$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/207/ZQA3l5fTRVjksdyp8eMOOOy1rH8.roa File: ZQA3l5fTRVjksdyp8eMOOOy1rH8.roa (raw, json) Hash identifier: 9pw3D6hIxt7wBqb8br7uct6iso4Wk3dQbYrO8nEmIfo= Subject key identifier: 65:00:37:97:97:D3:45:58:E4:B1:DC:A9:F1:E3:0E:38:EC:B5:AC:7F Certificate issuer: /CN=67018B4DFE54BD644E000641A234B471DB20B892 Certificate serial: 95 Authority key identifier: 67:01:8B:4D:FE:54:BD:64:4E:00:06:41:A2:34:B4:71:DB:20:B8:92 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZwGLTf5UvWROAAZBojS0cdsguJI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/207/ZQA3l5fTRVjksdyp8eMOOOy1rH8.roa Signing time: Mon 30 Sep 2024 01:29:31 +0000 ROA not before: Mon 30 Sep 2024 01:29:31 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 7521 IP address blocks: 210.173.186.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/207/ZwGLTf5UvWROAAZBojS0cdsguJI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/207/ZwGLTf5UvWROAAZBojS0cdsguJI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZwGLTf5UvWROAAZBojS0cdsguJI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67018B4DFE54BD644E000641A234B471DB20B892 Validity Not Before: Sep 30 01:29:31 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=6500379797D34558E4B1DCA9F1E30E38ECB5AC7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:18:4a:c1:95:0c:a9:66:3f:e0:d5:c9:74:9e: 75:8c:9e:66:24:07:e9:66:73:4d:55:10:4d:5e:eb: 4f:64:eb:04:74:22:2b:2b:47:6b:d5:98:fe:ab:7d: cf:00:94:bd:fa:ef:69:84:bd:55:e9:63:84:2a:58: b1:e8:69:5f:e7:05:1a:16:53:f1:9c:50:a4:b8:53: 05:c7:76:64:8c:0e:19:8b:d9:57:57:23:89:c4:bd: 4a:d6:9f:c6:a4:9a:68:34:aa:61:4b:89:3b:d0:a9: 34:5e:d2:1c:7a:cf:ba:91:f1:01:e5:4c:15:bf:31: a6:4f:66:0f:1d:ed:03:18:7e:fa:5e:dc:91:07:99: 7c:77:59:df:06:f7:f4:f9:da:bc:f0:a7:78:19:b7: aa:12:0e:63:ac:33:dc:0a:22:69:64:d8:8b:49:f3: 2c:f7:f1:48:b7:c5:de:0b:2f:1b:8c:7f:51:0b:04: 52:fd:6f:f3:34:ee:33:78:81:3f:99:04:64:5e:50: 7e:bf:0c:4e:61:a3:f4:dc:d5:c3:94:4e:c4:57:2f: e6:10:99:66:1c:f7:20:21:b8:6e:6d:b0:3f:28:8f: 07:91:de:82:f4:2c:61:9a:07:e1:e8:2d:79:df:70: 4e:54:4e:0e:d1:8e:38:6d:24:3b:9e:ba:3a:2e:45: 32:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:00:37:97:97:D3:45:58:E4:B1:DC:A9:F1:E3:0E:38:EC:B5:AC:7F X509v3 Authority Key Identifier: keyid:67:01:8B:4D:FE:54:BD:64:4E:00:06:41:A2:34:B4:71:DB:20:B8:92 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/207/ZwGLTf5UvWROAAZBojS0cdsguJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZwGLTf5UvWROAAZBojS0cdsguJI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/207/ZQA3l5fTRVjksdyp8eMOOOy1rH8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.173.186.