$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/307/j0qhUzSivkQc155K8JcBLQskti0.roa File: j0qhUzSivkQc155K8JcBLQskti0.roa (raw, json) Hash identifier: Hq6BInSyeGo/Neeh2ACURYfYFeSzk/zi4a3iA+pSdXA= Subject key identifier: 8F:4A:A1:53:34:A2:BE:44:1C:D7:9E:4A:F0:97:01:2D:0B:24:B6:2D Certificate issuer: /CN=6D1ED16D8C6D3BA40BF42CB3A29652ADAB76D061 Certificate serial: 2F Authority key identifier: 6D:1E:D1:6D:8C:6D:3B:A4:0B:F4:2C:B3:A2:96:52:AD:AB:76:D0:61 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/bR7RbYxtO6QL9CyzopZSrat20GE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/j0qhUzSivkQc155K8JcBLQskti0.roa Signing time: Thu 31 Oct 2024 01:32:14 +0000 ROA not before: Thu 31 Oct 2024 01:32:14 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 23783 IP address blocks: 219.124.100.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/bR7RbYxtO6QL9CyzopZSrat20GE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/bR7RbYxtO6QL9CyzopZSrat20GE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/bR7RbYxtO6QL9CyzopZSrat20GE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D1ED16D8C6D3BA40BF42CB3A29652ADAB76D061 Validity Not Before: Oct 31 01:32:14 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=8F4AA15334A2BE441CD79E4AF097012D0B24B62D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c7:65:61:7e:96:4d:2b:21:08:3f:7b:f2:b5: 26:d5:9a:90:aa:70:6b:a3:a3:01:2d:0e:1c:21:ac: 4a:3b:fb:87:e2:e1:bd:8f:a9:f3:ee:f5:fd:b0:22: 65:6c:0d:b5:c8:45:c4:1b:95:a5:e9:70:28:92:48: d0:d9:1a:69:86:aa:e8:42:88:14:91:29:2c:71:ed: 43:12:65:da:cc:fb:04:ff:1e:ab:22:ed:91:55:26: 29:48:00:ad:f6:2b:cb:a9:bd:38:14:d8:51:28:cb: 76:8f:ec:41:36:6c:d1:a8:6b:4b:95:02:b4:a5:94: 08:c7:11:4b:0a:a7:f8:a3:b9:20:bb:62:2f:de:04: 47:64:f1:92:dc:a6:8a:1c:48:5a:38:9b:9c:42:9c: bd:c6:ee:58:6d:4a:85:45:62:c5:8e:56:00:63:3d: fc:28:54:0a:b5:2c:f0:2d:7d:e4:c9:dc:41:b8:92: ad:e7:dd:f4:64:a0:5c:17:e9:30:96:48:55:0d:0a: fa:d0:28:a8:6b:79:d7:9f:1b:b8:26:d5:9e:14:d7: a2:26:9b:e7:2b:55:fa:ca:8b:07:66:c7:19:ce:da: 2a:e5:87:a9:bd:ea:de:66:99:89:0c:f5:f8:46:72: 6c:9f:59:53:87:d3:e1:e8:42:bf:ca:05:3d:00:f1: 0d:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:4A:A1:53:34:A2:BE:44:1C:D7:9E:4A:F0:97:01:2D:0B:24:B6:2D X509v3 Authority Key Identifier: keyid:6D:1E:D1:6D:8C:6D:3B:A4:0B:F4:2C:B3:A2:96:52:AD:AB:76:D0:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/bR7RbYxtO6QL9CyzopZSrat20GE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/bR7RbYxtO6QL9CyzopZSrat20GE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/j0qhUzSivkQc155K8JcBLQskti0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.124.100.0/22 