$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/440/9d8MC5H9mqcLCIksMZMUktRgPSM.roa File: 9d8MC5H9mqcLCIksMZMUktRgPSM.roa (raw, json) Hash identifier: 7r9y44geCugc2m5c2/P5VteUoFhuBISm4j4DX/wT57M= Subject key identifier: F5:DF:0C:0B:91:FD:9A:A7:0B:08:89:2C:31:93:14:92:D4:60:3D:23 Certificate issuer: /CN=E62338DE332C6F4B9E2596EE5DC379A25EFE58CF Certificate serial: 69 Authority key identifier: E6:23:38:DE:33:2C:6F:4B:9E:25:96:EE:5D:C3:79:A2:5E:FE:58:CF Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/9d8MC5H9mqcLCIksMZMUktRgPSM.roa Signing time: Sat 30 Nov 2024 01:31:45 +0000 ROA not before: Sat 30 Nov 2024 01:31:45 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 17676 IP address blocks: 61.213.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/5iM43jMsb0ueJZbuXcN5ol7-WM8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/5iM43jMsb0ueJZbuXcN5ol7-WM8.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E62338DE332C6F4B9E2596EE5DC379A25EFE58CF Validity Not Before: Nov 30 01:31:45 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=F5DF0C0B91FD9AA70B08892C31931492D4603D23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:67:38:d5:ad:08:be:9e:9c:81:05:09:41:e7: 3b:26:b3:e1:23:8a:02:77:75:d2:7d:17:4c:35:e6: e9:d1:e2:e2:3f:fd:51:42:2b:d5:20:ee:89:2f:1f: de:ef:1a:ae:9f:09:2d:08:7a:e0:e4:e0:52:51:3c: 4a:28:30:df:d6:74:91:00:cc:57:ce:9c:37:3f:b7: 53:b9:c9:eb:1f:db:3f:b5:84:d7:30:a8:0a:e6:d0: f5:7a:b5:e0:0a:25:06:94:00:68:ec:04:8d:82:90: 7b:1e:56:a1:0c:f6:e0:80:03:3e:d5:c7:1e:5b:66: 19:32:45:37:c2:21:a2:4b:5a:2d:66:fb:2b:ac:61: b7:05:d5:4a:71:69:0b:1d:49:c1:c0:7b:b1:fd:54: 5a:d4:09:96:4d:0b:54:6c:d5:f6:68:54:e0:fe:8d: 7b:a8:e0:2a:84:91:d2:c9:6a:6d:e3:11:dc:e5:c0: fe:ad:20:b6:fd:aa:1e:fd:fb:88:b2:18:a3:86:43: 3c:3e:1b:09:ba:82:e5:f3:e3:0e:56:da:08:07:01: 7f:d5:5b:eb:b6:ad:bc:ec:fb:2e:91:c0:98:2b:3e: 59:1a:54:b5:14:0b:fe:e6:d8:d8:47:8f:1e:d5:c0: 4f:4d:1b:82:6c:39:e9:4f:33:d9:e9:89:83:83:93: df:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:DF:0C:0B:91:FD:9A:A7:0B:08:89:2C:31:93:14:92:D4:60:3D:23 X509v3 Authority Key Identifier: keyid:E6:23:38:DE:33:2C:6F:4B:9E:25:96:EE:5D:C3:79:A2:5E:FE:58:CF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/5iM43jMsb0ueJZbuXcN5ol7-WM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/9d8MC5H9mqcLCIksMZMUktRgPSM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.213.0.0/20 Signature Algorithm: sha256WithRSAEncryption 