$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/307/n34qdDgq4js3y1LXYsfg_CZGXKE.roa File: n34qdDgq4js3y1LXYsfg_CZGXKE.roa (raw, json) Hash identifier: 5JBqxvcvOCLu2ZnDlXiCDL1XcFEyA0twTXwVhRidmlg= Subject key identifier: 9F:7E:2A:74:38:2A:E2:3B:37:CB:52:D7:62:C7:E0:FC:26:46:5C:A1 Certificate issuer: /CN=6D1ED16D8C6D3BA40BF42CB3A29652ADAB76D061 Certificate serial: 2D Authority key identifier: 6D:1E:D1:6D:8C:6D:3B:A4:0B:F4:2C:B3:A2:96:52:AD:AB:76:D0:61 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/bR7RbYxtO6QL9CyzopZSrat20GE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/n34qdDgq4js3y1LXYsfg_CZGXKE.roa Signing time: Thu 31 Oct 2024 01:32:12 +0000 ROA not before: Thu 31 Oct 2024 01:32:12 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 18266 IP address blocks: 219.124.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/bR7RbYxtO6QL9CyzopZSrat20GE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/bR7RbYxtO6QL9CyzopZSrat20GE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/bR7RbYxtO6QL9CyzopZSrat20GE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 20:25:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D1ED16D8C6D3BA40BF42CB3A29652ADAB76D061 Validity Not Before: Oct 31 01:32:12 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=9F7E2A74382AE23B37CB52D762C7E0FC26465CA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:0a:2f:bb:54:43:0a:70:76:17:e6:80:90:c7: 5d:53:15:cf:77:87:e2:aa:d6:59:5a:c6:58:b2:b4: 1d:e3:03:70:64:6b:4e:73:e0:bd:a8:1c:8d:cc:b1: 26:06:ee:8a:83:00:5a:3a:f2:ce:de:ac:31:01:ce: d9:a0:0c:31:74:5f:ce:63:31:35:cd:8b:0c:55:97: cf:81:83:eb:8c:f9:b1:b6:2e:23:c8:52:bb:a6:d0: e2:47:c0:9a:fe:3f:a2:5b:3f:56:9b:fa:d2:7f:04: 11:77:95:03:ac:8c:87:55:fb:d2:b4:c5:e6:19:09: 30:96:d5:1f:11:44:1a:7b:e6:f5:69:cf:db:06:e4: 45:ca:e4:6c:3c:cb:02:02:e7:67:4a:d8:73:5a:8c: 85:51:3f:cf:d6:73:f5:40:fc:dd:43:83:52:f6:e7: a3:66:30:d4:8c:81:20:1c:c7:0a:cb:d2:88:f0:5a: 64:94:4d:e2:f0:1f:96:81:ef:60:73:b0:d7:6e:26: 17:a4:44:bc:bf:ec:2a:ef:c8:18:85:d0:3f:2a:f0: 96:da:ff:5e:7d:d8:fc:bd:23:c4:eb:18:c0:f4:7c: 8a:ba:78:64:e8:00:e5:4c:df:87:89:10:db:14:12: 88:42:4b:fa:89:de:45:2f:d6:94:d1:a5:c0:09:ad: f9:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:7E:2A:74:38:2A:E2:3B:37:CB:52:D7:62:C7:E0:FC:26:46:5C:A1 X509v3 Authority Key Identifier: keyid:6D:1E:D1:6D:8C:6D:3B:A4:0B:F4:2C:B3:A2:96:52:AD:AB:76:D0:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/bR7RbYxtO6QL9CyzopZSrat20GE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/bR7RbYxtO6QL9CyzopZSrat20GE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/n34qdDgq4js3y1LXYsfg_CZGXKE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.124.96.0/20 