$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/WNw54OlluEVWoMRz6yEgZV1P138.roa File: WNw54OlluEVWoMRz6yEgZV1P138.roa (raw, json) Hash identifier: IN55dJE/OPFRyzOJSjh6veRGPZ5AhM8vqzC44WBpcuo= Subject key identifier: 58:DC:39:E0:E9:65:B8:45:56:A0:C4:73:EB:21:20:65:5D:4F:D7:7F Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A5D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/WNw54OlluEVWoMRz6yEgZV1P138.roa Signing time: Sun 30 Jun 2024 01:50:20 +0000 ROA not before: Sun 30 Jun 2024 01:50:20 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.72.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2653 (0xa5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:50:20 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=58DC39E0E965B84556A0C473EB2120655D4FD77F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:95:38:18:99:8c:f4:7a:81:b1:30:20:9b:15: ca:7b:7d:a1:ef:80:f7:72:25:90:ba:b7:6a:37:a2: 6e:19:3b:5a:9f:cb:f4:34:5b:08:04:40:00:92:58: fe:5b:29:90:45:e9:2c:12:08:26:71:95:c8:fe:85: 9d:86:81:fb:fa:03:fa:e8:82:44:e5:58:ca:ff:8a: 16:d8:47:46:4a:ab:16:17:f2:06:f4:16:cb:26:06: b2:eb:a8:86:e3:27:0a:75:72:8a:d8:cf:7a:9d:60: 75:4d:c4:3b:2b:b7:c1:b9:c6:bb:e8:b0:64:e2:ec: dd:b8:29:38:cb:43:f5:22:50:49:9a:86:2f:09:67: cc:91:a1:e8:de:62:ac:b6:d3:0b:25:ea:05:2d:1a: eb:75:01:ec:3e:97:cc:49:04:2c:b8:f2:99:06:95: d2:9b:02:80:72:c4:b6:a0:8c:4e:18:f5:e7:4d:82: a5:10:45:9d:ba:ef:34:46:11:8e:8d:ea:5c:a1:21: c7:ab:a8:4c:d3:48:77:4e:de:60:27:d7:a9:9a:48: 50:a4:cd:c2:a1:c2:1e:86:7c:11:8a:2b:2e:b5:f2: 98:05:34:a7:4f:13:0d:5a:0b:83:87:f3:90:04:99: 98:01:ab:ca:d3:74:0b:83:8b:69:1b:ac:37:16:94: fc:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:DC:39:E0:E9:65:B8:45:56:A0:C4:73:EB:21:20:65:5D:4F:D7:7F X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/WNw54OlluEVWoMRz6yEgZV1P138.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.64.0/19 Signature Algorithm: sha256WithRSAEncryption 73:e1:2c:c6:49:5f:01:05:10:44:14:b8:3a:35:4e:b4:9c:ed: c4:01:b4:6c:0c:62:21:bb:8d:40:39:65:85:74:6b:7a:19:66: c9:42:42:40:1e:8f:a5:66:40:0a:6e:54:d3:31:8a:c0:a6:b7: 3d:06:e0:46:8e:c2:ec:23:95:95:f0:82:d6:e9:3e:d9:53:cb: 9d:98:6f:8f:2c:fb:85:47:78:a7:a5:78:fa:b2:a9:b4:c6:75: 18:67:2e:f3:83:fe:da:d1:74:81:c4:7a:56:15:57:25:11:2d: 85:84:d6:1b:98:de:7d:42:e1:fe:7e:e0:f3:92:de:5b:67:90: d9:eb:82:e6:e5:2c:63:85:4b:ec:48:a2:8b:cd:ff:6b:9d:ed: c6:d8:3a:4c:01:d9:af:69:50:c4:00:30:7c:0e:79:51:64:dc: f2:68:3e:96:8c:2d:5d:b1:02:85:89:87:ed:65:d4:27:4c:d7: e2:01:7b:49:dd:dc:a0:67:fb:96:b5:8a:02:2e:56:69:53:29: d8:50:1a:a4:81:0b:4c:af:69:00:1d:db:0d:42:b3:4e:29:69: 8f:a6:4b:5b:5b:8a:03:c5:09:0f:bc:38:73:ec:44:52:98:b6: f1:23:5b:bb:c7:fd:02:e9:ee:ad:10:98:a7:93:9a:44:a7:91: 66:75:8d:88 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCl0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTUwMjBaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDU4REMzOUUwRTk2NUI4 NDU1NkEwQzQ3M0VCMjEyMDY1NUQ0RkQ3N0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDulTgYmYz0eoGxMCCbFcp7faHvgPdyJZC6t2o3om4ZO1qfy/Q0 WwgEQACSWP5bKZBF6SwSCCZxlcj+hZ2Ggfv6A/rogkTlWMr/ihbYR0ZKqxYX8gb0 FssmBrLrqIbjJwp1corYz3qdYHVNxDsrt8G5xrvosGTi7N24KTjLQ/UiUEmahi8J Z8yRoejeYqy20wsl6gUtGut1Aew+l8xJBCy48pkGldKbAoByxLagjE4Y9edNgqUQ RZ267zRGEY6N6lyhIcerqEzTSHdO3mAn16maSFCkzcKhwh6GfBGKKy618pgFNKdP Ew1aC4OH85AEmZgBq8rTdAuDi2kbrDcWlPzZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUWNw54OlluEVWoMRz6yEgZV1P138wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1dOdzU0T2xsdUVWV29NUno2eUVnWlYxUDEzOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUBSEAwDQYJKoZIhvcNAQELBQADggEBAHPhLMZJXwEFEEQUuDo1TrSc7cQB tGwMYiG7jUA5ZYV0a3oZZslCQkAej6VmQApuVNMxisCmtz0G4EaOwuwjlZXwgtbp PtlTy52Yb48s+4VHeKelePqyqbTGdRhnLvOD/trRdIHEelYVVyURLYWE1huY3n1C 4f5+4POS3ltnkNnrgublLGOFS+xIoovN/2ud7cbYOkwB2a9pUMQAMHwOeVFk3PJo PpaMLV2xAoWJh+1l1CdM1+IBe0nd3KBn+5a1igIuVmlTKdhQGqSBC0yvaQAd2w1C s04paY+mS1tbigPFCQ+8OHPsRFKYtvEjW7vH/QLp7q0QmKeTmkSnkWZ1jYg= -----END CERTIFICATE-----Generated at Sat Apr 5 17:48:28 2025 by rpki-client