$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/0WSjioDcwIGhOGrLB-dvDHddXCk.roa File: 0WSjioDcwIGhOGrLB-dvDHddXCk.roa (raw, json) Hash identifier: 8cORhtJgZ9I1lIAQgQR+MEL5ADjuQwS9ISuk4h4lWiM= Subject key identifier: D1:64:A3:8A:80:DC:C0:81:A1:38:6A:CB:07:E7:6F:0C:77:5D:5C:29 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B0C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/0WSjioDcwIGhOGrLB-dvDHddXCk.roa Signing time: Fri 31 Jan 2025 01:34:24 +0000 ROA not before: Fri 31 Jan 2025 01:34:24 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2828 (0xb0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:34:24 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=D164A38A80DCC081A1386ACB07E76F0C775D5C29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ed:62:1e:7e:eb:b9:ce:4a:a6:ed:02:a0:d8: 63:de:37:cf:b5:6e:f0:5b:96:65:19:64:e7:5d:35: 66:03:e9:9e:03:85:eb:39:29:75:1a:53:92:76:b6: 7d:35:0d:4d:af:a3:b5:d8:e4:7b:c7:c0:c5:20:3c: d2:1e:81:7e:d7:f6:12:7c:fe:12:48:2e:87:30:5f: 30:a9:be:a3:7b:57:0c:1e:3c:b5:c4:39:b7:43:c8: 03:2a:13:80:78:16:a0:49:4f:b5:c4:27:1c:7a:5b: e8:b6:c1:da:5f:49:d8:21:71:c7:41:3a:da:95:de: 64:19:b6:5f:70:e5:64:2b:30:ff:e5:b5:bb:f2:af: c1:f6:2a:4b:ac:ca:b5:d9:79:a1:4d:52:2a:60:81: 0b:cf:3c:61:af:2c:a4:de:22:d4:97:ff:95:8b:df: ee:bd:cb:80:b5:c8:fc:6e:c3:64:f2:4d:55:aa:b1: 88:7f:0e:17:ae:31:4d:7b:b9:a2:22:f4:5a:b8:28: fd:80:3d:ec:17:e6:af:9a:ac:39:0a:97:43:b2:3c: c4:f7:29:cd:1f:2b:11:bf:9c:17:e9:cb:f3:fa:77: 11:11:a6:87:02:3d:e9:a6:aa:bc:55:9a:fe:be:df: d3:9b:12:ee:30:85:e4:c4:b7:bd:31:ac:5b:1d:2a: 2d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:64:A3:8A:80:DC:C0:81:A1:38:6A:CB:07:E7:6F:0C:77:5D:5C:29 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/0WSjioDcwIGhOGrLB-dvDHddXCk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.229.0/24 Signature Algorithm: sha256WithRSAEncryption 67:53:e4:2a:72:37:69:14:8b:73:a9:20:a6:6a:23:56:34:bb: 5d:af:e2:bd:31:b7:90:38:c8:04:1d:3f:86:af:2e:8a:58:ab: 3d:7a:ab:85:dc:d3:56:93:0d:12:3a:bb:b2:e6:f7:ce:0b:48: 08:75:49:7c:1a:2e:ae:5f:de:99:ae:25:0d:be:33:29:8c:72: 15:4d:59:0c:71:02:ea:b1:ad:85:0c:84:88:5e:83:78:c2:fe: a6:ec:58:b4:16:79:59:2c:dd:1f:72:3e:c7:3c:29:1a:b6:cc: 7e:3f:ce:22:8c:2e:0f:69:5e:10:c5:02:76:b1:77:f8:2a:58: 2d:8f:e2:e9:05:7b:60:0b:4d:6d:04:db:1b:36:1a:62:e9:7d: b7:62:84:57:89:9c:62:81:43:95:5e:17:1b:d6:e7:c1:b6:18: af:bf:71:0a:1c:33:7c:c7:f9:d9:80:d2:6f:09:e8:6e:db:69: db:9c:85:01:47:c7:90:35:fd:f6:72:9c:b3:9b:62:5f:95:30: b8:7f:fe:46:c4:90:f4:1a:ec:37:59:59:02:15:e3:c1:77:29: cf:28:57:a2:ae:7f:fd:6f:3c:e4:1c:b6:34:7e:b7:83:3d:37: 0f:89:d9:19:3b:91:69:89:74:ab:84:40:21:37:30:cd:a1:b3: 70:08:67:33 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCwwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTM0MjRaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEQxNjRBMzhBODBEQ0Mw ODFBMTM4NkFDQjA3RTc2RjBDNzc1RDVDMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDi7WIefuu5zkqm7QKg2GPeN8+1bvBblmUZZOddNWYD6Z4Dhes5 KXUaU5J2tn01DU2vo7XY5HvHwMUgPNIegX7X9hJ8/hJILocwXzCpvqN7VwwePLXE ObdDyAMqE4B4FqBJT7XEJxx6W+i2wdpfSdghccdBOtqV3mQZtl9w5WQrMP/ltbvy r8H2KkusyrXZeaFNUipggQvPPGGvLKTeItSX/5WL3+69y4C1yPxuw2TyTVWqsYh/ DheuMU17uaIi9Fq4KP2APewX5q+arDkKl0OyPMT3Kc0fKxG/nBfpy/P6dxERpocC PemmqrxVmv6+39ObEu4wheTEt70xrFsdKi0zAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU0WSjioDcwIGhOGrLB+dvDHddXCkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzBXU2ppb0Rjd0lHaE9HckxCLWR2REhkZFhDay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABS+UwDQYJKoZIhvcNAQELBQADggEBAGdT5CpyN2kUi3OpIKZqI1Y0u12v 4r0xt5A4yAQdP4avLopYqz16q4Xc01aTDRI6u7Lm984LSAh1SXwaLq5f3pmuJQ2+ MymMchVNWQxxAuqxrYUMhIheg3jC/qbsWLQWeVks3R9yPsc8KRq2zH4/ziKMLg9p XhDFAnaxd/gqWC2P4ukFe2ALTW0E2xs2GmLpfbdihFeJnGKBQ5VeFxvW58G2GK+/ cQocM3zH+dmA0m8J6G7baduchQFHx5A1/fZynLObYl+VMLh//kbEkPQa7DdZWQIV 48F3Kc8oV6Kuf/1vPOQctjR+t4M9Nw+J2Rk7kWmJdKuEQCE3MM2hs3AIZzM= -----END CERTIFICATE-----Generated at Wed Feb 19 22:37:20 2025 by rpki-client