Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/307/tdxygtRh83zS3iCdXwcAJl_QbOY.roa
File:                     tdxygtRh83zS3iCdXwcAJl_QbOY.roa (raw, json)
Hash identifier:          nfb+Gsa8o6pzZLTHb7nFZBv0LXySWjX8Xf536INEtDs=
Subject key identifier:   B5:DC:72:82:D4:61:F3:7C:D2:DE:20:9D:5F:07:00:26:5F:D0:6C:E6
Certificate issuer:       /CN=FB8C78D2025F365E0B6EBA41C8B2351D8116C2A5
Certificate serial:       02
Authority key identifier: FB:8C:78:D2:02:5F:36:5E:0B:6E:BA:41:C8:B2:35:1D:81:16:C2:A5
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-4x40gJfNl4LbrpByLI1HYEWwqU.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/tdxygtRh83zS3iCdXwcAJl_QbOY.roa
Signing time:             Thu 02 Nov 2023 09:03:03 +0000
ROA not before:           Thu 02 Nov 2023 09:03:03 +0000
ROA not after:            Fri 01 Nov 2024 08:11:41 +0000
asID:                     23783
IP address blocks:        193.116.32.0/19 maxlen: 20

Validation:               OK
Signature path:           rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/-4x40gJfNl4LbrpByLI1HYEWwqU.crl
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/-4x40gJfNl4LbrpByLI1HYEWwqU.mft
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-4x40gJfNl4LbrpByLI1HYEWwqU.cer
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0ZV-xYwI81uqa_535FqXQLpHH54.crl
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0ZV-xYwI81uqa_535FqXQLpHH54.mft
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0ZV-xYwI81uqa_535FqXQLpHH54.cer
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 19 Jun 2024 23:15:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FB8C78D2025F365E0B6EBA41C8B2351D8116C2A5
        Validity
            Not Before: Nov  2 09:03:03 2023 GMT
            Not After : Nov  1 08:11:41 2024 GMT
        Subject: CN=B5DC7282D461F37CD2DE209D5F0700265FD06CE6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:39:04:f1:ee:87:22:f4:18:b3:d5:44:cb:8f:
                    14:62:b4:99:81:fc:f6:5d:e7:fa:ec:a7:c5:4e:a7:
                    31:93:b2:d4:53:7e:30:47:fc:92:be:76:75:bf:3e:
                    d0:a4:8d:66:20:7b:ec:7f:97:88:08:2a:2d:20:dc:
                    ed:83:6f:e5:a4:ce:33:b0:53:42:1f:10:cb:fc:b3:
                    64:1b:9e:86:7c:da:c3:cb:6d:42:9f:fd:89:b5:2d:
                    1a:dc:8d:36:24:d8:20:47:8e:ae:ae:a2:72:9d:9c:
                    56:aa:46:e7:f6:48:9e:1b:58:f8:26:b8:38:c4:a2:
                    f4:91:8e:d9:df:39:d2:42:94:12:77:23:c5:20:89:
                    c2:43:3f:84:d1:48:f4:09:b4:4c:e2:1f:85:dd:d8:
                    9a:f4:65:57:73:94:9c:68:dd:c0:10:30:f2:40:6a:
                    b6:2a:70:4c:cb:0b:8b:f3:22:6a:a3:48:58:a5:20:
                    ff:44:8c:73:9e:fe:d8:0d:99:34:d2:f2:23:d0:d8:
                    ef:b8:a5:24:07:20:1d:27:25:ae:ac:65:8c:fb:1a:
                    25:ea:d5:43:96:e1:aa:cb:ca:83:97:95:40:de:4c:
                    38:de:d0:c7:d6:90:d4:5b:c4:e9:25:65:d9:4b:b5:
                    47:46:61:18:e6:19:60:01:d6:45:66:80:d9:56:98:
                    45:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B5:DC:72:82:D4:61:F3:7C:D2:DE:20:9D:5F:07:00:26:5F:D0:6C:E6
            X509v3 Authority Key Identifier:
                keyid:FB:8C:78:D2:02:5F:36:5E:0B:6E:BA:41:C8:B2:35:1D:81:16:C2:A5

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/-4x40gJfNl4LbrpByLI1HYEWwqU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-4x40gJfNl4LbrpByLI1HYEWwqU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/tdxygtRh83zS3iCdXwcAJl_QbOY.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  193.116.32.0/19

    Signature Algorithm: sha256WithRSAEncryption
         2b:f1:46:cc:1a:d9:0c:19:cf:c8:66:0b:4f:16:78:84:cb:51:
         5a:f1:4b:5f:ae:d5:07:b2:48:46:1e:b8:e4:c5:55:a8:fa:53:
         c2:62:bc:0f:c4:6a:be:f5:78:c3:f3:61:4f:dc:2e:2d:7a:13:
         33:51:ae:d2:f6:a1:32:e8:81:63:ab:50:ac:06:5d:4b:d2:18:
         84:e7:94:62:8f:b4:02:02:51:22:f9:6d:3d:28:38:4b:03:5d:
         af:ec:04:dd:f7:17:6d:2e:e4:a5:4b:57:01:ea:61:4f:f8:f9:
         ed:6e:c3:a7:1f:67:52:9d:13:d5:c3:0b:11:a2:8e:15:37:7b:
         5d:33:30:7e:29:d6:13:46:51:90:74:7b:62:46:32:26:72:68:
         69:e1:da:af:76:f6:63:a3:c2:5a:a0:63:14:90:06:07:76:d4:
         16:85:12:53:ee:d8:50:32:3d:ff:be:9b:7a:30:9b:f5:47:7d:
         ab:65:3f:3b:7b:94:f3:bf:f0:91:8e:3d:12:9b:01:41:7d:2d:
         b0:ef:be:c6:9a:50:2f:91:2c:b3:7e:e3:fa:4e:f8:e9:4d:ee:
         38:2b:62:7f:23:27:4a:66:f4:0e:05:34:b9:b2:1d:d2:dd:07:
         d5:a3:b5:bd:7f:30:ce:a5:76:00:37:cc:2b:3b:ee:9a:ab:f6:
         2a:ba:78:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 02:01:40 2024 by rpki-client on console-fra.rpki-client.org