$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/3dzTk8KPkU3gomekU2opEu4t6-8.roa File: 3dzTk8KPkU3gomekU2opEu4t6-8.roa (raw, json) Hash identifier: tX5hoqh1OGUc6xkuNxZ4v9H2tJm54VDfQe+Et0tkVng= Subject key identifier: DD:DC:D3:93:C2:8F:91:4D:E0:A2:67:A4:53:6A:29:12:EE:2D:EB:EF Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B17 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3dzTk8KPkU3gomekU2opEu4t6-8.roa Signing time: Fri 31 Jan 2025 01:34:29 +0000 ROA not before: Fri 31 Jan 2025 01:34:29 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.66.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2839 (0xb17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:34:29 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=DDDCD393C28F914DE0A267A4536A2912EE2DEBEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c4:db:bd:d8:f0:a6:ed:1c:2b:3e:b3:a2:87: 7a:bb:38:23:4f:d1:db:45:e2:04:02:c4:d7:4d:e3: 04:7b:6f:0b:e8:16:58:91:9d:3d:ea:c0:65:7a:b6: 64:d1:be:87:80:a7:75:8e:59:32:43:e4:5b:12:3c: 28:72:ec:68:60:a9:df:54:1e:cc:6d:1c:ce:7d:05: 13:16:42:13:37:6b:12:3f:d9:f5:53:8e:c2:da:fc: c8:97:41:07:3e:9f:1e:2d:3e:0f:22:6d:ee:53:d6: 3d:c2:88:00:42:c9:aa:1f:1c:d6:68:07:b6:6f:92: c4:e1:3e:d4:54:95:d4:47:cd:3e:68:4b:50:7c:b9: ba:80:09:5f:ff:ad:31:94:22:57:6b:77:c1:9d:e1: 74:f4:f3:82:13:ac:de:d5:d0:e3:f6:29:66:88:ef: 87:35:68:38:e6:f2:31:4d:6c:60:53:7e:60:fb:b8: e6:ae:78:26:65:de:58:94:86:40:fa:56:56:1a:6d: e4:ed:0a:1a:06:da:49:63:f1:89:14:68:fb:dd:42: 92:41:57:2c:0f:f0:93:83:53:1c:9a:8a:c4:1c:0e: 82:51:cd:74:a6:22:85:f6:bc:aa:3b:fc:43:b2:34: 10:f0:0e:dc:2d:25:8a:6e:bd:d4:2d:fe:bd:9b:5a: 8f:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:DC:D3:93:C2:8F:91:4D:E0:A2:67:A4:53:6A:29:12:EE:2D:EB:EF X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3dzTk8KPkU3gomekU2opEu4t6-8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.66.96.0/22 Signature Algorithm: sha256WithRSAEncryption 3a:7c:1b:64:bc:52:f6:33:81:4e:01:4c:7b:e0:c0:d6:06:ca: 4d:4f:49:89:a0:2e:d8:45:6c:23:a8:00:aa:42:a2:be:df:e3: be:de:ab:60:83:0c:f7:0c:e4:5e:a2:4e:97:1c:5f:e8:19:44: 39:da:81:eb:4b:3c:26:9b:87:04:63:36:e7:aa:37:22:67:ae: 47:3b:52:9e:d7:2e:92:a5:c4:b3:39:1a:c7:8d:bf:02:da:c4: 77:25:44:39:ac:f2:2b:5f:37:05:40:a8:d0:a7:17:ae:b1:b9: 69:8b:ec:b3:9b:f3:c5:08:29:23:dc:87:22:9a:af:ba:36:96: a0:fa:c6:75:9d:f8:e7:06:4d:a8:3b:50:2c:83:74:dc:b6:ee: ff:0c:d0:1c:76:fb:91:b4:f4:c4:62:26:46:15:97:93:a3:00: 65:a7:09:19:52:af:0f:bc:dd:ae:27:f6:eb:4a:d5:12:2b:4d: bc:17:05:89:b2:b2:10:23:17:45:1c:25:33:69:cd:4d:57:f8: e8:23:c0:12:35:81:39:57:a2:65:31:bc:47:ff:17:23:78:fc: e1:52:0e:88:3b:03:b9:09:a6:93:cc:81:34:d7:07:25:08:53: 10:97:85:d1:40:e1:ac:f7:8e:76:d0:b8:8e:bc:e4:99:68:d4: c0:bb:9b:a9 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCxcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTM0MjlaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKERERENEMzkzQzI4Rjkx NERFMEEyNjdBNDUzNkEyOTEyRUUyREVCRUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChxNu92PCm7RwrPrOih3q7OCNP0dtF4gQCxNdN4wR7bwvoFliR nT3qwGV6tmTRvoeAp3WOWTJD5FsSPChy7Ghgqd9UHsxtHM59BRMWQhM3axI/2fVT jsLa/MiXQQc+nx4tPg8ibe5T1j3CiABCyaofHNZoB7ZvksThPtRUldRHzT5oS1B8 ubqACV//rTGUIldrd8Gd4XT084ITrN7V0OP2KWaI74c1aDjm8jFNbGBTfmD7uOau eCZl3liUhkD6VlYabeTtChoG2klj8YkUaPvdQpJBVywP8JODUxyaisQcDoJRzXSm IoX2vKo7/EOyNBDwDtwtJYpuvdQt/r2bWo9lAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU3dzTk8KPkU3gomekU2opEu4t6+8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzNkelRrOEtQa1UzZ29tZWtVMm9wRXU0dDYtOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBQmAwDQYJKoZIhvcNAQELBQADggEBADp8G2S8UvYzgU4BTHvgwNYGyk1P SYmgLthFbCOoAKpCor7f477eq2CDDPcM5F6iTpccX+gZRDnagetLPCabhwRjNueq NyJnrkc7Up7XLpKlxLM5GseNvwLaxHclRDms8itfNwVAqNCnF66xuWmL7LOb88UI KSPchyKar7o2lqD6xnWd+OcGTag7UCyDdNy27v8M0Bx2+5G09MRiJkYVl5OjAGWn CRlSrw+83a4n9utK1RIrTbwXBYmyshAjF0UcJTNpzU1X+OgjwBI1gTlXomUxvEf/ FyN4/OFSDog7A7kJppPMgTTXByUIUxCXhdFA4az3jnbQuI685Jlo1MC7m6k= -----END CERTIFICATE-----Generated at Wed Feb 19 22:31:05 2025 by rpki-client