$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/uKz-ys38w5Ba9DOsrq3qVYapazc.roa File: uKz-ys38w5Ba9DOsrq3qVYapazc.roa (raw, json) Hash identifier: kAhyQts6elXr9Yejo8CfCQyd8/lU0u9UpOe01G73s5Y= Subject key identifier: B8:AC:FE:CA:CD:FC:C3:90:5A:F4:33:AC:AE:AD:EA:55:86:A9:6B:37 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 09D9 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/uKz-ys38w5Ba9DOsrq3qVYapazc.roa Signing time: Sun 30 Jun 2024 01:40:33 +0000 ROA not before: Sun 30 Jun 2024 01:40:33 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 49.107.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2521 (0x9d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:40:33 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=B8ACFECACDFCC3905AF433ACAEADEA5586A96B37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d8:f5:1e:b6:bb:18:b0:ce:7d:1b:1d:e7:96: a3:d0:a2:f5:0b:12:13:f8:b0:43:d9:26:0d:fc:ea: 9c:bd:5a:f3:22:3d:64:cf:96:bd:51:c2:21:d3:08: c1:0a:a7:77:67:b1:ce:1e:f7:c6:3d:6b:81:90:2d: a0:15:9e:53:14:62:4d:bb:6d:00:ff:b6:e4:4c:0d: 12:e9:70:93:17:2f:fe:05:ff:db:70:b9:32:ba:85: 3d:eb:6d:2d:0d:a5:ac:b2:f4:79:6d:ff:62:be:59: 30:f6:d8:9d:6a:c6:00:5f:cc:30:e2:72:43:42:18: ae:2b:4d:07:85:dc:dc:7a:33:51:16:00:04:79:34: 7a:e1:54:0f:d5:2b:4e:6f:a1:65:ff:9c:c0:16:41: b6:e3:e9:9f:dd:41:fe:7b:6c:72:27:67:14:50:4d: f9:5a:1c:4d:66:de:24:33:c9:93:40:a6:70:3c:26: b9:7f:a7:64:de:b9:29:03:92:e4:5a:32:d0:bb:01: 53:db:8e:3e:ee:32:4d:43:30:cd:75:ff:93:6e:88: 6f:ba:14:b7:a2:b3:65:d1:60:38:2e:50:b7:00:da: e8:82:3f:e4:79:8d:78:e0:38:06:34:92:7c:a0:e4: e4:4e:b5:a0:86:08:7a:db:d2:50:a5:7d:e5:6c:1c: a8:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:AC:FE:CA:CD:FC:C3:90:5A:F4:33:AC:AE:AD:EA:55:86:A9:6B:37 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/uKz-ys38w5Ba9DOsrq3qVYapazc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.107.64.0/18 Signature Algorithm: sha256WithRSAEncryption b3:ed:cd:28:5e:91:a5:10:3d:a3:1a:17:9d:7e:7e:f9:ab:00: 0e:be:fb:e5:5c:2d:c7:98:3c:d1:69:4e:60:61:c7:0d:4f:62: 81:2b:dd:f1:69:d9:de:b5:d1:3f:ee:3f:b1:f4:7b:a6:83:d4: 14:59:82:6e:2f:54:78:cc:6f:75:cc:7e:05:e7:3d:d0:a0:12: 9b:1e:b1:3e:ef:0a:19:eb:26:df:3c:bd:88:a7:98:31:18:fa: 9e:dd:fa:47:44:f7:7a:6d:d4:ae:06:54:5d:d0:3f:7a:76:3b: 35:a7:e2:1c:29:e2:6c:7d:04:2d:48:72:7f:79:6f:ed:e5:d1: 13:3a:78:eb:aa:f5:6f:f8:0c:2f:74:23:4a:9b:cf:a6:48:8b: fa:5e:5c:f4:f4:21:29:fb:b1:99:2a:68:10:63:b9:9d:bb:f2: 2d:38:22:c2:03:f0:45:e2:81:8c:23:ee:2d:a1:42:db:09:d4: f2:44:d2:11:b3:44:91:07:4e:46:5b:9f:3f:07:47:56:f1:d3: 7d:5c:7b:7b:18:b7:ed:a7:56:ba:77:5e:ac:be:19:fa:49:6f: 7f:71:52:a4:b4:59:56:ea:c3:9a:cc:2d:88:18:02:56:2e:80: 96:af:39:b9:78:4d:b9:ae:78:66:e9:82:ca:a4:04:fa:bf:e8: b2:5f:d6:f0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCdkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQwMzNaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEI4QUNGRUNBQ0RGQ0Mz OTA1QUY0MzNBQ0FFQURFQTU1ODZBOTZCMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDF2PUetrsYsM59Gx3nlqPQovULEhP4sEPZJg386py9WvMiPWTP lr1RwiHTCMEKp3dnsc4e98Y9a4GQLaAVnlMUYk27bQD/tuRMDRLpcJMXL/4F/9tw uTK6hT3rbS0Npayy9Hlt/2K+WTD22J1qxgBfzDDickNCGK4rTQeF3Nx6M1EWAAR5 NHrhVA/VK05voWX/nMAWQbbj6Z/dQf57bHInZxRQTflaHE1m3iQzyZNApnA8Jrl/ p2TeuSkDkuRaMtC7AVPbjj7uMk1DMM11/5NuiG+6FLeis2XRYDguULcA2uiCP+R5 jXjgOAY0knyg5OROtaCGCHrb0lClfeVsHKhRAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUuKz+ys38w5Ba9DOsrq3qVYapazcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3VLei15czM4dzVCYTlET3NycTNxVllhcGF6Yy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYxa0AwDQYJKoZIhvcNAQELBQADggEBALPtzShekaUQPaMaF51+fvmrAA6+ ++VcLceYPNFpTmBhxw1PYoEr3fFp2d610T/uP7H0e6aD1BRZgm4vVHjMb3XMfgXn PdCgEpsesT7vChnrJt88vYinmDEY+p7d+kdE93pt1K4GVF3QP3p2OzWn4hwp4mx9 BC1Icn95b+3l0RM6eOuq9W/4DC90I0qbz6ZIi/peXPT0ISn7sZkqaBBjuZ278i04 IsID8EXigYwj7i2hQtsJ1PJE0hGzRJEHTkZbnz8HR1bx031ce3sYt+2nVrp3Xqy+ GfpJb39xUqS0WVbqw5rMLYgYAlYugJavObl4TbmueGbpgsqkBPq/6LJf1vA= -----END CERTIFICATE-----Generated at Sat Apr 5 17:46:05 2025 by rpki-client