$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/eRM_nMPnqcNEuRaomSv3rAPc_N4.roa File: eRM_nMPnqcNEuRaomSv3rAPc_N4.roa (raw, json) Hash identifier: 2KqA+cuQcazB8p63hqSHzoQqUP6DVx/Qb/g35f1lqAU= Subject key identifier: 79:13:3F:9C:C3:E7:A9:C3:44:B9:16:A8:99:2B:F7:AC:03:DC:FC:DE Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 09F1 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/eRM_nMPnqcNEuRaomSv3rAPc_N4.roa Signing time: Sun 30 Jun 2024 01:42:25 +0000 ROA not before: Sun 30 Jun 2024 01:42:25 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.79.40.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2545 (0x9f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:42:25 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=79133F9CC3E7A9C344B916A8992BF7AC03DCFCDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d1:d1:45:91:dc:e8:48:97:50:a8:ef:74:b2: 1c:0c:21:30:5b:74:55:85:09:ac:02:19:91:d2:83: 12:b4:c4:d1:a4:be:ce:b3:1b:fb:0b:cb:4d:22:7f: d7:68:21:0b:8a:0e:dc:c4:9e:40:72:e3:02:a1:0b: b0:2c:0d:51:50:74:ea:4e:52:99:01:f9:2e:35:88: 8d:bd:3d:65:66:c0:21:4b:96:33:cf:87:cd:93:dd: c3:63:5d:7e:7f:79:01:f7:89:7a:d4:93:78:df:1b: 0a:e7:88:aa:91:98:98:f4:5e:b6:10:25:80:cb:ec: 29:1f:f9:43:3e:02:89:89:78:6f:bf:38:7c:82:0b: ec:6e:61:32:38:0b:6c:68:95:e4:c3:cb:1a:f8:c9: 71:86:e9:0d:2a:23:6e:59:4c:88:10:76:46:3b:8d: 44:9d:55:d5:e7:a5:4a:03:0a:7a:2a:23:77:a9:08: c2:a5:7b:be:7d:c8:50:89:a8:87:84:08:d5:d6:52: d0:53:f0:2c:a8:36:b7:2e:ce:d7:0a:18:5d:fc:d8: 9f:16:67:4a:21:85:43:d2:dd:3e:97:7c:e2:7e:53: 31:7e:59:71:bd:b9:57:a9:0a:ba:9b:da:a2:b2:b4: 3a:80:eb:ff:dd:b4:d9:e3:30:56:e6:1e:84:90:e7: 46:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:13:3F:9C:C3:E7:A9:C3:44:B9:16:A8:99:2B:F7:AC:03:DC:FC:DE X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/eRM_nMPnqcNEuRaomSv3rAPc_N4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.40.0/22 Signature Algorithm: sha256WithRSAEncryption e1:a7:cd:35:84:30:a6:50:d9:d7:84:8a:6b:1e:67:55:3b:79: 15:ea:78:88:36:1d:23:8a:d4:67:9b:16:ce:1e:d5:9c:00:d7: 31:b9:67:56:97:55:ff:dd:80:9b:04:fb:b3:b2:fc:2a:b6:4b: 34:39:e2:86:8b:bd:a5:71:f5:ce:71:eb:60:ac:1e:f6:3d:d6: 6c:91:9f:35:77:81:56:9c:4a:a0:e0:af:05:66:0e:af:dd:2f: ed:ef:62:7f:50:c8:7a:1d:51:a4:19:6b:60:77:7b:f5:e8:2a: 26:10:ed:23:81:3e:44:c9:0a:74:73:17:d6:a2:49:c3:cd:69: 70:6c:f3:b5:9e:43:85:fe:18:60:d8:ce:76:8a:a3:13:09:8d: 7c:49:4e:ff:50:e8:d1:69:a4:3b:9e:ec:ca:31:69:15:8d:42: 10:27:54:25:92:6f:20:80:30:24:37:9c:a7:30:cd:69:1a:4e: 27:a6:87:89:9b:f9:de:23:2f:48:64:c2:2e:52:54:04:68:da: 13:fc:0e:30:cc:9f:c6:ef:c7:01:7d:1c:ba:19:d1:bc:bd:5c: 0d:8e:6e:f5:a5:b2:9a:c8:d0:58:f9:2f:6d:3a:76:4c:2a:d1: a2:e3:11:dd:e2:47:bc:79:83:24:3c:96:ce:06:2f:c4:cd:02: 44:4d:6e:f7 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCfEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQyMjVaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDc5MTMzRjlDQzNFN0E5 QzM0NEI5MTZBODk5MkJGN0FDMDNEQ0ZDREUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCy0dFFkdzoSJdQqO90shwMITBbdFWFCawCGZHSgxK0xNGkvs6z G/sLy00if9doIQuKDtzEnkBy4wKhC7AsDVFQdOpOUpkB+S41iI29PWVmwCFLljPP h82T3cNjXX5/eQH3iXrUk3jfGwrniKqRmJj0XrYQJYDL7Ckf+UM+AomJeG+/OHyC C+xuYTI4C2xoleTDyxr4yXGG6Q0qI25ZTIgQdkY7jUSdVdXnpUoDCnoqI3epCMKl e759yFCJqIeECNXWUtBT8CyoNrcuztcKGF382J8WZ0ohhUPS3T6XfOJ+UzF+WXG9 uVepCrqb2qKytDqA6//dtNnjMFbmHoSQ50YXAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUeRM/nMPnqcNEuRaomSv3rAPc/N4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2VSTV9uTVBucWNORXVSYW9tU3YzckFQY19ONC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBTygwDQYJKoZIhvcNAQELBQADggEBAOGnzTWEMKZQ2deEimseZ1U7eRXq eIg2HSOK1GebFs4e1ZwA1zG5Z1aXVf/dgJsE+7Oy/Cq2SzQ54oaLvaVx9c5x62Cs HvY91myRnzV3gVacSqDgrwVmDq/dL+3vYn9QyHodUaQZa2B3e/XoKiYQ7SOBPkTJ CnRzF9aiScPNaXBs87WeQ4X+GGDYznaKoxMJjXxJTv9Q6NFppDue7MoxaRWNQhAn VCWSbyCAMCQ3nKcwzWkaTiemh4mb+d4jL0hkwi5SVARo2hP8DjDMn8bvxwF9HLoZ 0by9XA2ObvWlsprI0Fj5L206dkwq0aLjEd3iR7x5gyQ8ls4GL8TNAkRNbvc= -----END CERTIFICATE-----Generated at Sun Apr 6 18:06:01 2025 by rpki-client