Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1937/TVcUV_FThpQoYehIBm3EqP_OMz0.roa
File:                     TVcUV_FThpQoYehIBm3EqP_OMz0.roa (raw, json)
Hash identifier:          Ql0jY1D3ohtfVNiN80ZxF4MEJi2ZiNuxt8Dlcg5y3pY=
Subject key identifier:   4D:57:14:57:F1:53:86:94:28:61:E8:48:06:6D:C4:A8:FF:CE:33:3D
Certificate issuer:       /CN=C60076FC28F04DEB9817A3482226942CBEF1F80D
Certificate serial:       09
Authority key identifier: C6:00:76:FC:28:F0:4D:EB:98:17:A3:48:22:26:94:2C:BE:F1:F8:0D
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xgB2_CjwTeuYF6NIIiaULL7x-A0.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/TVcUV_FThpQoYehIBm3EqP_OMz0.roa
Signing time:             Tue 02 Apr 2024 00:13:09 +0000
ROA not before:           Tue 02 Apr 2024 00:13:09 +0000
ROA not after:            Sat 15 Mar 2025 01:30:02 +0000
asID:                     2497
IP address blocks:        133.183.106.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/xgB2_CjwTeuYF6NIIiaULL7x-A0.crl
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/xgB2_CjwTeuYF6NIIiaULL7x-A0.mft
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xgB2_CjwTeuYF6NIIiaULL7x-A0.cer
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 02 Dec 2024 22:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 9 (0x9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=C60076FC28F04DEB9817A3482226942CBEF1F80D
        Validity
            Not Before: Apr  2 00:13:09 2024 GMT
            Not After : Mar 15 01:30:02 2025 GMT
        Subject: CN=4D571457F15386942861E848066DC4A8FFCE333D
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:7b:ee:a7:2a:c8:66:44:cc:a6:d6:7c:8b:1e:
                    5d:83:90:b7:67:8f:b4:8f:b5:3d:26:bb:15:fb:8a:
                    cf:9b:b1:48:3f:17:52:96:09:33:bb:48:21:6b:19:
                    77:28:88:f7:ec:10:c9:99:ba:39:ca:df:db:1e:e5:
                    7d:47:99:3f:20:1d:f5:14:e5:8c:73:0a:bf:ed:fa:
                    10:80:5a:a3:a0:0d:0c:a9:a1:1e:7b:f1:48:6a:5d:
                    01:d3:99:9b:69:97:30:13:db:07:99:f0:4a:bd:52:
                    e9:06:0c:f8:97:99:43:7b:70:94:ad:18:b5:f7:79:
                    37:fd:f0:f3:13:0a:1f:fe:7a:b3:d6:e7:be:ea:6b:
                    ec:3b:f3:f7:65:22:cd:13:25:a6:ad:73:8b:93:1f:
                    fd:19:92:15:31:01:9e:f7:8b:45:3a:34:f3:c4:64:
                    7c:d6:fd:63:a2:c2:6e:ec:2f:66:82:91:b1:3a:ac:
                    1e:23:49:df:1a:59:1d:c8:b7:3c:fe:f7:a4:c2:7e:
                    07:a9:36:fc:24:25:77:1c:88:31:bc:e4:d3:0d:5b:
                    2b:e8:6a:86:d7:79:75:f9:8b:22:06:d2:43:b3:30:
                    bc:ed:6c:cf:25:34:b5:32:c0:fa:f5:25:1b:83:a6:
                    bd:79:9e:34:51:99:c1:a6:38:66:ae:a7:6c:54:95:
                    23:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4D:57:14:57:F1:53:86:94:28:61:E8:48:06:6D:C4:A8:FF:CE:33:3D
            X509v3 Authority Key Identifier:
                keyid:C6:00:76:FC:28:F0:4D:EB:98:17:A3:48:22:26:94:2C:BE:F1:F8:0D

