Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/sMh0SYfmy_f6H6vN5DTcDVVmUvc.roa
File:                     sMh0SYfmy_f6H6vN5DTcDVVmUvc.roa (raw, json)
Hash identifier:          j7A1OmwfNcj5pXhper4WlE5bWt+V5QvqTxp/gC8ClFE=
Subject key identifier:   B0:C8:74:49:87:E6:CB:F7:FA:1F:AB:CD:E4:34:DC:0D:55:66:52:F7
Certificate issuer:       /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial:       0903
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sMh0SYfmy_f6H6vN5DTcDVVmUvc.roa
Signing time:             Tue 30 Apr 2024 02:28:37 +0000
ROA not before:           Tue 30 Apr 2024 02:28:37 +0000
ROA not after:            Tue 15 Apr 2025 01:30:02 +0000
asID:                     9605
IP address blocks:        1.76.160.0/19 maxlen: 19

Validation:               OK
Signature path:           rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 23 Jun 2024 14:09:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2307 (0x903)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
        Validity
            Not Before: Apr 30 02:28:37 2024 GMT
            Not After : Apr 15 01:30:02 2025 GMT
        Subject: CN=B0C8744987E6CBF7FA1FABCDE434DC0D556652F7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:ad:05:4f:7b:3a:50:c1:14:d7:1c:e2:14:3d:
                    d9:3b:1a:25:e4:ed:9c:ff:f7:e3:b9:ac:dd:b4:7b:
                    6d:e1:3d:0c:0f:c8:70:ae:7e:97:1d:41:28:5c:b9:
                    11:e1:63:2a:3b:73:51:2e:22:31:a8:ff:8a:bb:64:
                    ef:96:3e:e3:c0:d1:d4:46:6c:38:c1:39:3c:37:12:
                    ef:df:4b:ff:f5:ca:90:39:31:30:d9:6f:5b:cc:a7:
                    79:41:bc:c3:a9:39:01:39:56:78:f9:5c:78:bf:bb:
                    b8:29:dc:b1:e7:b8:13:45:5a:58:f0:a3:a7:65:45:
                    19:b4:a4:b0:0b:b4:aa:dc:56:4a:67:37:a0:34:7d:
                    52:5b:e8:85:76:d2:18:e0:51:ca:43:9d:5f:4d:63:
                    1d:f4:9d:ed:56:77:db:ca:e6:a9:ab:20:20:a0:d5:
                    17:83:48:71:31:19:d4:75:1c:13:86:a1:78:36:9a:
                    22:d9:b6:36:ec:ea:e9:b4:5e:87:c9:3e:11:11:99:
                    6c:be:cd:6c:aa:04:37:46:ad:85:43:d8:47:a0:43:
                    8e:0f:39:20:1c:18:ee:e1:c1:f8:40:8a:30:9b:f3:
                    9e:26:a3:6c:90:6e:fb:57:a8:a0:ad:68:fc:f4:f9:
                    4e:79:f0:3c:7f:69:75:13:60:ef:0a:30:a8:f8:55:
                    a0:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B0:C8:74:49:87:E6:CB:F7:FA:1F:AB:CD:E4:34:DC:0D:55:66:52:F7
            X509v3 Authority Key Identifier:
                keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sMh0SYfmy_f6H6vN5DTcDVVmUvc.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  1.76.160.0/19

    Signature Algorithm: sha256WithRSAEncryption
         7c:cd:c8:42:96:f6:93:15:41:7b:ee:4d:21:2e:1d:ee:c8:1b:
         1a:29:57:57:e3:3b:66:0e:3b:27:48:ea:35:31:92:47:03:a5:
         06:1d:44:57:b5:75:fb:54:af:f0:e3:be:97:5f:c8:7f:b2:07:
         18:c6:68:ad:7c:a4:d7:99:9b:fc:c7:b0:60:00:5b:25:6b:a6:
         bd:fe:d8:f6:87:6f:43:cf:7d:ed:b9:3a:36:ab:70:bf:3e:05:
         aa:8d:be:f9:cc:a0:94:0d:8f:05:b8:3d:b4:63:8c:3d:22:63:
         00:e2:3e:af:5c:57:d6:0a:f1:40:79:bb:b4:f5:d8:ed:02:f8:
         29:6a:61:67:f1:2c:ef:05:b6:ea:2c:65:18:d0:ad:8c:c2:2a:
         0e:be:85:cb:22:a1:c8:eb:90:42:e9:bb:76:a4:62:64:15:6a:
         6c:ef:03:fd:78:b9:0f:e2:27:04:dd:54:ff:3d:2b:4d:83:6d:
         f0:13:1b:0c:9f:a0:36:6a:8b:cf:50:f7:ff:17:51:f1:b4:cf:
         9a:b8:2a:30:f5:d0:68:20:cf:5a:8d:6c:62:dd:7f:73:25:a0:
         35:ed:8d:74:9a:44:35:4c:76:23:e3:5e:22:57:60:23:07:5e:
         12:30:bc:7c:ce:59:14:41:88:45:d6:37:e5:24:92:5c:74:04:
         17:a3:cf:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 17 11:39:13 2024 by rpki-client on console-fra.rpki-client.org