Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Jp5nVZYYg4NuzvpYuiePfACpcUA.roa
File:                     Jp5nVZYYg4NuzvpYuiePfACpcUA.roa (raw, json)
Hash identifier:          lS+Lv1dGqrjq6tQvrPtfSs1QMmBGnhoweocjkqAEGSk=
Subject key identifier:   26:9E:67:55:96:18:83:83:6E:CE:FA:58:BA:27:8F:7C:00:A9:71:40
Certificate issuer:       /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial:       0441
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Jp5nVZYYg4NuzvpYuiePfACpcUA.roa
Signing time:             Thu 27 Jul 2023 16:43:08 +0000
ROA not before:           Thu 27 Jul 2023 16:43:08 +0000
ROA not after:            Sun 14 Jul 2024 01:30:03 +0000
asID:                     9605
IP address blocks:        220.210.70.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 23 Jun 2024 11:53:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1089 (0x441)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
        Validity
            Not Before: Jul 27 16:43:08 2023 GMT
            Not After : Jul 14 01:30:03 2024 GMT
        Subject: CN=269E6755961883836ECEFA58BA278F7C00A97140
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:aa:ee:cb:6c:f6:a0:4d:e1:12:f9:74:94:6c:
                    43:13:a0:d7:24:ce:64:e2:61:65:29:61:05:01:f5:
                    f2:41:8d:1f:0f:7d:fb:e0:0c:c9:c9:02:7e:48:d3:
                    76:47:11:bf:b0:d7:e2:fa:11:8e:ec:76:98:e1:b1:
                    e7:8a:d0:a2:06:7e:c3:ac:69:32:94:1f:55:6b:5d:
                    f2:a8:34:73:6d:11:0f:71:57:1d:17:47:25:77:63:
                    23:45:9d:eb:c6:5d:e8:c5:fa:0a:a0:66:40:af:3d:
                    38:34:80:24:c1:91:8e:e9:0d:32:97:49:25:c8:2e:
                    fe:aa:01:90:59:84:16:0e:37:34:36:08:04:3b:af:
                    19:76:33:ce:89:b0:4b:94:a9:74:06:be:53:bf:35:
                    c5:26:9e:98:7e:12:9b:5b:6c:cc:e2:88:4d:35:05:
                    15:3f:c4:16:20:90:51:5f:43:65:a0:a1:fc:41:ad:
                    58:0c:7d:37:d4:68:19:38:de:40:7d:94:17:cf:f9:
                    13:71:c3:23:71:9d:5f:fa:31:fb:0f:99:00:16:1d:
                    46:5e:6d:db:82:a5:14:4e:40:27:8d:40:28:42:11:
                    e7:bc:e0:04:8e:0c:5f:b3:a4:03:51:28:46:4b:14:
                    50:9d:91:c2:4e:45:1f:ce:0a:a6:11:17:b0:f8:dc:
                    de:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                26:9E:67:55:96:18:83:83:6E:CE:FA:58:BA:27:8F:7C:00:A9:71:40
            X509v3 Authority Key Identifier:
                keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Jp5nVZYYg4NuzvpYuiePfACpcUA.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  220.210.70.0/24

    Signature Algorithm: sha256WithRSAEncryption
         8e:f9:55:43:0a:56:14:ac:18:82:88:57:b9:ab:40:30:e1:93:
         8d:ec:9b:98:41:6b:d6:18:42:e6:67:b8:5c:99:ee:d3:b9:56:
         c6:3b:56:05:a9:da:3f:19:f5:88:50:9c:f5:94:20:8c:37:34:
         a4:89:24:d4:54:d5:0c:83:b2:1c:9a:9a:f8:b6:35:58:03:71:
         a5:47:a5:48:e7:c3:84:1e:54:88:37:ca:3b:a3:0e:92:a0:9d:
         e7:18:6e:d3:8d:b3:81:0a:5b:49:f2:97:07:f8:40:0b:ce:e0:
         b8:be:74:d0:e8:44:9d:9c:63:e5:32:f7:db:f8:e7:28:97:e7:
         94:f3:ec:9c:2b:4c:dc:a3:99:d8:70:1c:cf:ef:0a:9a:8a:1e:
         d6:48:12:ee:a0:fc:a7:b1:ed:27:1b:41:29:bb:50:ba:cf:d5:
         55:e2:9c:f9:8b:d0:60:d3:fe:0e:0d:99:0b:83:29:fc:f0:9a:
         94:f9:be:d8:10:9c:48:77:e4:4f:6b:93:98:69:b6:f6:1d:f9:
         6c:21:06:b9:3d:d3:3a:67:ee:ee:92:2f:1f:2a:89:44:fb:ef:
         31:97:94:4b:3c:98:8f:55:90:87:a7:bc:1b:bb:83:16:c7:20:
         e7:d7:cf:71:40:4a:06:da:b2:95:9c:eb:6f:80:95:41:f8:dd:
         e6:14:43:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 14:31:52 2024 by rpki-client on console-ams.rpki-client.org