$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/GiHNrlnsiDRqCKl_mLKGEzbf5Cs.roa File: GiHNrlnsiDRqCKl_mLKGEzbf5Cs.roa (raw, json) Hash identifier: 8ij0YL1lcSSMrOnvwBLIPMHW9zHXdp15SVy3X46JJh0= Subject key identifier: 1A:21:CD:AE:59:EC:88:34:6A:08:A9:7F:98:B2:86:13:36:DF:E4:2B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A60 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/GiHNrlnsiDRqCKl_mLKGEzbf5Cs.roa Signing time: Sun 30 Jun 2024 01:50:22 +0000 ROA not before: Sun 30 Jun 2024 01:50:22 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 220.210.62.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2656 (0xa60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:50:22 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=1A21CDAE59EC88346A08A97F98B2861336DFE42B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fa:aa:d4:bb:32:83:b8:69:3d:1f:d5:ae:2c: c7:90:7b:67:8e:15:28:c5:db:91:b1:ac:4d:c0:11: 14:61:99:94:9b:28:9a:c7:b2:91:e0:85:5c:28:3f: 5a:45:32:a8:f4:5f:5d:48:f2:fe:f5:1f:4a:c3:a5: d9:57:81:69:0f:5a:15:4a:02:6a:77:ec:0b:9c:c8: d7:63:40:f5:7e:0d:cb:c6:19:9f:cd:fc:02:4f:33: df:2c:7d:f5:fb:52:26:fd:03:1a:2c:8b:c4:ee:72: f6:29:c2:44:33:56:e5:34:82:2b:24:5b:14:a3:d2: cd:2a:b7:ac:6a:37:5c:b1:ba:1a:33:b4:30:58:00: d1:66:6e:9d:4e:f2:16:d1:97:3b:25:75:e7:0d:b2: 73:e4:c6:a3:86:a2:c4:7c:77:50:94:41:ff:c7:14: 01:2d:34:8e:b1:ea:c2:a8:d4:8b:5e:9f:8a:2e:15: 86:ec:04:54:ac:dc:fb:d7:70:bc:4c:c0:c0:a1:9c: 65:41:9d:1b:f9:5d:83:89:c3:45:f0:1f:4a:5b:ca: 58:6f:df:38:56:34:62:ae:e1:e5:34:e4:af:c5:77: 15:73:9b:8c:c9:a7:d9:d2:20:b4:87:7e:d5:3d:ee: 86:d7:e0:25:31:80:e6:73:3b:9a:74:3b:b6:c2:a0: e0:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:21:CD:AE:59:EC:88:34:6A:08:A9:7F:98:B2:86:13:36:DF:E4:2B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/GiHNrlnsiDRqCKl_mLKGEzbf5Cs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.62.0/23 Signature Algorithm: sha256WithRSAEncryption 86:48:43:a3:e1:1a:36:2c:d9:fc:d8:bb:d0:b7:eb:2a:ea:a7: 7a:5d:72:ea:7e:80:a5:de:6a:12:8c:17:9e:5b:cc:bd:93:87: f5:d5:a2:08:41:ea:bf:6f:3d:fa:83:14:70:fa:15:d3:9c:8a: 55:a0:71:df:28:8c:cb:7e:71:bb:fd:0f:1c:aa:3f:fc:20:c5: 9e:63:71:2a:9d:b8:7c:cd:83:53:d7:27:88:c4:cf:09:e3:f1: ed:ce:a8:dd:89:6a:e9:5f:99:5b:d2:07:87:af:6b:c6:88:48: 34:d5:d0:7e:88:70:13:a9:9e:59:bc:81:69:a4:e6:81:7b:9c: 6c:75:75:11:eb:9f:9d:fa:48:f4:25:1f:ca:02:b8:19:0e:e8: 16:bd:60:91:a9:b9:a6:ae:cd:57:84:f9:f0:6c:40:84:40:29: 7b:57:a9:3f:c7:ce:b9:42:ec:4c:22:44:aa:f2:c2:0b:2d:ca: 33:03:f9:18:e0:42:3b:ee:52:eb:f3:93:21:3c:e2:32:e4:0d: 38:b3:52:0c:02:75:1f:9e:36:3b:32:ca:b0:51:84:a1:ce:7f: c8:d7:95:b0:e5:88:9f:a2:ac:9d:56:91:43:ab:66:ec:24:c7: 77:79:c3:42:5f:77:5e:c0:43:a6:d8:31:bf:17:d6:d8:0e:58: b7:c7:03:9d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCmAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTUwMjJaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDFBMjFDREFFNTlFQzg4 MzQ2QTA4QTk3Rjk4QjI4NjEzMzZERkU0MkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9+qrUuzKDuGk9H9WuLMeQe2eOFSjF25GxrE3AERRhmZSbKJrH spHghVwoP1pFMqj0X11I8v71H0rDpdlXgWkPWhVKAmp37AucyNdjQPV+DcvGGZ/N /AJPM98sffX7Uib9Axosi8TucvYpwkQzVuU0giskWxSj0s0qt6xqN1yxuhoztDBY ANFmbp1O8hbRlzsldecNsnPkxqOGosR8d1CUQf/HFAEtNI6x6sKo1Iten4ouFYbs BFSs3PvXcLxMwMChnGVBnRv5XYOJw0XwH0pbylhv3zhWNGKu4eU05K/FdxVzm4zJ p9nSILSHftU97obX4CUxgOZzO5p0O7bCoODZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUGiHNrlnsiDRqCKl/mLKGEzbf5CswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0dpSE5ybG5zaURScUNLbF9tTEtHRXpiZjVDcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHc0j4wDQYJKoZIhvcNAQELBQADggEBAIZIQ6PhGjYs2fzYu9C36yrqp3pd cup+gKXeahKMF55bzL2Th/XVoghB6r9vPfqDFHD6FdOcilWgcd8ojMt+cbv9Dxyq P/wgxZ5jcSqduHzNg1PXJ4jEzwnj8e3OqN2JaulfmVvSB4eva8aISDTV0H6IcBOp nlm8gWmk5oF7nGx1dRHrn536SPQlH8oCuBkO6Ba9YJGpuaauzVeE+fBsQIRAKXtX qT/HzrlC7EwiRKrywgstyjMD+RjgQjvuUuvzkyE84jLkDTizUgwCdR+eNjsyyrBR hKHOf8jXlbDliJ+irJ1WkUOrZuwkx3d5w0Jfd17AQ6bYMb8X1tgOWLfHA50= -----END CERTIFICATE-----Generated at Sat Apr 5 17:20:07 2025 by rpki-client