$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/247/a9QLK8J7V3Tt-8q6Pyj8JYZjDNw.roa File: a9QLK8J7V3Tt-8q6Pyj8JYZjDNw.roa (raw, json) Hash identifier: aAGKhG9v7167F49S7qhf439gy8PuIwGKOGOV12G3m0U= Subject key identifier: 6B:D4:0B:2B:C2:7B:57:74:ED:FB:CA:BA:3F:28:FC:25:86:63:0C:DC Certificate issuer: /CN=9A21BDFF2DCAFCC138F5BFD6C0330D0219E0F532 Certificate serial: E1 Authority key identifier: 9A:21:BD:FF:2D:CA:FC:C1:38:F5:BF:D6:C0:33:0D:02:19:E0:F5:32 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/miG9_y3K_ME49b_WwDMNAhng9TI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/a9QLK8J7V3Tt-8q6Pyj8JYZjDNw.roa Signing time: Fri 31 May 2024 01:31:23 +0000 ROA not before: Fri 31 May 2024 01:31:23 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 9370 IP address blocks: 59.106.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/miG9_y3K_ME49b_WwDMNAhng9TI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/miG9_y3K_ME49b_WwDMNAhng9TI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/miG9_y3K_ME49b_WwDMNAhng9TI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A21BDFF2DCAFCC138F5BFD6C0330D0219E0F532 Validity Not Before: May 31 01:31:23 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=6BD40B2BC27B5774EDFBCABA3F28FC2586630CDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:78:6a:61:f5:44:15:36:b9:90:d3:e5:19:f7: 5f:a9:70:e3:2d:c2:66:fa:54:e6:be:d8:8b:77:b1: cd:d2:f8:cb:b2:08:f8:96:bb:a5:7c:f7:f9:41:f1: 5e:f2:45:a8:f5:a9:19:1a:80:f8:56:91:e8:7a:ec: 05:04:30:25:e6:cc:06:8a:78:fb:ce:a2:8c:0b:fd: 8e:3d:09:a4:40:d2:13:2b:43:be:0a:ec:15:ef:2c: 68:7a:df:87:1c:a6:86:d9:bd:be:a8:e9:f6:3c:ab: 7a:a1:5c:d5:a4:0f:4f:ca:b5:d3:01:7c:51:fa:f6: 6f:2c:91:42:83:c8:34:33:4a:3e:ee:7b:a2:55:a5: 05:11:39:fb:b3:3a:90:92:e6:2f:4c:31:bd:53:40: 93:c5:78:63:be:ae:58:23:99:a4:3c:4f:dd:bd:b4: 62:e4:aa:9c:d6:26:35:8e:cd:f4:e5:e7:f0:33:66: 27:cb:dc:0f:f5:21:c2:4b:28:e4:0d:11:05:19:23: 28:88:d2:a7:51:6e:34:8a:56:9a:e0:32:31:b6:cd: 91:32:5e:6e:25:a8:10:fe:6e:35:82:3b:f9:c6:36: 88:00:85:9c:a2:e3:05:ca:de:26:3c:05:2f:12:a4: 9a:e4:7a:b3:2a:26:85:a0:67:8e:04:fa:4e:03:0c: 7f:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:D4:0B:2B:C2:7B:57:74:ED:FB:CA:BA:3F:28:FC:25:86:63:0C:DC X509v3 Authority Key Identifier: keyid:9A:21:BD:FF:2D:CA:FC:C1:38:F5:BF:D6:C0:33:0D:02:19:E0:F5:32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/miG9_y3K_ME49b_WwDMNAhng9TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/miG9_y3K_ME49b_WwDMNAhng9TI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/a9QLK8J7V3Tt-8q6Pyj8JYZjDNw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.106.128.0/18 