$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/1sOqRzmp7KMejOWjt5bLf3XvziA.roa File: 1sOqRzmp7KMejOWjt5bLf3XvziA.roa (raw, json) Hash identifier: pate9U7t5B1MbSkhoT8UD6WkrRXfhvFAkSBG7sDZemE= Subject key identifier: D6:C3:AA:47:39:A9:EC:A3:1E:8C:E5:A3:B7:96:CB:7F:75:EF:CE:20 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0985 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/1sOqRzmp7KMejOWjt5bLf3XvziA.roa Signing time: Sun 30 Jun 2024 01:36:22 +0000 ROA not before: Sun 30 Jun 2024 01:36:22 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 49.100.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2437 (0x985) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:36:22 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=D6C3AA4739A9ECA31E8CE5A3B796CB7F75EFCE20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b5:57:85:c6:77:9e:37:ed:3c:82:ec:58:00: ca:a8:7a:4b:30:5b:7b:c0:3a:d2:41:42:d1:8e:4b: 99:c5:40:36:9b:d5:ab:8b:3e:27:03:67:73:4f:92: 6e:6c:81:35:e4:dc:de:77:6c:e7:0f:fe:1a:c7:4c: 80:ad:77:e7:3f:35:9d:19:d6:63:32:f2:02:cd:d2: da:8e:83:0a:f0:91:f8:a8:28:d9:a9:0a:ef:36:bb: 3d:60:c1:a6:9b:06:24:8c:70:27:c8:78:17:be:ce: 25:4f:99:c5:f5:ff:b3:dd:e8:1e:96:51:63:8c:71: c8:73:2e:fd:27:55:2a:73:0d:4e:04:c1:0e:85:a6: 64:4f:8b:b1:d4:6a:bf:9b:75:53:5d:e3:af:e7:25: 27:5a:33:c4:b7:b5:f9:6f:fb:83:80:e7:7a:f2:d2: be:6e:3b:a2:07:c6:62:f5:43:20:41:c5:3b:46:4d: 2c:0d:02:51:a3:5f:82:1f:cf:42:02:29:14:7e:61: 3c:29:e4:3a:e3:ad:63:b2:c4:6d:a4:49:0e:65:70: d9:bf:4f:ca:81:ad:4a:c1:e0:31:df:5b:40:c2:8d: 4a:76:79:dd:f6:b6:2b:bf:63:b7:ef:d2:2f:42:20: b0:e2:44:dd:2f:51:02:c1:88:5e:9d:10:08:a0:c6: f0:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:C3:AA:47:39:A9:EC:A3:1E:8C:E5:A3:B7:96:CB:7F:75:EF:CE:20 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/1sOqRzmp7KMejOWjt5bLf3XvziA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.100.160.0/20 Signature Algorithm: sha256WithRSAEncryption 7e:46:c2:a9:3f:22:68:e3:ac:02:39:1f:07:bb:ce:a4:ff:71: a1:bd:51:50:fa:ae:06:5a:39:f0:67:32:b3:80:1d:88:fc:e1: 2a:62:72:01:52:7d:1a:de:35:94:b6:82:91:73:af:c3:10:88: dc:7e:7a:ac:16:af:39:86:81:54:94:e3:cd:56:21:4e:6e:18: 54:02:55:c4:5f:26:f8:a9:76:e2:d6:f5:e5:ea:5a:0d:5f:b9: fb:64:ae:fb:71:9d:bc:8c:30:7f:04:10:c5:f2:bf:b5:92:18: 09:fe:c5:89:ad:db:a2:73:26:be:a1:b0:dc:bc:7f:a1:6b:1c: 21:07:46:33:a3:33:d7:47:8a:8a:4b:4f:c7:2b:f4:29:aa:cd: 4b:09:2c:6b:b8:78:3d:55:86:26:e3:14:55:e0:cf:68:c9:5f: a7:6c:c3:80:3c:52:b0:33:82:59:ca:d4:0e:fa:b5:f5:6b:99: 80:95:6f:00:9c:a2:89:c7:8f:ec:65:d2:6a:15:cd:92:86:e0: 8a:11:b1:df:cd:ff:8d:a8:52:0c:f0:df:fb:bf:f6:c6:9b:4d: 27:a4:7d:a0:ce:50:17:5b:81:c3:e1:02:df:cd:6a:4d:eb:06: 01:31:16:a8:86:ee:cc:aa:a1:f0:47:d1:6d:8f:bf:4a:ce:14: e0:9a:53:74 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCYUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTM2MjJaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEQ2QzNBQTQ3MzlBOUVD QTMxRThDRTVBM0I3OTZDQjdGNzVFRkNFMjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwtVeFxneeN+08guxYAMqoekswW3vAOtJBQtGOS5nFQDab1auL PicDZ3NPkm5sgTXk3N53bOcP/hrHTICtd+c/NZ0Z1mMy8gLN0tqOgwrwkfioKNmp Cu82uz1gwaabBiSMcCfIeBe+ziVPmcX1/7Pd6B6WUWOMcchzLv0nVSpzDU4EwQ6F pmRPi7HUar+bdVNd46/nJSdaM8S3tflv+4OA53ry0r5uO6IHxmL1QyBBxTtGTSwN AlGjX4Ifz0ICKRR+YTwp5DrjrWOyxG2kSQ5lcNm/T8qBrUrB4DHfW0DCjUp2ed32 tiu/Y7fv0i9CILDiRN0vUQLBiF6dEAigxvBlAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU1sOqRzmp7KMejOWjt5bLf3XvziAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzFzT3FSem1wN0tNZWpPV2p0NWJMZjNYdnppQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQxZKAwDQYJKoZIhvcNAQELBQADggEBAH5Gwqk/ImjjrAI5Hwe7zqT/caG9 UVD6rgZaOfBnMrOAHYj84SpicgFSfRreNZS2gpFzr8MQiNx+eqwWrzmGgVSU481W IU5uGFQCVcRfJvipduLW9eXqWg1fuftkrvtxnbyMMH8EEMXyv7WSGAn+xYmt26Jz Jr6hsNy8f6FrHCEHRjOjM9dHiopLT8cr9CmqzUsJLGu4eD1VhibjFFXgz2jJX6ds w4A8UrAzglnK1A76tfVrmYCVbwCcoonHj+xl0moVzZKG4IoRsd/N/42oUgzw3/u/ 9sabTSekfaDOUBdbgcPhAt/Nak3rBgExFqiG7syqofBH0W2Pv0rOFOCaU3Q= -----END CERTIFICATE-----Generated at Sun Feb 16 22:26:35 2025 by rpki-client