$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/-GymQSVWiSgvndzc4pi9DSJ20Fs.roa File: -GymQSVWiSgvndzc4pi9DSJ20Fs.roa (raw, json) Hash identifier: Q9IZP4sLd4cMyXn9wY5+YLh6FvkbFNnPSt4CVULidOk= Subject key identifier: F8:6C:A6:41:25:56:89:28:2F:9D:DC:DC:E2:98:BD:0D:22:76:D0:5B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 09C5 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-GymQSVWiSgvndzc4pi9DSJ20Fs.roa Signing time: Sun 30 Jun 2024 01:40:25 +0000 ROA not before: Sun 30 Jun 2024 01:40:25 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 220.159.226.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2501 (0x9c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:40:25 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=F86CA641255689282F9DDCDCE298BD0D2276D05B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:4b:22:31:c5:08:bb:81:90:fe:5b:34:81:f6: cf:8b:68:13:45:9c:2c:b5:fb:43:21:ca:0b:1e:50: 6b:73:10:81:1e:68:82:45:55:e3:2d:0a:78:5e:f5: 96:58:44:b4:e3:9d:e7:fc:03:6b:10:5b:8b:b0:d7: 5a:77:62:1a:f2:5c:c8:b5:67:92:5c:30:28:9e:5c: e3:b0:70:38:4d:d9:6c:91:a2:73:09:fd:90:2c:ea: 9b:84:5d:53:36:a7:ce:d2:c2:a2:56:ed:fd:2f:97: 9f:fb:95:9a:93:f7:cb:cf:01:5c:76:1e:08:c9:e7: 04:63:75:7b:c8:a3:8c:41:b3:46:8c:9b:6b:99:45: 7a:42:4c:01:9f:97:20:9d:f8:1d:60:01:0e:18:39: 10:14:b1:d3:1a:51:c2:60:d2:be:1d:84:e5:79:d5: 6e:f3:37:13:70:49:db:7d:a1:5e:dc:ec:f8:73:42: c2:ce:d6:a9:b1:bb:f5:6a:c0:2c:3b:a9:f1:55:6b: 8b:40:fa:db:e3:6c:c3:32:7d:8a:40:ca:bc:38:9f: 3d:8c:b1:ba:01:50:c1:a0:c7:65:5b:94:c3:de:ec: d1:5b:4f:05:54:a3:ea:e0:01:ff:90:bc:28:f2:84: 30:44:51:37:0e:23:d0:54:fe:45:3e:09:1c:bd:4d: b3:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:6C:A6:41:25:56:89:28:2F:9D:DC:DC:E2:98:BD:0D:22:76:D0:5B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-GymQSVWiSgvndzc4pi9DSJ20Fs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.226.0/23 Signature Algorithm: sha256WithRSAEncryption d3:3e:15:82:17:39:dc:f3:10:7b:ea:df:c5:b5:09:3a:10:47: 9e:93:2f:45:bd:e6:9f:77:0f:1a:17:b4:90:a8:e3:eb:af:3e: e6:c7:a3:da:54:5e:cc:8e:b0:6d:a2:08:16:0d:c4:7e:27:84: ae:7b:31:21:f0:48:94:04:4f:05:21:ba:b2:c5:63:8f:3f:8b: 03:22:e1:33:51:78:a8:91:77:87:8e:aa:9f:5a:d5:01:08:bc: 80:fd:9f:2c:e8:e5:74:47:64:10:b6:e1:31:19:e5:91:bd:6c: 21:2b:8c:18:f5:f8:43:0a:78:cd:14:53:83:33:cb:6d:a3:a6: dd:b5:c2:7a:f1:84:15:b3:8a:9c:ea:41:9e:7e:c9:b5:6e:9c: 0d:88:66:4a:cb:6d:e0:da:83:fe:de:cb:69:70:d5:99:47:58: 23:54:d0:e8:0c:a6:a7:94:0a:90:08:33:2d:37:d1:10:22:4f: 56:73:25:79:8a:30:1c:c0:62:03:a3:5e:73:14:5c:52:ad:e0: 49:7a:27:cf:c1:53:db:8d:dc:e5:73:d4:44:25:4c:d4:c8:e4: 58:f3:05:1a:55:80:93:55:0d:21:26:ab:66:ad:0d:3d:33:4f: c0:42:91:ed:6c:9e:b9:30:9d:11:31:3e:fa:94:a9:f5:02:96: cd:7a:98:e4 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCcUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQwMjVaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEY4NkNBNjQxMjU1Njg5 MjgyRjlERENEQ0UyOThCRDBEMjI3NkQwNUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDaSyIxxQi7gZD+WzSB9s+LaBNFnCy1+0MhygseUGtzEIEeaIJF VeMtCnhe9ZZYRLTjnef8A2sQW4uw11p3YhryXMi1Z5JcMCieXOOwcDhN2WyRonMJ /ZAs6puEXVM2p87SwqJW7f0vl5/7lZqT98vPAVx2HgjJ5wRjdXvIo4xBs0aMm2uZ RXpCTAGflyCd+B1gAQ4YORAUsdMaUcJg0r4dhOV51W7zNxNwSdt9oV7c7PhzQsLO 1qmxu/VqwCw7qfFVa4tA+tvjbMMyfYpAyrw4nz2MsboBUMGgx2VblMPe7NFbTwVU o+rgAf+QvCjyhDBEUTcOI9BU/kU+CRy9TbP5AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU+GymQSVWiSgvndzc4pi9DSJ20FswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5Ly1HeW1RU1ZXaVNndm5kemM0cGk5RFNKMjBGcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHcn+IwDQYJKoZIhvcNAQELBQADggEBANM+FYIXOdzzEHvq38W1CToQR56T L0W95p93DxoXtJCo4+uvPubHo9pUXsyOsG2iCBYNxH4nhK57MSHwSJQETwUhurLF Y48/iwMi4TNReKiRd4eOqp9a1QEIvID9nyzo5XRHZBC24TEZ5ZG9bCErjBj1+EMK eM0UU4Mzy22jpt21wnrxhBWzipzqQZ5+ybVunA2IZkrLbeDag/7ey2lw1ZlHWCNU 0OgMpqeUCpAIMy030RAiT1ZzJXmKMBzAYgOjXnMUXFKt4El6J8/BU9uN3OVz1EQl TNTI5FjzBRpVgJNVDSEmq2atDT0zT8BCke1snrkwnRExPvqUqfUCls16mOQ= -----END CERTIFICATE-----Generated at Sun Feb 16 22:10:45 2025 by rpki-client