$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/3hAgMvSGNDY7q5WtO_GA0iwtIpM.roa File: 3hAgMvSGNDY7q5WtO_GA0iwtIpM.roa (raw, json) Hash identifier: gD5Sp4aoJmoXvgnRumlioNKDCy7hyF+8lbUE8ukbj6g= Subject key identifier: DE:10:20:32:F4:86:34:36:3B:AB:95:AD:3B:F1:80:D2:2C:2D:22:93 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 091B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3hAgMvSGNDY7q5WtO_GA0iwtIpM.roa Signing time: Tue 30 Apr 2024 02:28:48 +0000 ROA not before: Tue 30 Apr 2024 02:28:48 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 220.159.216.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2331 (0x91b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:28:48 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=DE102032F48634363BAB95AD3BF180D22C2D2293 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b3:b8:f4:b9:ce:91:60:de:ea:c1:ca:03:c4: 48:de:2a:48:82:dc:cb:0b:5e:4c:df:a9:31:d0:0e: 62:e0:af:a5:61:15:f6:09:68:69:64:76:1d:30:d1: e8:1d:dc:2a:86:f3:68:95:4f:fd:00:7d:53:7b:8f: f5:7d:ff:fd:62:4c:12:6c:e4:8d:35:8c:b9:e0:e5: 88:da:08:6d:69:8b:33:98:08:75:5b:ba:c1:12:9a: d3:42:62:8d:56:f1:95:48:65:27:73:17:72:90:51: b3:1e:4f:89:5a:83:cb:59:5c:56:7d:05:65:69:c9: 09:ba:50:58:1a:d9:47:e2:75:7f:b2:45:fa:dd:ac: 41:6d:62:68:3d:3e:5c:ac:f8:c2:91:cd:a3:37:1a: f8:65:88:ed:ee:46:3c:ab:c6:7d:fb:a4:9b:d3:90: 53:97:a2:24:93:88:0e:9e:7d:9d:14:12:26:5d:48: 71:d1:45:19:96:0a:c5:2b:5d:a8:4b:b6:7b:bd:d2: 60:a5:f6:fb:52:32:8c:d7:ab:2c:47:50:ab:8e:13: a9:13:88:9a:f7:f3:2d:cb:1d:14:6a:55:cb:20:f6: 31:9c:77:7e:c9:e6:0b:a9:e7:1b:6a:11:ac:76:86: 6a:41:b8:79:cc:ce:62:ce:c3:78:70:ac:cc:16:d8: 84:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:10:20:32:F4:86:34:36:3B:AB:95:AD:3B:F1:80:D2:2C:2D:22:93 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3hAgMvSGNDY7q5WtO_GA0iwtIpM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.216.0/21 Signature Algorithm: sha256WithRSAEncryption 92:4f:39:93:27:94:a3:30:66:1d:fd:2c:ca:c3:89:73:bf:d5: 76:97:0e:30:a6:7b:26:b5:5d:37:95:c5:11:16:04:ed:37:e7: 82:e3:2f:59:75:f1:b0:d3:8d:33:09:ce:5b:0e:74:80:e9:4c: 29:9a:94:f9:e7:38:54:68:8f:b5:fd:9d:8a:00:10:05:7c:d5: 7c:ea:62:84:e0:24:12:30:c1:57:de:af:f5:34:51:11:ae:da: d2:b5:72:b6:f8:a8:c4:b5:b5:34:ac:ae:9b:c5:d5:5d:4b:44: e8:ad:d7:7c:97:4d:52:f9:6a:a4:ec:f0:dd:7d:6e:1e:3e:9f: 4c:c0:f2:16:40:b5:fe:b8:d4:ac:b8:1a:23:5d:1d:f5:00:86: 96:a6:ef:47:41:95:58:b4:fb:ff:1b:80:3e:3b:98:d9:b8:a5: 54:24:90:a5:07:98:9a:ca:9c:da:86:ff:37:c7:c3:da:f3:db: ad:15:42:3f:ae:3f:d5:bb:b9:05:df:19:4e:39:55:54:c3:fa: bb:5a:39:5b:c1:ec:6d:00:5c:6c:db:c3:ae:6c:cb:f7:43:69: 0a:c5:9e:99:b7:5a:6e:0d:f6:20:f7:91:b6:77:99:5f:ea:1e: 0a:00:8f:e0:b6:c9:60:b7:7a:14:aa:3c:66:7a:fc:a2:1b:9d: 37:ca:6f:65 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCRswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjI4NDhaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKERFMTAyMDMyRjQ4NjM0 MzYzQkFCOTVBRDNCRjE4MEQyMkMyRDIyOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWs7j0uc6RYN7qwcoDxEjeKkiC3MsLXkzfqTHQDmLgr6VhFfYJ aGlkdh0w0egd3CqG82iVT/0AfVN7j/V9//1iTBJs5I01jLng5YjaCG1pizOYCHVb usESmtNCYo1W8ZVIZSdzF3KQUbMeT4lag8tZXFZ9BWVpyQm6UFga2UfidX+yRfrd rEFtYmg9Plys+MKRzaM3GvhliO3uRjyrxn37pJvTkFOXoiSTiA6efZ0UEiZdSHHR RRmWCsUrXahLtnu90mCl9vtSMozXqyxHUKuOE6kTiJr38y3LHRRqVcsg9jGcd37J 5gup5xtqEax2hmpBuHnMzmLOw3hwrMwW2ITZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU3hAgMvSGNDY7q5WtO/GA0iwtIpMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzNoQWdNdlNHTkRZN3E1V3RPX0dBMGl3dElwTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPcn9gwDQYJKoZIhvcNAQELBQADggEBAJJPOZMnlKMwZh39LMrDiXO/1XaX DjCmeya1XTeVxREWBO0354LjL1l18bDTjTMJzlsOdIDpTCmalPnnOFRoj7X9nYoA EAV81XzqYoTgJBIwwVfer/U0URGu2tK1crb4qMS1tTSsrpvF1V1LROit13yXTVL5 aqTs8N19bh4+n0zA8hZAtf641Ky4GiNdHfUAhpam70dBlVi0+/8bgD47mNm4pVQk kKUHmJrKnNqG/zfHw9rz260VQj+uP9W7uQXfGU45VVTD+rtaOVvB7G0AXGzbw65s y/dDaQrFnpm3Wm4N9iD3kbZ3mV/qHgoAj+C2yWC3ehSqPGZ6/KIbnTfKb2U= -----END CERTIFICATE-----Generated at Sun Feb 16 22:32:00 2025 by rpki-client