$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/zopd-ABvxZJ_hKtEsgYFaAEbrMM.roa File: zopd-ABvxZJ_hKtEsgYFaAEbrMM.roa (raw, json) Hash identifier: FpmuD6d3A8x/00qh2q9GE7Xgv6aAOTwSyBxRnf6+LK4= Subject key identifier: CE:8A:5D:F8:00:6F:C5:92:7F:84:AB:44:B2:06:05:68:01:1B:AC:C3 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0932 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/zopd-ABvxZJ_hKtEsgYFaAEbrMM.roa Signing time: Mon 17 Jun 2024 08:16:05 +0000 ROA not before: Mon 17 Jun 2024 08:16:05 +0000 ROA not after: Sun 15 Jun 2025 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2354 (0x932) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 17 08:16:05 2024 GMT Not After : Jun 15 01:30:03 2025 GMT Subject: CN=CE8A5DF8006FC5927F84AB44B2060568011BACC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:1d:01:ff:74:f8:8a:14:4c:fb:c0:5a:31:d7: 5c:e2:89:b2:2b:0d:d2:81:08:90:9e:b1:b1:5e:22: 1e:80:f6:6a:92:bc:c0:7c:10:aa:5b:9f:99:c3:bb: 20:d6:da:f0:7a:fe:e5:0c:10:9d:4d:fd:43:ee:e8: 10:b0:e9:46:ed:7d:29:0a:af:64:16:0a:1e:e4:b7: d4:e0:c7:f8:58:04:96:1c:bb:f1:2d:bc:c1:45:5b: 5b:41:3d:a2:bd:fd:5a:6a:47:20:10:e3:24:de:e4: 6e:cb:f1:e8:c1:f6:40:c3:d9:29:28:3a:4e:b5:3c: d5:8a:04:ba:a3:c2:1c:ac:04:62:4c:44:1b:8f:11: c2:2e:09:ad:cf:bc:c0:1a:c2:57:1a:83:23:79:8e: fa:52:49:b1:88:81:ca:1a:27:e5:bb:45:0c:bf:0f: f1:a3:8c:a3:d4:20:28:15:a2:1d:13:d9:08:5a:fc: c6:ce:6c:ec:aa:8f:1c:0d:76:53:70:80:c6:cd:36: 93:6f:69:40:e8:04:2e:80:9a:14:99:fb:78:af:46: 90:21:32:25:fd:05:bf:8e:6c:cd:d7:b9:77:ad:4a: e8:2c:02:f4:2a:b8:64:bb:5a:5b:9c:14:3d:d1:b6: 36:a4:3c:6f:27:66:e1:c3:89:9a:1d:fb:98:59:df: e0:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:8A:5D:F8:00:6F:C5:92:7F:84:AB:44:B2:06:05:68:01:1B:AC:C3 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/zopd-ABvxZJ_hKtEsgYFaAEbrMM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.96.0/20 Signature Algorithm: sha256WithRSAEncryption da:40:c2:87:c4:02:54:cb:52:fd:78:77:ff:1a:80:4e:41:12: 55:a8:a2:a6:b0:a1:b1:4f:a6:85:ef:25:e9:46:f5:a8:85:ff: dd:39:6e:6e:9e:af:98:18:34:84:a2:8b:41:84:3c:1e:dc:d0: f2:f6:06:1c:e6:ac:df:07:73:17:3d:41:ba:22:43:dd:5d:53: a3:9e:eb:a3:0b:d2:b4:55:dd:26:50:e7:b2:28:ea:4c:21:60: 1e:85:91:5d:9f:08:9b:15:67:69:83:3a:a1:61:04:14:34:89: bb:a9:dd:6a:41:1d:ca:10:35:b9:4e:99:bc:90:6f:1e:29:65: 01:b8:e0:2f:33:ff:af:0a:4b:66:fe:da:98:55:c8:d4:79:a1: 1c:89:9c:37:cb:cf:80:6d:08:9e:8d:1d:14:00:99:4e:3a:bb: d3:cc:77:51:f3:1e:de:fb:d9:a7:3d:6e:4e:06:d6:5b:81:ff: 0e:4a:ad:64:99:7d:5c:48:6b:12:c0:c4:c1:99:25:ef:38:1c: a2:a3:3a:17:21:1f:cd:c4:dc:a8:fb:5a:88:7f:03:3c:9b:9b: 54:00:56:cb:4a:01:25:8d:a5:09:7a:60:f7:0f:f4:0c:e0:d7: 8c:29:c6:be:eb:7d:5c:bf:09:29:74:35:44:7b:4f:45:14:e2: 9b:61:5c:7e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCTIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MTcw ODE2MDVaFw0yNTA2MTUwMTMwMDNaMDMxMTAvBgNVBAMTKENFOEE1REY4MDA2RkM1 OTI3Rjg0QUI0NEIyMDYwNTY4MDExQkFDQzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMHQH/dPiKFEz7wFox11ziibIrDdKBCJCesbFeIh6A9mqSvMB8 EKpbn5nDuyDW2vB6/uUMEJ1N/UPu6BCw6UbtfSkKr2QWCh7kt9Tgx/hYBJYcu/Et vMFFW1tBPaK9/VpqRyAQ4yTe5G7L8ejB9kDD2SkoOk61PNWKBLqjwhysBGJMRBuP EcIuCa3PvMAawlcagyN5jvpSSbGIgcoaJ+W7RQy/D/GjjKPUICgVoh0T2Qha/MbO bOyqjxwNdlNwgMbNNpNvaUDoBC6AmhSZ+3ivRpAhMiX9Bb+ObM3XuXetSugsAvQq uGS7WlucFD3RtjakPG8nZuHDiZod+5hZ3+AFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUzopd+ABvxZJ/hKtEsgYFaAEbrMMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3pvcGQtQUJ2eFpKX2hLdEVzZ1lGYUFFYnJNTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQBS2AwDQYJKoZIhvcNAQELBQADggEBANpAwofEAlTLUv14d/8agE5BElWo oqawobFPpoXvJelG9aiF/905bm6er5gYNISii0GEPB7c0PL2BhzmrN8Hcxc9Qboi Q91dU6Oe66ML0rRV3SZQ57Io6kwhYB6FkV2fCJsVZ2mDOqFhBBQ0ibup3WpBHcoQ NblOmbyQbx4pZQG44C8z/68KS2b+2phVyNR5oRyJnDfLz4BtCJ6NHRQAmU46u9PM d1HzHt772ac9bk4G1luB/w5KrWSZfVxIaxLAxMGZJe84HKKjOhchH83E3Kj7Woh/ Azybm1QAVstKASWNpQl6YPcP9Azg14wpxr7rfVy/CSl0NUR7T0UU4pthXH4= -----END CERTIFICATE-----Generated at Sat Apr 5 17:19:35 2025 by rpki-client