Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/751/eRwyrIpqduObobk03-ei6JQuBjc.roa
File: eRwyrIpqduObobk03-ei6JQuBjc.roa (raw, json)
Hash identifier: 3Q/oAGeLVIDDyjAJqZgn/l030yIiIIXBV5LSqlLguvA=
Subject key identifier: 79:1C:32:AC:8A:6A:76:E3:9B:A1:B9:34:DF:E7:A2:E8:94:2E:06:37
Certificate issuer: /CN=7B49A8775994827975AB37E6DF96064C924783F1
Certificate serial: 22
Authority key identifier: 7B:49:A8:77:59:94:82:79:75:AB:37:E6:DF:96:06:4C:92:47:83:F1
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/e0mod1mUgnl1qzfm35YGTJJHg_E.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/751/eRwyrIpqduObobk03-ei6JQuBjc.roa
Signing time: Sat 29 Mar 2025 06:01:03 +0000
ROA not before: Sat 29 Mar 2025 06:01:03 +0000
ROA not after: Sun 15 Mar 2026 01:30:03 +0000
asID: 18129
IP address blocks: 219.111.208.0/20 maxlen: 20
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/751/e0mod1mUgnl1qzfm35YGTJJHg_E.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/751/e0mod1mUgnl1qzfm35YGTJJHg_E.mft
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/e0mod1mUgnl1qzfm35YGTJJHg_E.cer
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 17 Apr 2025 14:26:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34 (0x22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7B49A8775994827975AB37E6DF96064C924783F1
Validity
Not Before: Mar 29 06:01:03 2025 GMT
Not After : Mar 15 01:30:03 2026 GMT
Subject: CN=791C32AC8A6A76E39BA1B934DFE7A2E8942E0637
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:97:f4:f1:0f:b9:14:21:74:15:65:81:92:5f:
f6:86:69:77:6c:88:55:2f:b6:14:9e:59:43:82:15:
e1:8c:ae:f7:09:0f:fc:0e:4a:84:60:b4:88:14:6e:
bf:17:86:80:c1:5c:d8:a4:cf:03:99:f9:3a:1b:c4:
17:0e:a5:0f:a9:17:02:ca:5f:7c:73:b1:7d:96:61:
27:54:91:e2:c8:62:97:d2:df:51:a0:c0:09:1f:ec:
a7:e4:d6:87:ae:79:ff:73:a5:ee:32:5e:18:4f:9f:
76:28:f0:78:4c:2c:af:2c:e2:34:fe:04:53:91:83:
99:e9:42:d4:60:e7:3a:19:f9:a2:59:da:d1:6e:fb:
27:f8:14:1b:fc:66:f3:fa:a8:2d:ed:5e:d8:f1:78:
41:8a:3d:46:65:cb:89:fb:95:9c:bf:fb:ef:90:28:
a0:4b:07:4f:d1:05:c8:17:85:6c:c5:c6:8b:6c:92:
64:ec:14:e4:f5:73:ef:c4:d9:96:be:cf:90:ee:13:
d2:13:46:f5:16:40:c5:7c:87:c7:95:85:69:80:d6:
e9:c8:b2:0c:7e:e8:05:29:d0:41:21:5b:ac:e1:df:
fd:d1:66:85:4a:bf:8c:a8:a8:d6:d1:2b:e7:d9:26:
75:62:2f:5d:0c:72:62:a0:fc:49:93:52:15:06:f9:
55:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:1C:32:AC:8A:6A:76:E3:9B:A1:B9:34:DF:E7:A2:E8:94:2E:06:37
X509v3 Authority Key Identifier:
keyid:7B:49:A8:77:59:94:82:79:75:AB:37:E6:DF:96:06:4C:92:47:83:F1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/751/e0mod1mUgnl1qzfm35YGTJJHg_E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/e0mod1mUgnl1qzfm35YGTJJHg_E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/751/eRwyrIpqduObobk03-ei6JQuBjc.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
219.111.208.0/20
Signature Algorithm: sha256WithRSAEncryption
7e:0f:a9:b6:fb:5f:c1:69:d3:e6:06:41:ec:26:2d:1b:74:9b:
a1:ce:73:ee:9e:27:03:8f:95:ca:16:be:f7:74:1d:60:b3:78:
87:6b:a0:06:44:21:2b:c9:98:2c:39:1c:25:40:9c:58:e3:89:
6f:13:cc:79:d9:94:ec:50:7b:f6:10:61:9c:ce:b6:83:8f:b8:
62:51:0d:60:e4:89:71:ca:7b:1a:60:8a:ef:1d:3b:82:9f:f1:
d7:d9:57:69:8c:35:37:0f:75:ef:8f:0c:5c:a3:ed:98:c8:16:
a8:2c:12:c7:b9:63:ff:74:28:c1:6b:fd:26:72:86:be:59:49:
9e:ea:3f:e4:88:ad:4b:a0:b6:e7:b3:02:dc:3c:3a:78:03:c9:
94:2b:5c:5d:36:43:b2:3f:ef:cf:fb:41:ba:e9:6a:e6:cf:69:
81:b7:53:61:9a:a1:03:f3:30:ec:e5:75:b3:ce:28:f4:b0:11:
99:c3:4b:27:54:74:1c:6e:55:22:18:c5:f0:2b:e4:b8:1c:a3:
dd:28:1b:95:21:58:9e:9a:10:95:d6:1d:eb:cb:0f:ee:8a:9d:
25:ef:41:25:b2:96:3e:1d:36:3b:19:ce:8e:6e:55:ba:a8:c9:
ac:98:e8:6a:9f:5a:75:40:70:31:d6:ff:ec:95:9f:68:e8:b2:
c4:ca:a9:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 11:23:59 2025 by rpki-client