$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/3kNB21OBR8Z2xMEHKN2kcjZlHVM.roa File: 3kNB21OBR8Z2xMEHKN2kcjZlHVM.roa (raw, json) Hash identifier: lMDLJiox2pLRgC5eLEQQCtShiFI1tAlQ2S8Wz7PKgCA= Subject key identifier: DE:43:41:DB:53:81:47:C6:76:C4:C1:07:28:DD:A4:72:36:65:1D:53 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0841 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3kNB21OBR8Z2xMEHKN2kcjZlHVM.roa Signing time: Tue 30 Apr 2024 02:16:21 +0000 ROA not before: Tue 30 Apr 2024 02:16:21 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.82.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 20:25:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2113 (0x841) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:16:21 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=DE4341DB538147C676C4C10728DDA47236651D53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:15:73:a6:40:b9:a9:29:74:6a:19:9f:e2:05: 6f:1b:28:07:95:95:47:4d:ef:92:7c:c7:44:31:33: ac:11:53:85:51:00:9e:ac:35:42:0b:d3:0c:b4:c0: 3e:2f:00:38:42:4f:fd:64:a9:dd:4b:94:c8:04:54: 27:f1:1e:ca:35:d7:d1:16:9b:45:a8:18:cc:50:e4: 7f:d1:7e:04:9e:40:f1:91:f5:37:4e:ea:54:ec:e2: a2:d4:e2:d3:0b:0f:37:3c:f1:ed:e4:fd:5c:14:8b: 4c:ed:2f:c9:14:b4:c8:4d:c1:3c:02:a1:72:61:cd: e4:c4:2e:43:6c:b8:da:5c:fb:b6:f2:46:a7:0b:3d: e5:24:43:c3:46:6c:78:22:aa:6c:1b:a0:c9:02:54: d7:d5:be:0d:1b:79:ed:c0:8f:b2:47:e5:dd:bf:3a: 3e:b0:46:aa:c4:75:6c:e4:c4:9c:a1:85:57:64:19: bb:54:65:8e:7d:3f:b7:27:36:36:de:21:e9:e5:62: e5:f7:95:c9:19:e3:f0:83:52:ae:82:d2:13:14:62: 49:71:f8:be:2a:d0:82:e2:dd:06:c5:0e:c9:81:f7: 0d:ab:e9:c2:04:7a:1f:20:6e:47:4d:49:b1:1c:ea: 7b:e2:43:fe:28:15:47:36:5f:9f:d3:c4:91:06:b9: fc:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:43:41:DB:53:81:47:C6:76:C4:C1:07:28:DD:A4:72:36:65:1D:53 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3kNB21OBR8Z2xMEHKN2kcjZlHVM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.82.0/23 Signature Algorithm: sha256WithRSAEncryption cd:f5:c9:46:25:04:b1:fa:75:0f:48:d5:cf:ac:ba:09:47:1e: c7:35:72:67:34:bb:86:ca:07:74:9c:f3:bc:72:39:f1:3b:09: 6d:67:ee:e4:81:2b:43:ce:23:ca:7c:cb:e1:6c:01:17:0e:5f: 64:6f:ab:8c:79:36:93:20:92:59:55:3a:4e:46:ef:b2:16:58: 9b:25:04:a3:33:97:cd:d6:b1:0e:a9:59:4d:82:66:1e:09:75: 33:a5:d4:54:a9:34:b8:3d:13:c4:c1:ed:7a:3d:2f:a1:42:11: ba:79:22:f2:5f:79:04:03:9d:d4:7f:40:44:86:5b:93:8c:bb: 10:8e:31:02:b1:52:8b:4c:cb:21:b0:f7:02:22:15:fa:e1:da: 6f:b8:c5:2a:e2:bb:fd:5d:7c:8d:cc:f3:8b:3f:54:c5:d9:72: 1b:cc:a0:54:79:b9:64:a2:b7:14:6c:db:47:d5:5b:23:0f:15: a5:6e:36:42:90:8b:e9:74:74:39:8b:b0:0f:4b:44:e5:26:b4: 69:6c:19:dd:57:0c:bd:40:3f:ae:ef:c2:57:81:00:ea:e7:8e: 51:c2:37:25:7b:24:ef:f6:a5:61:34:6e:46:35:e7:a5:89:48: f0:5d:55:08:09:c9:39:70:4c:09:27:47:81:75:66:a8:5c:33: 7d:be:bb:dd -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCEEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjE2MjFaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKERFNDM0MURCNTM4MTQ3 QzY3NkM0QzEwNzI4RERBNDcyMzY2NTFENTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLFXOmQLmpKXRqGZ/iBW8bKAeVlUdN75J8x0QxM6wRU4VRAJ6s NUIL0wy0wD4vADhCT/1kqd1LlMgEVCfxHso119EWm0WoGMxQ5H/RfgSeQPGR9TdO 6lTs4qLU4tMLDzc88e3k/VwUi0ztL8kUtMhNwTwCoXJhzeTELkNsuNpc+7byRqcL PeUkQ8NGbHgiqmwboMkCVNfVvg0bee3Aj7JH5d2/Oj6wRqrEdWzkxJyhhVdkGbtU ZY59P7cnNjbeIenlYuX3lckZ4/CDUq6C0hMUYklx+L4q0ILi3QbFDsmB9w2r6cIE eh8gbkdNSbEc6nviQ/4oFUc2X5/TxJEGufxvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU3kNB21OBR8Z2xMEHKN2kcjZlHVMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzNrTkIyMU9CUjhaMnhNRUhLTjJrY2pabEhWTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBT1IwDQYJKoZIhvcNAQELBQADggEBAM31yUYlBLH6dQ9I1c+suglHHsc1 cmc0u4bKB3Sc87xyOfE7CW1n7uSBK0POI8p8y+FsARcOX2Rvq4x5NpMgkllVOk5G 77IWWJslBKMzl83WsQ6pWU2CZh4JdTOl1FSpNLg9E8TB7Xo9L6FCEbp5IvJfeQQD ndR/QESGW5OMuxCOMQKxUotMyyGw9wIiFfrh2m+4xSriu/1dfI3M84s/VMXZchvM oFR5uWSitxRs20fVWyMPFaVuNkKQi+l0dDmLsA9LROUmtGlsGd1XDL1AP67vwleB AOrnjlHCNyV7JO/2pWE0bkY156WJSPBdVQgJyTlwTAknR4F1ZqhcM32+u90= -----END CERTIFICATE-----Generated at Thu Mar 13 01:48:37 2025 by rpki-client