$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/lpYzkyUkbuGyaCbA2x2RrBVw6-0.roa File: lpYzkyUkbuGyaCbA2x2RrBVw6-0.roa (raw, json) Hash identifier: xxqJWv3waNPiumcguYVcAFLw4HoyMwQO4pnEw+PThU0= Subject key identifier: 96:96:33:93:25:24:6E:E1:B2:68:26:C0:DB:1D:91:AC:15:70:EB:ED Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A9F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lpYzkyUkbuGyaCbA2x2RrBVw6-0.roa Signing time: Sun 30 Jun 2024 01:54:23 +0000 ROA not before: Sun 30 Jun 2024 01:54:23 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 211.14.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2719 (0xa9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:54:23 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=9696339325246EE1B26826C0DB1D91AC1570EBED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:92:38:e2:db:b8:18:f1:fc:fd:d5:92:94:be: 92:b6:e9:df:d0:64:28:46:31:ae:55:30:05:ed:99: e8:0f:1f:b1:4c:c1:a0:2c:22:f1:95:04:6b:03:7f: a2:c0:2a:4a:6f:a8:67:cc:ad:a7:fb:f5:f1:9c:67: d2:0d:f2:8f:01:44:eb:d7:c6:13:9d:d4:cb:55:ad: a0:d2:0d:7f:86:78:69:c2:ab:cb:da:e6:39:4f:db: ad:68:00:ed:0c:13:23:85:37:23:93:dd:cb:31:60: b0:88:d8:cc:9c:a6:45:1b:5d:3f:50:42:c5:c0:53: 79:32:0d:ce:77:12:f0:bf:62:6c:13:07:d4:2c:b9: 4b:4f:ad:25:04:95:b2:ec:e6:70:8d:ab:7b:18:26: 2e:79:38:d8:7d:b8:3c:a2:d1:3b:03:0b:d2:a6:e7: 4c:ce:25:72:2a:73:0e:8d:f5:63:30:ce:2a:d0:b4: 60:0f:d4:49:45:04:db:31:62:01:8a:3f:f2:86:0e: ab:37:e6:91:f1:cf:0e:b5:da:17:58:18:5c:f9:7e: a0:f5:74:98:fe:af:d3:39:b6:8c:f7:59:da:11:f5: ee:92:07:57:1e:5e:d4:9d:05:ab:56:5f:82:49:de: 88:b3:bb:e0:64:99:9a:85:be:6c:dc:c6:15:8c:79: 9c:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:96:33:93:25:24:6E:E1:B2:68:26:C0:DB:1D:91:AC:15:70:EB:ED X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lpYzkyUkbuGyaCbA2x2RrBVw6-0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.92.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:79:1a:c8:65:25:e3:12:43:c1:ee:ba:cf:f9:26:85:5e:6a: 6a:84:df:3a:66:9a:ef:ac:bc:e0:df:93:9d:00:4a:56:11:f4: c3:b1:99:81:82:3d:77:46:1f:df:05:8e:b9:31:65:55:88:b8: b0:7b:2c:07:07:50:a4:1c:a8:72:58:5f:70:68:12:f6:a0:05: f0:52:9f:4d:c8:e9:a8:7f:66:31:50:10:d4:22:06:61:4a:f1: ef:e2:65:cd:d9:d7:d6:ea:9f:5c:ae:bf:c5:7a:23:39:33:ba: a3:2b:fe:a8:da:b8:94:8c:25:c3:f5:d1:bf:3a:60:22:fc:3b: c6:f1:65:a3:87:59:9b:3e:c1:53:28:35:4e:34:40:a3:2e:45: 04:c3:fe:b5:ab:79:f6:41:cf:35:84:22:a0:80:fd:f5:4e:61: c8:13:c6:57:0a:57:49:e1:fb:aa:84:56:95:61:94:e9:97:b9: 81:c3:c9:71:c5:5c:9e:63:6e:fe:b3:4a:8f:a6:68:d1:fb:dc: dc:55:3e:f0:54:7a:d1:98:2e:9d:22:cb:26:fa:55:3b:97:57: e3:5d:4a:72:57:32:9d:8f:d8:42:09:77:e5:71:98:7a:c7:c1: 1d:f7:83:07:60:48:23:d5:c0:44:ff:a7:be:3b:b2:02:ff:83: cb:81:6b:79 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCp8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTU0MjNaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDk2OTYzMzkzMjUyNDZF RTFCMjY4MjZDMERCMUQ5MUFDMTU3MEVCRUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfkjji27gY8fz91ZKUvpK26d/QZChGMa5VMAXtmegPH7FMwaAs IvGVBGsDf6LAKkpvqGfMraf79fGcZ9IN8o8BROvXxhOd1MtVraDSDX+GeGnCq8va 5jlP261oAO0MEyOFNyOT3csxYLCI2MycpkUbXT9QQsXAU3kyDc53EvC/YmwTB9Qs uUtPrSUElbLs5nCNq3sYJi55ONh9uDyi0TsDC9Km50zOJXIqcw6N9WMwzirQtGAP 1ElFBNsxYgGKP/KGDqs35pHxzw612hdYGFz5fqD1dJj+r9M5toz3WdoR9e6SB1ce XtSdBatWX4JJ3oizu+BkmZqFvmzcxhWMeZzJAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUlpYzkyUkbuGyaCbA2x2RrBVw6+0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2xwWXpreVVrYnVHeWFDYkEyeDJSckJWdzYtMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADTDlwwDQYJKoZIhvcNAQELBQADggEBAI15GshlJeMSQ8Huus/5JoVeamqE 3zpmmu+svODfk50ASlYR9MOxmYGCPXdGH98FjrkxZVWIuLB7LAcHUKQcqHJYX3Bo EvagBfBSn03I6ah/ZjFQENQiBmFK8e/iZc3Z19bqn1yuv8V6IzkzuqMr/qjauJSM JcP10b86YCL8O8bxZaOHWZs+wVMoNU40QKMuRQTD/rWrefZBzzWEIqCA/fVOYcgT xlcKV0nh+6qEVpVhlOmXuYHDyXHFXJ5jbv6zSo+maNH73NxVPvBUetGYLp0iyyb6 VTuXV+NdSnJXMp2P2EIJd+VxmHrHwR33gwdgSCPVwET/p747sgL/g8uBa3k= -----END CERTIFICATE-----Generated at Sat Apr 5 17:22:31 2025 by rpki-client