77:e9:8d:d5:e6:e1:60:fa:1f:ec:65:49:67:fb:96:b5:cb:7d: 01:0c:84:cf:04:b5:3e:29:c7:ca:9b:af:15:64:43:01:2b:b3: 4c:66:83:0c:9b:39:69:ba:b7:9f:7c:c9:bb:67:22:b9:dd:03: 3c:1f:03:a1:ec:7f:8d:3d:0b:ff:37:89:3e:b6:92:a0:61:be: 2b:10:d1:16:45:dc:e0:b2:c4:81:59:d9:00:22:e7:8c:e2:b9: dd:76:e2:20:2b:19:8d:4c:68:d5:21:b3:5d:5c:f6:2e:66:5f: 47:d7:01:e7:b2:ce:00:9e:51:c2:3a:55:7e:4a:f1:54:7e:42: fb:e7:97:57:8e:6d:08:f5:9c:e1:99:c7:3b:e4:90:3a:2a:ae: fa:db:e7:1c:c3:e5:bc:8d:de:c5:cf:14:8a:bf:43:2b:81:56: 13:2b:03:27:0e:cb:d0:7e:de:39:fd:7f:7e:e3:3f:a4:08:27: 73:4b:63:cf:9b:4c:a6:45:ec:24:99:84:5b:d4:ec:aa:ab:6c: e1:ad:3f:4c:9d:66:5a:9d:a8:b9:54:ca:a2:75:46:fd:57:ae: 7f:32:99:3a:03:18:de:f5:73:1d:de:8c:c5:c8:68:da:fa:e2: 20:4c:7f:d5:98:99:ae:02:fa:fa:54:fc:cd:49:41:45:b4:40: 87:31:e9:d5 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBaTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFNjIz MzhERTMzMkM2RjRCOUUyNTk2RUU1REMzNzlBMjVFRkU1OENGMB4XDTI0MTEzMDAx MzE0NVoXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoRjVERjBDMEI5MUZEOUFB NzBCMDg4OTJDMzE5MzE0OTJENDYwM0QyMzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALBnONWtCL6enIEFCUHnOyaz4SOKAnd10n0XTDXm6dHi4j/9UUIr 1SDuiS8f3u8arp8JLQh64OTgUlE8Sigw39Z0kQDMV86cNz+3U7nJ6x/bP7WE1zCo CubQ9Xq14AolBpQAaOwEjYKQex5WoQz24IADPtXHHltmGTJFN8IhoktaLWb7K6xh twXVSnFpCx1JwcB7sf1UWtQJlk0LVGzV9mhU4P6Ne6jgKoSR0slqbeMR3OXA/q0g tv2qHv37iLIYo4ZDPD4bCbqC5fPjDlbaCAcBf9Vb67atvOz7LpHAmCs+WRpUtRQL /ubY2EePHtXAT00bgmw56U8z2emJg4OT3zcCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBT13wwLkf2apwsIiSwxkxSS1GA9IzAfBgNVHSMEGDAWgBTmIzjeMyxvS54llu5d w3miXv5YzzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDQwLzVpTTQzak1zYjB1ZUpaYnVYY041b2w3LVdNOC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzVpTTQzak1zYjB1ZUpaYnVYY041b2w3 LVdNOC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80NDAvOWQ4TUM1SDltcWNMQ0lrc01aTVVrdFJnUFNNLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBD3VADANBgkqhkiG9w0BAQsFAAOCAQEAd+mN1ebhYPof7GVJZ/uWtct9AQyE zwS1PinHypuvFWRDASuzTGaDDJs5abq3n3zJu2ciud0DPB8Doex/jT0L/zeJPraS oGG+KxDRFkXc4LLEgVnZACLnjOK53XbiICsZjUxo1SGzXVz2LmZfR9cB57LOAJ5R wjpVfkrxVH5C++eXV45tCPWc4ZnHO+SQOiqu+tvnHMPlvI3exc8Uir9DK4FWEysD Jw7L0H7eOf1/fuM/pAgnc0tjz5tMpkXsJJmEW9Tsqqts4a0/TJ1mWp2ouVTKonVG /VeufzKZOgMY3vVzHd6Mxcho2vriIEx/1ZiZrgL6+lT8zUlBRbRAhzHp1Q== -----END CERTIFICATE-----Generated at Sat Apr 5 17:25:13 2025 by rpki-client