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/xgB2_CjwTeuYF6NIIiaULL7x-A0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xgB2_CjwTeuYF6NIIiaULL7x-A0.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/TVcUV_FThpQoYehIBm3EqP_OMz0.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  133.183.106.0/24

    Signature Algorithm: sha256WithRSAEncryption
         c6:92:52:64:4c:7f:a3:4b:f9:63:00:df:88:d1:e2:46:4e:ac:
         63:da:bf:3f:94:e1:fa:52:2a:22:43:8f:a2:45:c1:b7:02:d3:
         82:44:8a:7f:6e:5c:e9:3c:59:41:e3:e5:71:ee:50:25:13:27:
         d9:f6:11:52:cb:4e:7c:14:b4:85:e5:d9:ea:97:60:a5:70:29:
         9b:18:65:fb:37:66:66:cc:d3:3a:fa:15:e4:3d:97:d1:eb:98:
         91:f9:8c:e8:77:08:77:15:06:9d:09:52:b1:cb:7f:57:d7:5f:
         eb:0e:eb:7c:48:f9:8f:ea:41:10:e3:ed:6c:e8:45:dc:c8:71:
         c4:0c:d2:94:7f:c6:ae:cf:96:ee:14:f5:88:c1:9b:e0:32:21:
         54:88:79:46:42:65:02:0e:57:80:1b:d9:9a:94:a5:88:92:e1:
         cd:bc:00:96:0c:45:c1:0f:45:23:c2:4e:38:70:17:f4:e1:71:
         a7:48:78:3d:44:4c:a5:ed:47:25:bb:e4:2c:4a:a8:58:37:46:
         bd:1e:36:6f:11:80:41:a0:b0:d0:02:ef:a8:53:e0:99:19:33:
         0a:3a:2a:4e:0a:cd:78:c9:29:02:88:f4:f0:2d:18:57:25:f8:
         3c:77:23:04:69:3e:73:54:68:c3:7e:78:f1:2d:8c:68:ee:05:
         e9:74:8b:ed
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgIBCTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDNjAw
NzZGQzI4RjA0REVCOTgxN0EzNDgyMjI2OTQyQ0JFRjFGODBEMB4XDTI0MDQwMjAw
MTMwOVoXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoNEQ1NzE0NTdGMTUzODY5
NDI4NjFFODQ4MDY2REM0QThGRkNFMzMzRDCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALx77qcqyGZEzKbWfIseXYOQt2ePtI+1PSa7FfuKz5uxSD8XUpYJ
M7tIIWsZdyiI9+wQyZm6Ocrf2x7lfUeZPyAd9RTljHMKv+36EIBao6ANDKmhHnvx
SGpdAdOZm2mXMBPbB5nwSr1S6QYM+JeZQ3twlK0Ytfd5N/3w8xMKH/56s9bnvupr
7Dvz92UizRMlpq1zi5Mf/RmSFTEBnveLRTo088RkfNb9Y6LCbuwvZoKRsTqsHiNJ
3xpZHci3PP73pMJ+B6k2/CQldxyIMbzk0w1bK+hqhtd5dfmLIgbSQ7MwvO1szyU0
tTLA+vUlG4OmvXmeNFGZwaY4Zq6nbFSVI7cCAwEAAaOCAiYwggIiMB0GA1UdDgQW
BBRNVxRX8VOGlChh6EgGbcSo/84zPTAfBgNVHSMEGDAWgBTGAHb8KPBN65gXo0gi
JpQsvvH4DTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa
oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMTkzNy94Z0IyX0Nqd1RldVlGNk5JSWlhVUxMN3gtQTAuY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC94Z0IyX0Nqd1RldVlGNk5JSWlhVUxM
N3gtQTAuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI
KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMTkzNy9UVmNVVl9GVGhwUW9ZZWhJQm0zRXFQX09NejAucm9h
MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv
cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA
ATAGAwQAhbdqMA0GCSqGSIb3DQEBCwUAA4IBAQDGklJkTH+jS/ljAN+I0eJGTqxj
2r8/lOH6UioiQ4+iRcG3AtOCRIp/blzpPFlB4+Vx7lAlEyfZ9hFSy058FLSF5dnq
l2ClcCmbGGX7N2ZmzNM6+hXkPZfR65iR+Yzodwh3FQadCVKxy39X11/rDut8SPmP
6kEQ4+1s6EXcyHHEDNKUf8auz5buFPWIwZvgMiFUiHlGQmUCDleAG9malKWIkuHN
vACWDEXBD0Ujwk44cBf04XGnSHg9REyl7Uclu+QsSqhYN0a9HjZvEYBBoLDQAu+o
U+CZGTMKOipOCs14ySkCiPTwLRhXJfg8dyMEaT5zVGjDfnjxLYxo7gXpdIvt
-----END CERTIFICATE-----
Generated at Mon Nov 25 23:59:03 2024 by rpki-client on console-fra.rpki-client.org