$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/qSDUQKvIOxULg7uTopl8MevJTRg.roa File: qSDUQKvIOxULg7uTopl8MevJTRg.roa (raw, json) Hash identifier: 37NrUXL54ZeNVQg0ABqJsZpltyr22eC0COIN50nAP2c= Subject key identifier: A9:20:D4:40:AB:C8:3B:15:0B:83:BB:93:A2:99:7C:31:EB:C9:4D:18 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 09E0 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/qSDUQKvIOxULg7uTopl8MevJTRg.roa Signing time: Sun 30 Jun 2024 01:40:36 +0000 ROA not before: Sun 30 Jun 2024 01:40:36 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.67.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2528 (0x9e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:40:36 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=A920D440ABC83B150B83BB93A2997C31EBC94D18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:74:e8:24:a7:40:68:44:6c:48:84:38:38:b5: f5:90:3c:a9:2c:04:e2:03:06:55:a6:7d:0e:ab:82: b1:e0:42:d8:aa:36:95:1e:18:d8:8b:ab:dc:14:b0: 49:eb:96:6d:1c:53:70:00:56:d4:f8:c0:f9:38:03: 83:97:f3:a2:dd:bc:91:d7:e3:2e:57:e9:5a:1d:5e: 59:6e:cb:5c:3f:8a:bf:35:c7:ba:6c:53:65:2e:02: 17:9c:48:0e:4e:8b:3d:08:18:4e:1a:01:f1:01:2a: 07:86:ac:47:99:45:c4:91:6a:52:a6:b6:34:27:a6: c2:8c:fd:30:e4:81:e9:0e:b4:8f:2f:8a:b3:52:8a: 84:d5:7e:4b:79:8c:c0:b9:e0:ff:8d:54:ad:6a:f0: 91:0a:fa:85:33:b9:d8:5c:1e:81:04:e9:d1:f2:45: fc:cd:f8:8a:b7:b8:8a:40:e6:d2:61:36:13:98:ed: 52:0d:ae:4b:5f:fa:6f:b6:cc:5d:c5:c9:34:93:c6: 48:55:6b:5d:52:c9:bd:bd:cb:97:0f:e5:44:af:f7: 80:6f:be:89:00:e7:b0:97:92:5a:2d:eb:7b:3e:2a: 60:89:72:67:93:a1:6d:63:a7:73:97:d2:e3:08:c2: 3b:9d:cc:2f:9e:91:a9:42:79:f6:88:cf:29:29:bf: 0c:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:20:D4:40:AB:C8:3B:15:0B:83:BB:93:A2:99:7C:31:EB:C9:4D:18 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/qSDUQKvIOxULg7uTopl8MevJTRg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.67.64.0/18 Signature Algorithm: sha256WithRSAEncryption d5:5b:c9:c8:32:40:9f:4c:af:2b:a4:c1:b4:6f:2a:5d:5b:ff: bf:67:90:55:49:f8:0f:0f:b8:06:4a:54:57:2b:ed:54:7e:ea: 8b:a3:f8:8e:77:a0:13:c7:33:84:03:64:ea:93:ef:99:04:2f: bd:90:5b:70:f8:4d:51:85:bf:47:4f:ff:67:ab:7e:88:3b:c3: b6:17:8a:7d:ca:ea:5c:c4:1d:5f:31:ec:fb:a2:ba:b1:bd:82: 57:51:d6:20:69:16:0f:3a:58:aa:76:99:0b:21:60:d7:f1:7f: d9:0f:03:25:1b:31:79:c8:a4:0d:c9:53:3d:2b:9b:7b:31:2f: 73:a6:28:45:7a:3e:a2:8b:c1:f7:dc:e6:70:2d:90:d2:4e:bf: c8:14:86:0c:58:9f:46:81:34:88:6c:da:d6:d4:ad:bc:bc:9c: 4d:de:ae:8a:54:91:9c:3b:68:2c:cc:2e:a1:83:cf:17:47:10: 82:29:7c:94:40:6c:ed:92:7b:3c:8b:9d:bf:16:b5:bd:6c:66: 11:dd:9e:81:c6:c2:d7:ca:b9:f0:a9:6c:a8:90:6d:05:1b:64: 40:39:5d:04:17:89:ee:de:62:5f:81:f1:0c:18:12:a1:25:c0: e3:a6:da:3f:48:75:8d:82:18:09:ff:07:dd:e5:0c:19:03:45: 8a:8f:e8:a8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCeAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQwMzZaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEE5MjBENDQwQUJDODNC MTUwQjgzQkI5M0EyOTk3QzMxRUJDOTREMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3dOgkp0BoRGxIhDg4tfWQPKksBOIDBlWmfQ6rgrHgQtiqNpUe GNiLq9wUsEnrlm0cU3AAVtT4wPk4A4OX86LdvJHX4y5X6VodXlluy1w/ir81x7ps U2UuAhecSA5Oiz0IGE4aAfEBKgeGrEeZRcSRalKmtjQnpsKM/TDkgekOtI8virNS ioTVfkt5jMC54P+NVK1q8JEK+oUzudhcHoEE6dHyRfzN+Iq3uIpA5tJhNhOY7VIN rktf+m+2zF3FyTSTxkhVa11Syb29y5cP5USv94BvvokA57CXklot63s+KmCJcmeT oW1jp3OX0uMIwjudzC+ekalCefaIzykpvwzdAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUqSDUQKvIOxULg7uTopl8MevJTRgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3FTRFVRS3ZJT3hVTGc3dVRvcGw4TWV2SlRSZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYBQ0AwDQYJKoZIhvcNAQELBQADggEBANVbycgyQJ9MryukwbRvKl1b/79n kFVJ+A8PuAZKVFcr7VR+6ouj+I53oBPHM4QDZOqT75kEL72QW3D4TVGFv0dP/2er fog7w7YXin3K6lzEHV8x7PuiurG9gldR1iBpFg86WKp2mQshYNfxf9kPAyUbMXnI pA3JUz0rm3sxL3OmKEV6PqKLwffc5nAtkNJOv8gUhgxYn0aBNIhs2tbUrby8nE3e ropUkZw7aCzMLqGDzxdHEIIpfJRAbO2SezyLnb8Wtb1sZhHdnoHGwtfKufCpbKiQ bQUbZEA5XQQXie7eYl+B8QwYEqElwOOm2j9IdY2CGAn/B93lDBkDRYqP6Kg= -----END CERTIFICATE-----Generated at Sat Apr 5 23:11:10 2025 by rpki-client