$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/XCfUTl-SSBoHu93Vl7mbdcf4bLs.roa File: XCfUTl-SSBoHu93Vl7mbdcf4bLs.roa (raw, json) Hash identifier: iLNM21QKOPGcLCSLuhS/CUz25AS+T3O+t2ZxH6wqyn0= Subject key identifier: 5C:27:D4:4E:5F:92:48:1A:07:BB:DD:D5:97:B9:9B:75:C7:F8:6C:BB Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A07 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/XCfUTl-SSBoHu93Vl7mbdcf4bLs.roa Signing time: Sun 30 Jun 2024 01:44:14 +0000 ROA not before: Sun 30 Jun 2024 01:44:14 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 211.14.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2567 (0xa07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:44:14 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=5C27D44E5F92481A07BBDDD597B99B75C7F86CBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:42:eb:c6:b3:69:57:59:db:e0:79:7b:2a:ed: 14:6b:45:b4:e8:08:44:c5:e6:a7:f9:53:57:62:a9: c6:8f:15:e8:74:86:aa:86:f5:7e:7c:fc:d6:b1:86: 7b:21:ee:e1:2c:fc:74:d4:ed:40:45:80:79:c1:d5: f5:49:be:ac:cc:7f:0e:c8:ac:58:48:b7:c9:3e:14: b7:06:9a:d5:ad:65:71:32:34:c8:f9:f8:7b:ed:a3: 27:32:88:8b:c5:c2:62:25:4d:f1:74:f8:bb:0b:d4: 3e:76:df:7d:32:d3:8e:52:f6:21:ea:73:98:a2:0c: 43:fa:dd:8c:be:1f:b8:ee:a2:9e:0c:96:f9:2e:f4: 4e:ba:bf:06:90:60:78:1a:27:fc:01:0c:0b:3a:38: 9d:6c:67:e3:e9:49:0b:cd:9b:35:51:42:97:d0:39: d3:15:7c:c5:d1:72:fb:9e:a7:73:bc:4d:79:96:ca: 04:fd:34:ed:c0:a9:f0:60:6d:23:94:b5:b2:e5:38: a0:6f:5b:6e:57:89:90:14:18:c3:cf:64:4b:97:01: f0:2d:ce:64:bd:06:55:44:27:1f:b7:95:3c:27:ec: ca:61:46:55:f7:f6:ec:68:69:4c:73:51:8d:dc:a1: 58:85:f7:07:0d:fa:ed:7d:0f:79:fd:09:12:bb:c5: 74:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:27:D4:4E:5F:92:48:1A:07:BB:DD:D5:97:B9:9B:75:C7:F8:6C:BB X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/XCfUTl-SSBoHu93Vl7mbdcf4bLs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.72.0/24 Signature Algorithm: sha256WithRSAEncryption dd:1d:d5:4c:fe:31:8d:18:25:a6:69:02:ea:2d:2b:2a:4d:25: df:f7:9f:65:0f:b3:1b:44:a0:c5:d7:32:04:18:aa:f6:52:08: 85:c4:01:f8:4e:bb:b5:1d:1c:5c:ae:33:3a:5d:ab:f1:5d:21: 08:2d:eb:ab:1b:85:39:8e:e4:39:95:94:5b:29:71:a9:77:b2: 24:82:76:da:c4:40:d3:43:9d:90:ca:20:c2:16:ce:fc:fa:08: 91:56:bb:17:7a:29:df:71:17:18:5e:d4:6a:f7:6e:4b:8e:4f: a9:9b:fc:92:7c:ac:bd:da:68:5f:15:7b:3c:26:19:b2:ff:5f: 59:1f:58:29:a9:ec:86:21:cd:8b:42:15:22:7a:e5:17:27:b0: 94:25:71:52:71:57:d9:55:d3:10:91:43:71:f4:cb:1a:54:c3: c7:8f:43:ee:ea:96:1e:c6:88:af:b7:be:31:59:7d:8c:51:98: cc:b6:75:84:7b:96:cc:e2:2e:b9:f5:3c:cb:35:86:d1:c8:9e: f0:8f:97:1f:87:40:66:79:e0:9b:45:ad:2f:71:48:29:0e:4d: 37:6b:e6:9e:96:8e:93:9f:a2:52:10:16:c3:4e:0a:7a:02:34: 1f:b7:9b:c0:c4:90:e2:98:13:16:c9:f4:90:54:5a:ac:86:0c: 6d:58:51:8b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCgcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQ0MTRaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDVDMjdENDRFNUY5MjQ4 MUEwN0JCRERENTk3Qjk5Qjc1QzdGODZDQkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbQuvGs2lXWdvgeXsq7RRrRbToCETF5qf5U1diqcaPFeh0hqqG 9X58/Naxhnsh7uEs/HTU7UBFgHnB1fVJvqzMfw7IrFhIt8k+FLcGmtWtZXEyNMj5 +HvtoycyiIvFwmIlTfF0+LsL1D52330y045S9iHqc5iiDEP63Yy+H7juop4Mlvku 9E66vwaQYHgaJ/wBDAs6OJ1sZ+PpSQvNmzVRQpfQOdMVfMXRcvuep3O8TXmWygT9 NO3AqfBgbSOUtbLlOKBvW25XiZAUGMPPZEuXAfAtzmS9BlVEJx+3lTwn7MphRlX3 9uxoaUxzUY3coViF9wcN+u19D3n9CRK7xXTpAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUXCfUTl+SSBoHu93Vl7mbdcf4bLswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1hDZlVUbC1TU0JvSHU5M1ZsN21iZGNmNGJMcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADTDkgwDQYJKoZIhvcNAQELBQADggEBAN0d1Uz+MY0YJaZpAuotKypNJd/3 n2UPsxtEoMXXMgQYqvZSCIXEAfhOu7UdHFyuMzpdq/FdIQgt66sbhTmO5DmVlFsp cal3siSCdtrEQNNDnZDKIMIWzvz6CJFWuxd6Kd9xFxhe1Gr3bkuOT6mb/JJ8rL3a aF8VezwmGbL/X1kfWCmp7IYhzYtCFSJ65RcnsJQlcVJxV9lV0xCRQ3H0yxpUw8eP Q+7qlh7GiK+3vjFZfYxRmMy2dYR7lsziLrn1PMs1htHInvCPlx+HQGZ54JtFrS9x SCkOTTdr5p6WjpOfolIQFsNOCnoCNB+3m8DEkOKYExbJ9JBUWqyGDG1YUYs= -----END CERTIFICATE-----Generated at Sat Apr 5 20:00:22 2025 by rpki-client