$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/3frb2ImPz5HqrEpKXR9RDqkGrVg.roa File: 3frb2ImPz5HqrEpKXR9RDqkGrVg.roa (raw, json) Hash identifier: v+7V5tSvyYrVmV3vsKqBX4PS5UGr9bYtyWsJK1TJwyw= Subject key identifier: DD:FA:DB:D8:89:8F:CF:91:EA:AC:4A:4A:5D:1F:51:0E:A9:06:AD:58 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0742 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3frb2ImPz5HqrEpKXR9RDqkGrVg.roa Signing time: Tue 30 Apr 2024 01:58:47 +0000 ROA not before: Tue 30 Apr 2024 01:58:47 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.74.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1858 (0x742) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:58:47 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=DDFADBD8898FCF91EAAC4A4A5D1F510EA906AD58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:bd:94:1e:a7:fd:60:ac:87:d0:e5:6d:70:97: 75:b1:c7:d8:02:49:be:b5:2a:f8:a3:ad:14:01:39: 3a:7f:e1:b9:3f:04:16:f3:36:e9:c9:76:78:48:09: 30:a5:14:aa:40:23:72:c9:49:f7:4e:39:a3:8e:0e: 9f:33:54:f8:2e:2c:df:31:dc:c5:d0:bc:9b:65:ea: 87:20:77:96:1e:b7:1f:8c:e6:8d:97:fd:4d:e7:b7: 1f:e6:a0:b8:da:a6:10:8e:54:13:a9:a0:70:4b:ee: ce:a6:c5:65:6c:a6:8a:98:38:da:67:ae:64:88:53: 26:b0:19:fb:c0:f3:24:f2:51:f5:9b:c9:78:f8:5a: 85:91:11:94:21:2d:bc:85:ef:c4:e5:01:d9:ac:fc: 1c:b5:93:dc:c5:b5:8f:15:c8:fd:ce:0e:91:51:48: eb:a6:7a:fb:54:e2:29:18:61:9a:d1:c0:38:fe:89: 08:86:a7:cc:95:ed:b3:7c:43:51:b5:cd:34:fe:6e: a7:5e:a0:5d:68:13:39:a6:06:50:eb:c6:c8:d6:13: df:83:f9:43:fd:65:25:e7:7c:b8:7a:09:72:e4:52: 72:24:e9:14:de:7c:82:6c:af:cd:8f:c5:e9:bc:75: ce:0c:8a:dc:d1:a4:d1:12:0f:5d:2c:b9:6c:1b:ad: 89:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:FA:DB:D8:89:8F:CF:91:EA:AC:4A:4A:5D:1F:51:0E:A9:06:AD:58 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3frb2ImPz5HqrEpKXR9RDqkGrVg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.74.0/23 Signature Algorithm: sha256WithRSAEncryption 04:65:ae:26:09:fc:2d:3e:ee:43:45:a6:62:fd:21:cd:99:53: 3a:bd:66:e6:66:43:79:2b:6f:b5:02:c6:aa:1d:5b:c2:38:11: a0:92:60:df:08:40:b5:68:8a:92:77:aa:ea:3b:15:72:21:34: 23:26:68:01:6c:86:b5:13:f7:27:56:6a:c1:11:a3:63:4c:18: 18:dd:82:29:70:2e:b9:31:72:17:5c:54:a5:cd:5b:99:f0:92: 97:45:74:92:55:78:81:ee:cb:aa:f3:0a:e2:de:22:d2:68:02: 06:5b:24:9e:0a:17:ea:07:89:6a:87:ca:50:74:3f:a7:14:04: 14:1f:c8:77:86:f3:e6:f3:7c:2e:73:84:08:d8:8d:70:ea:06: f8:84:61:d2:ba:58:6d:4f:7c:ba:32:59:49:b0:24:8f:55:f7: 09:6f:9f:47:c7:18:ae:72:95:be:81:65:ee:72:5d:09:25:12: 55:bb:9b:f9:cf:48:94:84:ff:d2:59:ab:28:c9:67:d8:cc:83: d1:ba:fd:65:32:a1:5e:76:e5:25:e3:20:ae:90:40:e4:6f:f5: e0:00:a0:c5:bc:c3:69:8e:e2:ad:1d:d8:bf:b3:1f:c0:ea:e7: ff:1c:84:4b:3f:07:d9:89:d8:64:d0:8d:10:c5:aa:79:5e:15: 33:c7:7d:5d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB0IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTU4NDdaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKERERkFEQkQ4ODk4RkNG OTFFQUFDNEE0QTVEMUY1MTBFQTkwNkFENTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSvZQep/1grIfQ5W1wl3Wxx9gCSb61KvijrRQBOTp/4bk/BBbz NunJdnhICTClFKpAI3LJSfdOOaOODp8zVPguLN8x3MXQvJtl6ocgd5Yetx+M5o2X /U3ntx/moLjaphCOVBOpoHBL7s6mxWVspoqYONpnrmSIUyawGfvA8yTyUfWbyXj4 WoWREZQhLbyF78TlAdms/By1k9zFtY8VyP3ODpFRSOumevtU4ikYYZrRwDj+iQiG p8yV7bN8Q1G1zTT+bqdeoF1oEzmmBlDrxsjWE9+D+UP9ZSXnfLh6CXLkUnIk6RTe fIJsr82Pxem8dc4MitzRpNESD10suWwbrYnBAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU3frb2ImPz5HqrEpKXR9RDqkGrVgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzNmcmIySW1QejVIcXJFcEtYUjlSRHFrR3JWZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYkowDQYJKoZIhvcNAQELBQADggEBAARlriYJ/C0+7kNFpmL9Ic2ZUzq9 ZuZmQ3krb7UCxqodW8I4EaCSYN8IQLVoipJ3quo7FXIhNCMmaAFshrUT9ydWasER o2NMGBjdgilwLrkxchdcVKXNW5nwkpdFdJJVeIHuy6rzCuLeItJoAgZbJJ4KF+oH iWqHylB0P6cUBBQfyHeG8+bzfC5zhAjYjXDqBviEYdK6WG1PfLoyWUmwJI9V9wlv n0fHGK5ylb6BZe5yXQklElW7m/nPSJSE/9JZqyjJZ9jMg9G6/WUyoV525SXjIK6Q QORv9eAAoMW8w2mO4q0d2L+zH8Dq5/8chEs/B9mJ2GTQjRDFqnleFTPHfV0= -----END CERTIFICATE-----Generated at Sun Feb 16 22:23:06 2025 by rpki-client