Signature Algorithm: sha256WithRSAEncryption 3e:08:a2:ac:98:1f:cc:72:2d:2c:41:9a:e2:d1:fa:91:3f:db: 74:ad:e7:18:a7:71:97:db:77:05:4b:42:8f:fb:f4:05:a9:c2: eb:ce:f0:e4:1d:c5:71:44:3c:e4:fa:68:c6:73:66:90:ff:b6: c0:77:3d:96:c3:d8:18:42:9e:c6:42:0e:86:6c:98:3b:95:ce: 26:04:32:f9:cc:c5:fe:bd:30:62:b2:d5:da:d7:74:49:e2:fe: 39:6f:bb:29:4e:c3:ae:af:3d:1d:e6:69:20:82:c9:bf:5a:e6: 3c:d0:b6:9d:73:61:0f:75:91:22:33:a9:25:74:45:77:ec:7c: 29:8c:e6:d1:bc:f5:7c:5f:b7:9c:cd:11:88:e8:0c:14:6b:e8: f3:68:33:65:7b:b6:c2:5b:b8:f8:fa:4f:a8:7d:1d:0e:8f:a7: ab:84:44:ce:8f:b0:0b:ad:31:20:98:8f:4a:a6:4a:f4:de:59: 0e:13:ad:02:5f:f5:6f:82:64:0e:bd:f4:48:c5:0d:3c:c5:28: 8d:26:15:09:b5:bc:91:4a:fc:8e:17:91:7c:78:2f:34:e4:dc: e6:27:11:3a:1b:b0:ea:74:dd:ab:63:b5:f8:d2:28:a7:ea:7d: ef:b6:8f:53:68:49:a7:74:11:98:5e:91:c2:6c:5e:2b:05:f8: cd:0a:d4:13 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBLTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2RDFF RDE2RDhDNkQzQkE0MEJGNDJDQjNBMjk2NTJBREFCNzZEMDYxMB4XDTI0MTAzMTAx MzIxMloXDTI1MTAxNTAxMzAwMlowMzExMC8GA1UEAxMoOUY3RTJBNzQzODJBRTIz QjM3Q0I1MkQ3NjJDN0UwRkMyNjQ2NUNBMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANkKL7tUQwpwdhfmgJDHXVMVz3eH4qrWWVrGWLK0HeMDcGRrTnPg vagcjcyxJgbuioMAWjryzt6sMQHO2aAMMXRfzmMxNc2LDFWXz4GD64z5sbYuI8hS u6bQ4kfAmv4/ols/Vpv60n8EEXeVA6yMh1X70rTF5hkJMJbVHxFEGnvm9WnP2wbk RcrkbDzLAgLnZ0rYc1qMhVE/z9Zz9UD83UODUvbno2Yw1IyBIBzHCsvSiPBaZJRN 4vAfloHvYHOw124mF6REvL/sKu/IGIXQPyrwltr/Xn3Y/L0jxOsYwPR8irp4ZOgA 5Uzfh4kQ2xQSiEJL+oneRS/WlNGlwAmt+bECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSffip0OCriOzfLUtdix+D8JkZcoTAfBgNVHSMEGDAWgBRtHtFtjG07pAv0LLOi llKtq3bQYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA3L2JSN1JiWXh0TzZRTDlDeXpvcFpTcmF0MjBHRS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2JSN1JiWXh0TzZRTDlDeXpvcFpTcmF0 MjBHRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zMDcvbjM0cWREZ3E0anMzeTFMWFlzZmdfQ1pHWEtFLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNt8YDANBgkqhkiG9w0BAQsFAAOCAQEAPgiirJgfzHItLEGa4tH6kT/bdK3n GKdxl9t3BUtCj/v0BanC687w5B3FcUQ85PpoxnNmkP+2wHc9lsPYGEKexkIOhmyY O5XOJgQy+czF/r0wYrLV2td0SeL+OW+7KU7Drq89HeZpIILJv1rmPNC2nXNhD3WR IjOpJXRFd+x8KYzm0bz1fF+3nM0RiOgMFGvo82gzZXu2wlu4+PpPqH0dDo+nq4RE zo+wC60xIJiPSqZK9N5ZDhOtAl/1b4JkDr30SMUNPMUojSYVCbW8kUr8jheRfHgv NOTc5icROhuw6nTdq2O1+NIop+p977aPU2hJp3QRmF6RwmxeKwX4zQrUEw== -----END CERTIFICATE-----Generated at Thu Mar 13 01:48:50 2025 by rpki-client