$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/5q2MQhxCvcVHkgQHatftilh0mQE.roa File: 5q2MQhxCvcVHkgQHatftilh0mQE.roa (raw, json) Hash identifier: ANTGlas8c+lAbQhpW98UrjtVHA96OyFqUtAakVpF4dg= Subject key identifier: E6:AD:8C:42:1C:42:BD:C5:47:92:04:07:6A:D7:ED:8A:58:74:99:01 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A77 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/5q2MQhxCvcVHkgQHatftilh0mQE.roa Signing time: Sun 30 Jun 2024 01:50:33 +0000 ROA not before: Sun 30 Jun 2024 01:50:33 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 49.105.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2679 (0xa77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:50:33 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=E6AD8C421C42BDC5479204076AD7ED8A58749901 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:a4:69:f7:de:a2:21:7e:40:0f:30:05:06:d7: 8a:68:d9:80:98:ae:41:1c:8a:f5:43:87:10:94:e2: f1:c0:cb:7c:1e:0d:5f:52:4d:9b:90:c9:41:b9:a9: 93:5a:43:96:3c:5a:02:03:38:4d:7d:ed:bb:15:40: e5:1a:aa:ea:8d:c0:7c:69:4f:15:0f:4a:0f:47:48: 03:9e:f6:2c:e1:30:3f:26:25:0a:f5:73:ab:10:a5: d4:2d:81:db:ff:7e:d3:bb:cc:22:4f:5c:f5:a3:70: ea:21:c4:69:8a:98:aa:5f:96:2d:67:01:e2:d0:72: 96:7d:9c:ec:3e:f3:cb:ab:08:b3:76:a5:ad:5f:15: 37:c8:88:06:12:7c:76:77:4c:ca:1a:2e:9b:38:1c: 66:b8:76:56:8c:36:55:24:41:80:da:d5:e1:66:00: 8f:45:fc:e2:77:d1:a5:01:76:ba:e7:5b:44:88:f0: b1:9a:f1:90:83:94:42:ab:17:c1:47:aa:79:9d:79: e2:f2:b7:ea:d6:d2:f4:ef:34:92:b6:c6:22:c3:52: e4:c8:1a:e7:f5:35:de:5a:2b:a2:bd:55:f1:a7:45: bd:9b:70:1e:4d:a6:10:6c:bd:f7:86:e6:71:df:ff: 05:de:d1:cc:ef:ff:6a:ef:23:8f:92:88:18:fa:40: 67:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:AD:8C:42:1C:42:BD:C5:47:92:04:07:6A:D7:ED:8A:58:74:99:01 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/5q2MQhxCvcVHkgQHatftilh0mQE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.105.87.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:8b:d0:61:0c:3d:0a:f6:f5:79:00:08:62:2e:2c:68:ed:41: 06:1c:13:1f:0f:83:86:8b:92:32:53:2a:40:bc:05:54:08:a1: 09:80:93:57:4e:51:2f:74:3b:bd:b0:50:93:c7:98:17:9b:f0: e4:62:1d:48:2a:58:d1:9f:df:44:96:b1:9a:0f:39:8c:22:9d: f2:11:7d:a4:3f:32:19:42:d2:c9:f1:54:24:98:64:d5:f2:bd: 64:c9:fc:b1:67:b5:97:83:58:03:30:81:46:d3:a7:ed:b1:9a: 5d:fa:a4:06:66:a1:6e:e3:81:bb:be:cf:f3:a2:d9:10:01:2c: 09:2a:0a:33:d0:66:7b:0c:72:29:1f:df:83:7c:ae:b3:fa:ff: c8:ef:9e:d2:6d:ab:39:c4:e4:56:31:ad:e7:78:d0:9e:10:f8: a0:88:99:ed:c6:bf:a6:57:d8:11:ce:07:c9:53:96:de:4b:df: 2f:e0:f5:e4:58:0c:87:67:f0:5c:53:a6:ad:e7:16:4f:be:31: a6:31:59:b5:8d:30:da:4b:e0:3c:d7:13:60:c2:fb:78:ce:8e: 70:26:ac:f3:7c:39:27:7a:0e:62:f1:da:45:f8:c1:f0:a6:df: 6a:80:60:ae:d2:10:a3:54:fc:a6:92:aa:bc:a1:9b:28:c3:9a: 39:e7:5e:63 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCncwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTUwMzNaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEU2QUQ4QzQyMUM0MkJE QzU0NzkyMDQwNzZBRDdFRDhBNTg3NDk5MDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDupGn33qIhfkAPMAUG14po2YCYrkEcivVDhxCU4vHAy3weDV9S TZuQyUG5qZNaQ5Y8WgIDOE197bsVQOUaquqNwHxpTxUPSg9HSAOe9izhMD8mJQr1 c6sQpdQtgdv/ftO7zCJPXPWjcOohxGmKmKpfli1nAeLQcpZ9nOw+88urCLN2pa1f FTfIiAYSfHZ3TMoaLps4HGa4dlaMNlUkQYDa1eFmAI9F/OJ30aUBdrrnW0SI8LGa 8ZCDlEKrF8FHqnmdeeLyt+rW0vTvNJK2xiLDUuTIGuf1Nd5aK6K9VfGnRb2bcB5N phBsvfeG5nHf/wXe0czv/2rvI4+SiBj6QGcRAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU5q2MQhxCvcVHkgQHatftilh0mQEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzVxMk1RaHhDdmNWSGtnUUhhdGZ0aWxoMG1RRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxaVcwDQYJKoZIhvcNAQELBQADggEBAC2L0GEMPQr29XkACGIuLGjtQQYc Ex8Pg4aLkjJTKkC8BVQIoQmAk1dOUS90O72wUJPHmBeb8ORiHUgqWNGf30SWsZoP OYwinfIRfaQ/MhlC0snxVCSYZNXyvWTJ/LFntZeDWAMwgUbTp+2xml36pAZmoW7j gbu+z/Oi2RABLAkqCjPQZnsMcikf34N8rrP6/8jvntJtqznE5FYxred40J4Q+KCI me3Gv6ZX2BHOB8lTlt5L3y/g9eRYDIdn8FxTpq3nFk++MaYxWbWNMNpL4DzXE2DC +3jOjnAmrPN8OSd6DmLx2kX4wfCm32qAYK7SEKNU/KaSqryhmyjDmjnnXmM= -----END CERTIFICATE-----Generated at Sat Apr 5 17:48:32 2025 by rpki-client