$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/84nrf52vTpgPeMnwpNBpEK3Oupo.roa File: 84nrf52vTpgPeMnwpNBpEK3Oupo.roa (raw, json) Hash identifier: 4ukIt8Ka+eJcqFgjEvDre/00WkfBIIXeoB3csExFVTM= Subject key identifier: F3:89:EB:7F:9D:AF:4E:98:0F:78:C9:F0:A4:D0:69:10:AD:CE:BA:9A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A91 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/84nrf52vTpgPeMnwpNBpEK3Oupo.roa Signing time: Sun 30 Jun 2024 01:52:40 +0000 ROA not before: Sun 30 Jun 2024 01:52:40 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 49.106.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2705 (0xa91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:52:40 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=F389EB7F9DAF4E980F78C9F0A4D06910ADCEBA9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0c:1c:3f:88:42:03:42:cf:b9:7b:f3:3e:a5: 62:45:f5:d5:a3:26:c1:73:fa:a4:40:3a:f7:25:f1: 94:dd:a5:2d:1a:bb:ec:82:62:50:8c:82:43:b4:0f: e4:62:4b:c0:67:55:59:2e:40:dd:48:c0:b5:21:a0: 7d:36:0e:ae:d3:5e:ae:2b:17:5b:fc:21:72:97:3a: e2:f2:ad:b0:57:d9:9f:87:d1:af:33:d0:e0:39:42: e8:c3:32:e9:e6:cd:c5:9b:cb:aa:8f:8a:43:03:93: 31:95:51:41:90:2b:0d:2c:1c:17:b8:77:f2:3c:8f: e4:c4:09:bc:5b:cd:ac:0b:49:37:6d:54:06:33:59: 62:d3:81:be:26:70:2f:ee:37:7f:5d:5f:82:af:07: 13:18:2e:f4:d3:86:de:06:a5:3e:b4:0e:92:a1:3b: 6c:76:7b:a5:55:14:56:2d:e9:10:2b:47:a5:f7:57: 42:28:51:49:b8:b0:d0:7c:d6:78:00:e5:ed:73:da: 8f:1e:85:c7:96:29:08:01:f3:1a:42:15:4d:07:46: c6:94:5c:4a:ff:5d:d1:0f:0f:7a:a3:8c:a9:91:f4: 46:8d:da:24:23:a2:88:7c:b6:92:c7:7e:16:ec:4f: ed:d6:b8:00:5d:d1:5e:56:77:ae:d3:bd:05:4c:af: bf:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:89:EB:7F:9D:AF:4E:98:0F:78:C9:F0:A4:D0:69:10:AD:CE:BA:9A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/84nrf52vTpgPeMnwpNBpEK3Oupo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.238.0/23 Signature Algorithm: sha256WithRSAEncryption 91:03:a0:4e:1b:d1:9c:8e:fb:58:78:2a:e6:fe:c5:8e:41:be: 6a:03:b0:d8:98:c4:12:13:7f:45:f6:bc:38:d5:bb:a7:f1:85: 96:a4:1a:07:04:cc:37:76:7a:ac:1b:86:cb:be:3c:a1:28:ba: f5:c1:bc:4c:d1:f1:27:e1:fe:45:d8:a2:15:7e:77:34:bb:d6: d5:5c:8e:d2:0e:ab:6d:b6:f1:b9:eb:b8:6e:4e:38:cb:5c:d1: c6:76:77:65:7b:ef:4f:2d:22:fd:7b:79:ce:ea:c7:3d:56:00: 62:5b:c7:22:21:b6:83:65:3b:86:62:be:0b:e4:22:ce:be:68: 5e:29:2f:0c:f3:d4:2b:bb:31:8e:80:36:f3:48:7a:4d:d2:15: 51:82:09:12:76:41:6a:38:21:42:e8:9e:cf:fd:69:e9:97:2d: fa:0e:15:6a:9b:c4:7d:b8:63:8f:e6:28:51:f2:04:5b:79:23: 26:c1:97:b7:cd:0a:23:71:e8:c9:71:df:e8:e0:3d:e6:69:2c: d5:a7:99:1c:b7:8d:5a:b3:99:02:dc:0c:a4:30:b4:35:0a:11: 75:4d:93:c4:6e:30:0d:37:10:a9:35:90:70:ea:4a:2c:a7:b6: 06:bd:b8:15:56:c4:9d:0e:85:c0:ba:5a:20:c4:0b:e0:d0:d9: a1:ce:8b:f9 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCpEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTUyNDBaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEYzODlFQjdGOURBRjRF OTgwRjc4QzlGMEE0RDA2OTEwQURDRUJBOUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBDBw/iEIDQs+5e/M+pWJF9dWjJsFz+qRAOvcl8ZTdpS0au+yC YlCMgkO0D+RiS8BnVVkuQN1IwLUhoH02Dq7TXq4rF1v8IXKXOuLyrbBX2Z+H0a8z 0OA5QujDMunmzcWby6qPikMDkzGVUUGQKw0sHBe4d/I8j+TECbxbzawLSTdtVAYz WWLTgb4mcC/uN39dX4KvBxMYLvTTht4GpT60DpKhO2x2e6VVFFYt6RArR6X3V0Io UUm4sNB81ngA5e1z2o8ehceWKQgB8xpCFU0HRsaUXEr/XdEPD3qjjKmR9EaN2iQj ooh8tpLHfhbsT+3WuABd0V5Wd67TvQVMr78/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU84nrf52vTpgPeMnwpNBpEK3OupowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5Lzg0bnJmNTJ2VHBnUGVNbndwTkJwRUszT3Vwby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExau4wDQYJKoZIhvcNAQELBQADggEBAJEDoE4b0ZyO+1h4Kub+xY5BvmoD sNiYxBITf0X2vDjVu6fxhZakGgcEzDd2eqwbhsu+PKEouvXBvEzR8Sfh/kXYohV+ dzS71tVcjtIOq2228bnruG5OOMtc0cZ2d2V7708tIv17ec7qxz1WAGJbxyIhtoNl O4ZivgvkIs6+aF4pLwzz1Cu7MY6ANvNIek3SFVGCCRJ2QWo4IULons/9aemXLfoO FWqbxH24Y4/mKFHyBFt5IybBl7fNCiNx6Mlx3+jgPeZpLNWnmRy3jVqzmQLcDKQw tDUKEXVNk8RuMA03EKk1kHDqSiyntga9uBVWxJ0OhcC6WiDEC+DQ2aHOi/k= -----END CERTIFICATE-----Generated at Sat Apr 5 17:22:29 2025 by rpki-client