEoLgoeql2PR8EKix9OPeiwDBKs10t5Ly5cfi7qr
HNqPXAJZBDrW7UnQJhRX29obCH4o4EeAx59Tk68VQAMMvEm9x3yJ3/5igy4izb4M
J6JAYAzU1kVUBre5lNaIAaBODqMXEn5niSyq0n2jJ8ZtgnOgtxbYv037RpaVEek3
ch4Y2pE5GkgK4pWaRDeNri5ebte6FXo4VEsVwfoBpoJuTYe8i4jqO65FyxVtjF9u
Tq0lEPSCl88N/zLYQVcswiqWzAgfknEcTy0CAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBTUKO4TjqECXxRLL/BHJrPoyCTTyTAfBgNVHSMEGDAWgBQPfzMI/JUjJFmDb98V
mva0+quskTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvNjc5L0QzOHpDUHlWSXlSWmcyX2ZGWnIydFBxcnJKRS5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0QzOHpDUHlWSXlSWmcyX2ZGWnIydFBx
cnJKRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC82NzkvMUNqdUU0NmhBbDhVU3lfd1J5YXo2TWdrMDhrLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAmcCYDANBgkqhkiG9w0BAQsFAAOCAQEAbCqqqOidmzwg+G9Rxc7hLJaR9zlZ
YO3d8Irs1xj4JBcUtW8rkmwcIDZygsRngPHB5mex5s5C/rONFISP1MfeI0XvpJHZ
2Fz3G+tNahjZTtokG06iLw+OfFvbMt/wR2e6uC9sw2adzuEPJ+ejyAAHpag43+Z1
tfHgsmNqOC7VuT3YlLeLifSjUb/Hh4+FrZ7e/JYPrKXy7IhXb9YPTHyCFwkeD7KG
b29sDnizUDcGX+OXSCKdUco2pqKogkCIPuhboq/5gjXUNJGA3Zqd9nTct5oom9WP
jhe6zSgX0V6ifIZ21Zh8DL4fVIHkJxRaus4LZthGW3Kme5+7KlyBAAkrnA==
-----END CERTIFICATE-----
Generated at Mon Apr 14 22:07:15 2025 by rpki-client