$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/RLiz2jPZiEAlF6mS30J5WlDoCdk.roa File: RLiz2jPZiEAlF6mS30J5WlDoCdk.roa (raw, json) Hash identifier: eoDlieoj5KxJ4TO7enVPDtzAxnZVSV4T/k+SvrTddqw= Subject key identifier: 44:B8:B3:DA:33:D9:88:40:25:17:A9:92:DF:42:79:5A:50:E8:09:D9 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A27 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/RLiz2jPZiEAlF6mS30J5WlDoCdk.roa Signing time: Sun 30 Jun 2024 01:46:28 +0000 ROA not before: Sun 30 Jun 2024 01:46:28 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 220.210.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2599 (0xa27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:46:28 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=44B8B3DA33D988402517A992DF42795A50E809D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9e:90:c7:23:91:79:d2:38:b4:40:11:b1:18: a7:27:dc:c0:84:96:a4:3e:e0:08:f3:4a:f6:07:44: 09:66:a5:19:a2:49:38:d2:6d:7b:8b:f8:87:a7:ea: 21:4f:86:92:6f:f0:07:dd:79:a7:ed:a5:3a:e9:42: c1:7c:66:20:ae:32:6a:f1:ae:0c:b7:7c:a4:fd:21: 61:52:99:cc:60:ac:42:8b:e6:bd:58:65:fc:0b:68: d4:e4:cf:dd:e7:fe:70:16:96:49:8a:d5:1e:0a:42: 64:db:6b:1d:15:3b:20:2c:42:f5:45:ab:08:65:62: ab:49:d1:19:72:d6:e0:58:20:b0:ba:3a:1f:19:1c: f8:0d:d6:cb:fc:05:a7:39:79:a6:2b:34:e6:b3:11: 75:95:85:b0:7a:36:38:db:82:a3:0c:7a:b9:5d:5d: ed:0f:29:f7:63:24:32:d1:8f:38:aa:1c:88:15:33: 95:93:6d:01:a4:32:95:88:da:34:03:79:b5:70:57: 40:ad:75:41:9c:b7:9a:55:b7:74:c3:6a:2e:2b:50: 05:66:c2:68:be:5e:61:86:ff:49:eb:4b:79:2f:ab: cf:86:d0:d1:0a:6c:eb:18:38:8b:f7:e3:43:27:36: 6a:58:d9:82:e4:af:06:52:d7:d5:7d:00:a9:42:fd: da:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:B8:B3:DA:33:D9:88:40:25:17:A9:92:DF:42:79:5A:50:E8:09:D9 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/RLiz2jPZiEAlF6mS30J5WlDoCdk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.0.0/21 Signature Algorithm: sha256WithRSAEncryption 8e:a4:6d:0b:48:f4:0c:8d:24:28:30:bb:38:0c:c9:7f:df:fb: 5e:51:00:71:26:68:cd:d2:37:24:d1:18:74:9c:b1:3c:da:2b: 19:6a:26:ba:bf:b5:ee:fd:60:ec:e7:b5:a1:8c:55:ff:43:67: db:39:60:e4:06:82:47:44:d6:4e:0b:58:42:32:6d:4b:59:8a: 9c:0f:3e:84:0d:27:a9:d2:84:29:c7:1d:94:a6:87:2a:31:53: 63:ce:2a:38:16:5e:e1:e0:73:0e:d6:ca:d7:7f:ab:a0:2e:88: 34:59:eb:38:ea:80:ed:c0:84:cb:31:3e:57:d4:7b:42:91:d6: 9c:3c:e3:b3:4b:d3:11:a0:b0:43:ca:09:03:09:52:fe:84:c2: d4:65:d0:ce:c0:21:ba:6c:1a:01:42:a7:29:3a:75:77:61:0c: 20:59:f7:3e:7f:3e:52:74:c8:55:1f:43:31:4e:92:8e:da:34: 3e:2a:8f:a6:2d:5e:45:f1:01:f4:76:b1:1f:6c:80:9e:6c:5f: 46:b5:30:a5:9b:07:5e:d8:a1:55:36:a0:ee:3e:09:e6:79:cd: 7b:ba:58:ba:65:05:ac:4d:a7:cc:6d:a1:db:03:7f:fd:f3:40: 1c:36:04:96:58:f8:4a:16:78:29:62:33:d0:32:9a:9e:c0:db: ea:ee:9f:c6 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCicwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQ2MjhaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDQ0QjhCM0RBMzNEOTg4 NDAyNTE3QTk5MkRGNDI3OTVBNTBFODA5RDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCnpDHI5F50ji0QBGxGKcn3MCElqQ+4AjzSvYHRAlmpRmiSTjS bXuL+Ien6iFPhpJv8AfdeaftpTrpQsF8ZiCuMmrxrgy3fKT9IWFSmcxgrEKL5r1Y ZfwLaNTkz93n/nAWlkmK1R4KQmTbax0VOyAsQvVFqwhlYqtJ0Rly1uBYILC6Oh8Z HPgN1sv8Bac5eaYrNOazEXWVhbB6NjjbgqMMerldXe0PKfdjJDLRjziqHIgVM5WT bQGkMpWI2jQDebVwV0CtdUGct5pVt3TDai4rUAVmwmi+XmGG/0nrS3kvq8+G0NEK bOsYOIv340MnNmpY2YLkrwZS19V9AKlC/dpnAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQURLiz2jPZiEAlF6mS30J5WlDoCdkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1JMaXoyalBaaUVBbEY2bVMzMEo1V2xEb0Nkay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPc0gAwDQYJKoZIhvcNAQELBQADggEBAI6kbQtI9AyNJCgwuzgMyX/f+15R AHEmaM3SNyTRGHScsTzaKxlqJrq/te79YOzntaGMVf9DZ9s5YOQGgkdE1k4LWEIy bUtZipwPPoQNJ6nShCnHHZSmhyoxU2POKjgWXuHgcw7Wytd/q6AuiDRZ6zjqgO3A hMsxPlfUe0KR1pw847NL0xGgsEPKCQMJUv6EwtRl0M7AIbpsGgFCpyk6dXdhDCBZ 9z5/PlJ0yFUfQzFOko7aND4qj6YtXkXxAfR2sR9sgJ5sX0a1MKWbB17YoVU2oO4+ CeZ5zXu6WLplBaxNp8xtodsDf/3zQBw2BJZY+EoWeCliM9Aymp7A2+run8Y= -----END CERTIFICATE-----Generated at Sat Apr 5 17:20:13 2025 by rpki-client