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:7c:17:86:3c:08:9c:93:7c:7b:ff:6d:47:aa:ae:1d:18:82: e7:a2:7c:f7:ca:64:98:02:5f:8c:b9:c1:83:af:fe:b1:1c:f3: 2f:27:50:b1:23:4e:9e:f6:a3:78:cc:18:14:75:4b:c2:8c:0e: 91:ac:9b:50:c6:2d:46:0b:e5:b5:1d:bf:cc:db:0b:98:fc:0e: 51:9b:2c:3d:cd:e5:94:1b:bd:13:84:51:bc:01:23:5e:52:10: 5b:de:9e:92:f0:b4:18:cf:ce:3d:1f:38:af:a3:5e:e4:2a:8d: 63:5f:04:6f:6b:23:69:6b:62:5f:f4:5f:b9:fa:79:63:1b:b9: b8:3e:9a:59:18:6c:2a:cb:b6:96:40:87:9c:ff:31:77:68:ea: 77:ab:e7:87:b6:19:b0:4d:ef:f2:4c:bf:de:30:c8:0a:5b:73: f1:ce:e8:72:f6:af:66:8e:71:57:82:b1:5b:be:30:54:16:31: 49:aa:1e:2c:c3:d0:27:0a:e6:1c:08:26:5e:5f:2b:f8:26:db: c0:da:ac:ab:c4:d5:66:e8:ff:70:e7:33:ed:8c:1d:02:e1:b8: 39:73:03:91:79:1e:94:57:dc:d6:d1:f5:07:17:2d:1e:8c:66: ab:ac:e3:8c:00:d5:61:b2:3d:46:55:57:dd:81:ed:a4:80:46: f3:07:b8:82 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjcw MThCNERGRTU0QkQ2NDRFMDAwNjQxQTIzNEI0NzFEQjIwQjg5MjAeFw0yNDA5MzAw MTI5MzFaFw0yNTA5MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDY1MDAzNzk3OTdEMzQ1 NThFNEIxRENBOUYxRTMwRTM4RUNCNUFDN0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqGErBlQypZj/g1cl0nnWMnmYkB+lmc01VEE1e609k6wR0Iisr R2vVmP6rfc8AlL3672mEvVXpY4QqWLHoaV/nBRoWU/GcUKS4UwXHdmSMDhmL2VdX I4nEvUrWn8akmmg0qmFLiTvQqTRe0hx6z7qR8QHlTBW/MaZPZg8d7QMYfvpe3JEH mXx3Wd8G9/T52rzwp3gZt6oSDmOsM9wKImlk2ItJ8yz38Ui3xd4LLxuMf1ELBFL9 b/M07jN4gT+ZBGReUH6/DE5ho/Tc1cOUTsRXL+YQmWYc9yAhuG5tsD8ojweR3oL0 LGGaB+HoLXnfcE5UTg7RjjhtJDueujouRTItAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUZQA3l5fTRVjksdyp8eMOOOy1rH8wHwYDVR0jBBgwFoAUZwGLTf5UvWROAAZB ojS0cdsguJIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwNy9ad0dMVGY1VXZXUk9BQVpCb2pTMGNkc2d1SkkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9ad0dMVGY1VXZXUk9BQVpCb2pTMGNk c2d1SkkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjA3L1pRQTNsNWZUUlZqa3NkeXA4ZU1PT095MXJIOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHSrbowDQYJKoZIhvcNAQELBQADggEBAHx8F4Y8CJyTfHv/bUeqrh0Yguei fPfKZJgCX4y5wYOv/rEc8y8nULEjTp72o3jMGBR1S8KMDpGsm1DGLUYL5bUdv8zb C5j8DlGbLD3N5ZQbvROEUbwBI15SEFvenpLwtBjPzj0fOK+jXuQqjWNfBG9rI2lr Yl/0X7n6eWMbubg+mlkYbCrLtpZAh5z/MXdo6ner54e2GbBN7/JMv94wyApbc/HO 6HL2r2aOcVeCsVu+MFQWMUmqHizD0CcK5hwIJl5fK/gm28DarKvE1Wbo/3DnM+2M HQLhuDlzA5F5HpRX3NbR9QcXLR6MZqus44wA1WGyPUZVV92B7aSARvMHuII= -----END CERTIFICATE-----Generated at Sun Feb 16 22:35:48 2025 by rpki-client