Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10173/lppKhi6KozbLzGffMsEX_SD-1M0.roa
File:                     lppKhi6KozbLzGffMsEX_SD-1M0.roa (raw, json)
Hash identifier:          g+kcBxnUfB06YM1lvM2yQGhSqVt9LaJLkt4aZ1kKUJc=
Subject key identifier:   96:9A:4A:86:2E:8A:A3:36:CB:CC:67:DF:32:C1:17:FD:20:FE:D4:CD
Certificate issuer:       /CN=101A90E4E74C403ABE8E5E0A1FE8E4157ABD2AE7
Certificate serial:       9F
Authority key identifier: 10:1A:90:E4:E7:4C:40:3A:BE:8E:5E:0A:1F:E8:E4:15:7A:BD:2A:E7
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/EBqQ5OdMQDq-jl4KH-jkFXq9Kuc.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10173/lppKhi6KozbLzGffMsEX_SD-1M0.roa
Signing time:             Thu 29 Feb 2024 01:30:06 +0000
ROA not before:           Thu 29 Feb 2024 01:30:06 +0000
ROA not after:            Fri 14 Feb 2025 01:30:03 +0000
asID:                     18126
IP address blocks:        202.142.224.0/19 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10173/EBqQ5OdMQDq-jl4KH-jkFXq9Kuc.crl
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10173/EBqQ5OdMQDq-jl4KH-jkFXq9Kuc.mft
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/EBqQ5OdMQDq-jl4KH-jkFXq9Kuc.cer
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 22 Jun 2024 01:32:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 159 (0x9f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=101A90E4E74C403ABE8E5E0A1FE8E4157ABD2AE7
        Validity
            Not Before: Feb 29 01:30:06 2024 GMT
            Not After : Feb 14 01:30:03 2025 GMT
        Subject: CN=969A4A862E8AA336CBCC67DF32C117FD20FED4CD
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:fe:39:3f:3d:91:5d:71:1b:93:10:8e:28:1f:31:
                    f8:b4:77:f2:67:0a:8c:a2:4b:8a:94:3b:92:ff:44:
                    7a:62:cf:3c:d1:eb:7d:a9:23:42:37:42:c7:68:f2:
                    92:da:4b:99:d0:df:e7:38:c8:5e:f6:f4:e7:ba:e7:
                    e4:68:ee:dc:1d:b2:65:45:77:bf:fd:86:b2:70:2e:
                    55:f6:cc:58:b4:0b:c8:10:fa:5b:6e:be:5d:24:d1:
                    f9:d3:7a:4e:ca:ef:c6:16:10:d2:d2:a9:08:a1:46:
                    e1:c8:68:3b:70:75:d7:72:5d:07:b9:c1:67:95:95:
                    9a:e5:9c:47:83:32:ae:6b:e7:ec:37:53:03:78:cf:
                    6c:ed:52:fa:b5:16:9d:81:7b:27:60:32:94:26:f9:
                    0a:16:b4:7f:95:05:7f:30:b5:fd:ea:77:8b:d7:1f:
                    74:a1:d4:41:d9:8b:9b:25:2b:1d:89:21:f2:34:4e:
                    9d:51:ef:d9:84:bf:7a:46:f4:f2:d8:05:f0:4e:ad:
                    0d:43:9f:dd:1b:7e:90:d7:a3:5a:01:f1:31:eb:3a:
                    75:3d:58:60:1c:03:f4:d4:f5:1a:c4:6e:a9:ec:75:
                    1c:66:40:c4:d4:07:1f:54:ec:02:c9:3f:f7:e5:0d:
                    2d:db:64:91:7c:74:72:f1:01:1b:78:83:e8:71:c8:
                    ed:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                96:9A:4A:86:2E:8A:A3:36:CB:CC:67:DF:32:C1:17:FD:20:FE:D4:CD
            X509v3 Authority Key Identifier:
                keyid:10:1A:90:E4:E7:4C:40:3A:BE:8E:5E:0A:1F:E8:E4:15:7A:BD:2A:E7

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10173/EBqQ5OdMQDq-jl4KH-jkFXq9Kuc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/EBqQ5OdMQDq-jl4KH-jkFXq9Kuc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10173/lppKhi6KozbLzGffMsEX_SD-1M0.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  202.142.224.0/19

    Signature Algorithm: sha256WithRSAEncryption
         60:46:1e:08:62:b6:5c:12:09:3d:29:35:12:6c:57:ee:77:9a:
         bf:df:75:2a:6c:94:11:60:ce:e3:62:88:b0:0c:cb:c5:26:51:
         67:02:30:43:a7:1a:62:78:74:da:e7:8f:ff:4b:58:9f:a7:11:
         fe:6c:3b:47:65:49:2c:15:92:10:77:17:99:d2:99:82:1f:e4:
         c7:69:3c:c9:9f:54:d7:3c:2c:ac:ae:19:a1:83:4a:25:fa:42:
         ab:2a:cc:ef:ec:f2:9e:7c:3f:92:7f:1e:0f:74:38:a8:f7:9e:
         a5:fe:c3:89:44:32:3d:03:be:ec:9c:2e:3b:75:36:9e:de:d9:
         ea:95:fb:3a:79:be:3f:06:15:34:d7:55:9d:31:fa:bc:d0:90:
         5f:bb:50:0c:81:97:9c:ab:3f:55:e9:7c:c6:2d:24:ea:74:84:
         d5:fb:2a:cd:2b:9b:6a:bd:a1:d4:ec:fd:e6:90:a8:ae:34:71:
         89:43:57:fe:70:a1:e1:f5:1c:b9:3f:7f:2d:fa:79:6d:ac:91:
         c9:10:ee:18:73:3b:8c:5b:d4:e7:9f:19:03:17:d8:4f:ff:73:
         c7:13:ad:bd:d8:99:0a:62:70:29:60:b4:99:7f:fd:70:30:05:
         43:8c:70:96:d2:8d:c3:df:e4:e6:d1:7f:e7:d4:4a:cb:5a:02:
         09:77:12:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 02:41:46 2024 by rpki-client on console-ams.rpki-client.org