Signature Algorithm: sha256WithRSAEncryption 60:b8:07:f4:12:21:b3:9d:67:60:63:fc:9c:1d:8f:c9:02:c7: d4:77:8d:09:a1:bb:87:e4:b3:b8:37:07:97:6e:88:10:4c:a3: 69:a0:5d:44:b7:e9:c7:9c:a8:a4:42:49:3b:32:1c:b9:a0:1a: 4b:b8:27:32:81:f1:c1:23:68:23:bb:e0:45:5a:c5:5a:6a:08: 44:19:c3:b3:6d:81:ae:c6:b4:9a:1a:2c:34:5a:bb:c3:57:1d: 6f:d1:49:ba:e2:96:90:bf:87:2e:47:21:e3:dd:e0:5c:6c:13: b3:39:a4:d5:35:c0:d6:22:82:3c:7a:bb:0e:d0:87:d8:39:f2: dd:1a:62:8b:39:dc:0f:84:fb:db:c1:b2:b2:35:ba:1c:10:b2: 33:8e:98:e8:08:14:97:29:e5:06:41:ad:53:09:0e:98:15:fb: 8f:68:09:ef:33:0c:08:c2:9c:bf:39:4c:86:8c:06:fc:67:c4: 01:a1:8b:fa:c8:2b:3a:b5:1f:38:84:28:71:8a:fa:f6:b2:36: 69:c5:3b:2a:a3:35:e3:dd:2d:b2:c8:c8:c1:f1:98:1a:b5:99: 78:41:ae:de:be:6d:b1:18:bc:23:35:7f:e7:7c:67:1c:92:6e: 0a:6e:10:31:ff:44:bb:0c:d9:f2:d2:10:b0:5f:da:c8:f1:be: bd:a5:85:3c -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBLzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2RDFF RDE2RDhDNkQzQkE0MEJGNDJDQjNBMjk2NTJBREFCNzZEMDYxMB4XDTI0MTAzMTAx MzIxNFoXDTI1MTAxNTAxMzAwMlowMzExMC8GA1UEAxMoOEY0QUExNTMzNEEyQkU0 NDFDRDc5RTRBRjA5NzAxMkQwQjI0QjYyRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALvHZWF+lk0rIQg/e/K1JtWakKpwa6OjAS0OHCGsSjv7h+LhvY+p 8+71/bAiZWwNtchFxBuVpelwKJJI0NkaaYaq6EKIFJEpLHHtQxJl2sz7BP8eqyLt kVUmKUgArfYry6m9OBTYUSjLdo/sQTZs0ahrS5UCtKWUCMcRSwqn+KO5ILtiL94E R2TxktymihxIWjibnEKcvcbuWG1KhUVixY5WAGM9/ChUCrUs8C195MncQbiSrefd 9GSgXBfpMJZIVQ0K+tAoqGt5158buCbVnhTXoiab5ytV+sqLB2bHGc7aKuWHqb3q 3maZiQz1+EZybJ9ZU4fT4ehCv8oFPQDxDbECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSPSqFTNKK+RBzXnkrwlwEtCyS2LTAfBgNVHSMEGDAWgBRtHtFtjG07pAv0LLOi llKtq3bQYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA3L2JSN1JiWXh0TzZRTDlDeXpvcFpTcmF0MjBHRS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2JSN1JiWXh0TzZRTDlDeXpvcFpTcmF0 MjBHRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zMDcvajBxaFV6U2l2a1FjMTU1SzhKY0JMUXNrdGkwLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAtt8ZDANBgkqhkiG9w0BAQsFAAOCAQEAYLgH9BIhs51nYGP8nB2PyQLH1HeN CaG7h+SzuDcHl26IEEyjaaBdRLfpx5yopEJJOzIcuaAaS7gnMoHxwSNoI7vgRVrF WmoIRBnDs22Brsa0mhosNFq7w1cdb9FJuuKWkL+HLkch493gXGwTszmk1TXA1iKC PHq7DtCH2Dny3RpiizncD4T728GysjW6HBCyM46Y6AgUlynlBkGtUwkOmBX7j2gJ 7zMMCMKcvzlMhowG/GfEAaGL+sgrOrUfOIQocYr69rI2acU7KqM1490tssjIwfGY GrWZeEGu3r5tsRi8IzV/53xnHJJuCm4QMf9EuwzZ8tIQsF/ayPG+vaWFPA== -----END CERTIFICATE-----Generated at Sun Feb 16 22:13:54 2025 by rpki-client