$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/CENy6ZXHxu6F0nlthlcqc_FGhtc.roa File: CENy6ZXHxu6F0nlthlcqc_FGhtc.roa (raw, json) Hash identifier: qUS7Nu1/NJlCF/48m5DYIB3K0pTj2GLARSpS3Nl51ec= Subject key identifier: 08:43:72:E9:95:C7:C6:EE:85:D2:79:6D:86:57:2A:73:F1:46:86:D7 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 09C3 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CENy6ZXHxu6F0nlthlcqc_FGhtc.roa Signing time: Sun 30 Jun 2024 01:40:24 +0000 ROA not before: Sun 30 Jun 2024 01:40:24 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 110.161.194.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2499 (0x9c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:40:24 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=084372E995C7C6EE85D2796D86572A73F14686D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:cf:96:cd:83:0f:02:b4:e2:29:a1:63:ef:3b: 2b:6d:01:2c:8c:a0:e2:6b:96:66:0e:83:a0:ae:4a: 01:3d:6f:bc:5d:f6:d7:61:4a:c6:82:dc:40:b3:dc: 70:db:c6:a5:28:c3:3d:09:71:ea:8e:26:a8:da:e9: b9:98:af:7f:b7:d3:df:ce:20:7b:18:0a:d4:5c:e3: b3:49:fc:6b:54:8c:b9:19:95:9a:83:54:6a:02:1a: 38:da:97:40:db:d9:4a:eb:d6:ff:0e:35:71:06:95: f7:07:05:27:6f:52:74:c4:fe:38:4c:9c:9d:35:3a: 7f:8f:23:64:57:2e:64:ed:ca:25:7e:06:fa:05:2b: 1e:56:61:21:9f:be:1c:b2:90:45:d9:4b:9d:3f:f0: a6:3e:47:2e:08:49:c8:a7:1b:94:99:6a:bf:18:2e: fc:06:4d:f1:6c:c7:3f:8b:71:98:0f:63:d3:4a:fc: 83:e0:1f:f9:08:39:e0:40:24:f6:95:28:9e:a5:d2: 64:ac:56:29:ca:a8:15:95:bb:98:dd:76:48:56:f8: 70:9e:a7:5f:22:73:41:7e:c3:6e:30:2e:08:62:04: 1c:b6:6a:69:c3:27:31:ab:45:a7:c8:6f:f0:31:de: 6b:4b:d5:0a:dc:14:01:a5:93:4a:fe:c5:96:3b:58: f2:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:43:72:E9:95:C7:C6:EE:85:D2:79:6D:86:57:2A:73:F1:46:86:D7 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CENy6ZXHxu6F0nlthlcqc_FGhtc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.161.194.0/23 Signature Algorithm: sha256WithRSAEncryption a5:4a:c5:d0:fd:cf:17:1a:d1:4d:a8:30:8c:07:b3:22:c0:e6: 48:42:7d:45:ad:fa:ab:fd:e7:a9:e3:f0:81:d3:f4:b9:93:cb: 49:d7:b5:b7:42:cb:b7:fd:bc:0c:3e:dd:1e:fd:77:b1:ff:38: 94:c5:17:4e:b9:19:f4:6a:43:e0:d1:13:50:f0:e4:cd:7e:59: 26:c3:a1:d7:ee:dd:9a:39:c2:06:a5:fe:42:ee:1a:a2:87:d9: 37:01:34:0c:84:39:e8:eb:e6:cf:7c:5c:2e:5c:a4:8e:da:90: df:4d:ed:59:58:81:be:ec:e6:9e:fb:eb:cc:d3:6e:d8:3c:f4: 62:2f:5e:8e:c9:96:c9:eb:62:1c:62:95:bc:5a:ab:75:3a:7c: f6:82:12:4f:f3:3e:f8:fc:c7:10:3a:a4:3b:fe:e3:df:8e:3d: 32:06:00:d1:c5:d4:21:c3:63:11:b6:91:fa:10:46:cc:f9:49: 90:f2:2f:66:68:36:08:b7:7f:33:ee:65:1e:07:d8:b7:57:3e: ef:0a:ca:a0:ef:8b:b7:cf:a5:b7:11:8e:dc:d8:7c:34:33:46: 45:b5:1f:34:f9:ac:89:36:5c:e7:f9:de:a7:0d:f5:9a:b3:11: ed:4a:fb:a6:22:14:7e:41:90:fd:99:bf:4b:10:c6:db:35:f9: 9c:fb:b2:5d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCcMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQwMjRaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDA4NDM3MkU5OTVDN0M2 RUU4NUQyNzk2RDg2NTcyQTczRjE0Njg2RDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOz5bNgw8CtOIpoWPvOyttASyMoOJrlmYOg6CuSgE9b7xd9tdh SsaC3ECz3HDbxqUowz0JceqOJqja6bmYr3+309/OIHsYCtRc47NJ/GtUjLkZlZqD VGoCGjjal0Db2Urr1v8ONXEGlfcHBSdvUnTE/jhMnJ01On+PI2RXLmTtyiV+BvoF Kx5WYSGfvhyykEXZS50/8KY+Ry4IScinG5SZar8YLvwGTfFsxz+LcZgPY9NK/IPg H/kIOeBAJPaVKJ6l0mSsVinKqBWVu5jddkhW+HCep18ic0F+w24wLghiBBy2amnD JzGrRafIb/Ax3mtL1QrcFAGlk0r+xZY7WPKPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUCENy6ZXHxu6F0nlthlcqc/FGhtcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0NFTnk2WlhIeHU2RjBubHRobGNxY19GR2h0Yy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFuocIwDQYJKoZIhvcNAQELBQADggEBAKVKxdD9zxca0U2oMIwHsyLA5khC fUWt+qv956nj8IHT9LmTy0nXtbdCy7f9vAw+3R79d7H/OJTFF065GfRqQ+DRE1Dw 5M1+WSbDodfu3Zo5wgal/kLuGqKH2TcBNAyEOejr5s98XC5cpI7akN9N7VlYgb7s 5p7768zTbtg89GIvXo7JlsnrYhxilbxaq3U6fPaCEk/zPvj8xxA6pDv+49+OPTIG ANHF1CHDYxG2kfoQRsz5SZDyL2ZoNgi3fzPuZR4H2LdXPu8KyqDvi7fPpbcRjtzY fDQzRkW1HzT5rIk2XOf53qcN9ZqzEe1K+6YiFH5BkP2Zv0sQxts1+Zz7sl0= -----END CERTIFICATE-----Generated at Sat Apr 5 17:44:14 2025 by rpki-client