Signature Algorithm: sha256WithRSAEncryption 30:06:8e:62:4b:9f:42:63:9a:e2:67:dc:c6:f8:04:b5:f4:7e: 20:11:40:fe:a9:e9:be:e1:fc:74:93:f5:2e:79:39:53:b8:4f: 1d:dc:09:b6:70:c9:51:fb:9f:f7:73:a1:23:d7:af:f8:30:b0: dc:aa:76:86:6d:cb:1b:8c:23:53:f5:6c:1f:8a:32:f7:8a:de: 68:0b:a4:4c:12:85:0d:8d:00:3a:6a:8b:92:db:71:97:f2:41: 78:5a:4f:3a:22:f1:13:1f:47:3a:19:41:6a:29:15:fe:c7:8a: d1:19:c9:43:54:a1:99:32:b7:e0:2a:29:66:56:e8:c3:6b:9d: b8:ec:bf:c7:d2:4d:8c:81:77:6c:b7:07:fb:71:a4:50:d0:0f: ed:6d:94:15:23:74:03:d7:2a:07:a3:8b:e2:ba:1a:0d:a0:c6: ec:8b:b8:2a:22:05:e7:9b:0d:76:8b:cf:98:26:b4:a8:c7:68: 60:d7:ea:3d:21:16:14:3e:d3:08:18:1c:05:4a:ce:0b:f1:45: 67:49:96:5b:a0:34:e1:8f:52:c3:20:9a:4c:72:60:4c:52:95: 16:4e:b2:e8:40:79:b7:f8:a3:98:99:32:fc:f9:49:66:96:c6: 10:cc:89:75:c8:7a:c9:f0:bc:61:98:9a:64:e1:83:93:99:c5: 12:66:af:c8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUEy MUJERkYyRENBRkNDMTM4RjVCRkQ2QzAzMzBEMDIxOUUwRjUzMjAeFw0yNDA1MzEw MTMxMjNaFw0yNTA1MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDZCRDQwQjJCQzI3QjU3 NzRFREZCQ0FCQTNGMjhGQzI1ODY2MzBDREMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgeGph9UQVNrmQ0+UZ91+pcOMtwmb6VOa+2It3sc3S+MuyCPiW u6V89/lB8V7yRaj1qRkagPhWkeh67AUEMCXmzAaKePvOoowL/Y49CaRA0hMrQ74K 7BXvLGh634ccpobZvb6o6fY8q3qhXNWkD0/KtdMBfFH69m8skUKDyDQzSj7ue6JV pQUROfuzOpCS5i9MMb1TQJPFeGO+rlgjmaQ8T929tGLkqpzWJjWOzfTl5/AzZifL 3A/1IcJLKOQNEQUZIyiI0qdRbjSKVprgMjG2zZEyXm4lqBD+bjWCO/nGNogAhZyi 4wXK3iY8BS8SpJrkerMqJoWgZ44E+k4DDH/RAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUa9QLK8J7V3Tt+8q6Pyj8JYZjDNwwHwYDVR0jBBgwFoAUmiG9/y3K/ME49b/W wDMNAhng9TIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI0Ny9taUc5X3kzS19NRTQ5Yl9Xd0RNTkFobmc5VEkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9taUc5X3kzS19NRTQ5Yl9Xd0RNTkFo bmc5VEkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjQ3L2E5UUxLOEo3VjNUdC04cTZQeWo4SllaakROdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY7aoAwDQYJKoZIhvcNAQELBQADggEBADAGjmJLn0JjmuJn3Mb4BLX0fiAR QP6p6b7h/HST9S55OVO4Tx3cCbZwyVH7n/dzoSPXr/gwsNyqdoZtyxuMI1P1bB+K MveK3mgLpEwShQ2NADpqi5LbcZfyQXhaTzoi8RMfRzoZQWopFf7HitEZyUNUoZky t+AqKWZW6MNrnbjsv8fSTYyBd2y3B/txpFDQD+1tlBUjdAPXKgeji+K6Gg2gxuyL uCoiBeebDXaLz5gmtKjHaGDX6j0hFhQ+0wgYHAVKzgvxRWdJllugNOGPUsMgmkxy YExSlRZOsuhAebf4o5iZMvz5SWaWxhDMiXXIesnwvGGYmmThg5OZxRJmr8g= -----END CERTIFICATE-----Generated at Sat Apr 5 17:18:33 2025 by rpki-client