$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/4SQ3liZhAY2wWNLnSmK0Awhtwto.roa File: 4SQ3liZhAY2wWNLnSmK0Awhtwto.roa (raw, json) Hash identifier: B+24j9RxDh959DfDNHuEOCIdPKNM4tQeS3jy0F0BmnY= Subject key identifier: E1:24:37:96:26:61:01:8D:B0:58:D2:E7:4A:62:B4:03:08:6D:C2:DA Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 08D1 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4SQ3liZhAY2wWNLnSmK0Awhtwto.roa Signing time: Tue 30 Apr 2024 02:24:41 +0000 ROA not before: Tue 30 Apr 2024 02:24:41 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.104.14.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2257 (0x8d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:24:41 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=E12437962661018DB058D2E74A62B403086DC2DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:11:39:9b:3b:17:29:47:17:fb:2e:eb:d3:6c: 1a:b2:4f:0d:3c:61:ae:87:75:62:47:7a:09:b7:3d: 2e:63:1c:fc:98:3f:12:c9:b8:da:79:c8:9e:47:87: 83:e4:57:88:64:bc:69:83:02:0b:ce:7d:44:9b:75: 5f:26:84:1d:05:4a:ac:9d:cb:8d:7d:b9:87:81:34: 99:17:b7:c0:13:e4:e5:03:5c:e8:90:89:d9:11:82: 56:a0:42:29:2b:b9:60:f6:be:6b:12:7d:bf:60:a8: d1:5f:53:3f:48:8b:51:b1:31:69:16:42:9c:0d:77: 19:ff:68:46:1c:41:01:9f:72:78:f8:c7:d9:b8:d5: 63:39:00:07:59:92:a8:63:88:2e:e4:48:8f:76:a3: 30:dd:d9:bd:d8:98:c4:5f:be:b7:58:c8:5b:b9:b0: 53:94:38:6c:75:64:d2:de:94:34:b3:f9:d7:56:30: 06:48:71:e6:fa:11:19:ee:55:de:20:a9:fa:ca:44: f2:b6:70:ef:af:85:38:b6:03:5e:31:67:a4:07:67: e4:22:90:19:63:15:81:f7:80:07:1c:8b:25:9a:8a: 39:16:83:ad:b6:e8:f0:ec:4a:c4:0d:3c:16:e3:88: 08:20:0d:59:e9:fb:b3:e0:71:5f:4f:15:05:12:d3: ae:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:24:37:96:26:61:01:8D:B0:58:D2:E7:4A:62:B4:03:08:6D:C2:DA X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4SQ3liZhAY2wWNLnSmK0Awhtwto.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.104.14.0/23 Signature Algorithm: sha256WithRSAEncryption 62:2b:08:a8:c2:d0:19:09:50:6f:c3:7c:d1:25:85:f5:a2:34: 9a:7f:e3:b3:a4:70:55:bb:61:0e:f7:1a:2e:c5:a1:56:81:b8: 8d:0f:95:e6:5f:3d:18:70:87:db:f4:a1:14:e0:92:0f:43:e0: a1:78:e5:10:75:e8:7a:83:e7:81:a6:aa:a6:a9:2d:8d:45:ef: bc:7f:3f:8d:1f:66:8f:bf:8e:9c:dd:91:f5:23:60:28:da:fb: a2:15:e9:77:8f:7f:0e:98:f1:53:ac:ee:85:0c:a1:2f:c4:d1: 9c:ea:f0:de:45:8b:7c:88:8b:4b:3d:c2:a1:e0:5f:d0:08:83: cf:6c:9c:42:52:54:ba:d3:13:bc:b3:68:02:11:b5:78:1a:bc: 3a:54:10:14:90:10:40:7c:02:f8:ff:62:25:c0:4e:ec:65:d7: 23:69:8b:cd:0f:29:8a:c0:a9:7a:e8:5c:21:9b:78:ad:93:0b: 5b:73:fd:70:9b:d8:4c:5a:f2:03:e4:82:07:5e:9c:69:03:62: 4f:f0:d7:00:24:7e:60:e4:a6:b6:a4:b1:2b:27:93:0f:f0:1e: 3c:47:b9:38:1a:cc:d5:4b:80:69:bb:36:f3:de:26:f7:2e:42: 1d:36:55:08:03:42:9b:01:05:31:3d:e0:3b:e0:8a:28:49:26: 0a:22:99:f4 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCNEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjI0NDFaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEUxMjQzNzk2MjY2MTAx OERCMDU4RDJFNzRBNjJCNDAzMDg2REMyREEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClETmbOxcpRxf7LuvTbBqyTw08Ya6HdWJHegm3PS5jHPyYPxLJ uNp5yJ5Hh4PkV4hkvGmDAgvOfUSbdV8mhB0FSqydy419uYeBNJkXt8AT5OUDXOiQ idkRglagQikruWD2vmsSfb9gqNFfUz9Ii1GxMWkWQpwNdxn/aEYcQQGfcnj4x9m4 1WM5AAdZkqhjiC7kSI92ozDd2b3YmMRfvrdYyFu5sFOUOGx1ZNLelDSz+ddWMAZI ceb6ERnuVd4gqfrKRPK2cO+vhTi2A14xZ6QHZ+QikBljFYH3gAcciyWaijkWg622 6PDsSsQNPBbjiAggDVnp+7PgcV9PFQUS066fAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU4SQ3liZhAY2wWNLnSmK0AwhtwtowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzRTUTNsaVpoQVkyd1dOTG5TbUswQXdodHd0by5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExaA4wDQYJKoZIhvcNAQELBQADggEBAGIrCKjC0BkJUG/DfNElhfWiNJp/ 47OkcFW7YQ73Gi7FoVaBuI0PleZfPRhwh9v0oRTgkg9D4KF45RB16HqD54Gmqqap LY1F77x/P40fZo+/jpzdkfUjYCja+6IV6XePfw6Y8VOs7oUMoS/E0Zzq8N5Fi3yI i0s9wqHgX9AIg89snEJSVLrTE7yzaAIRtXgavDpUEBSQEEB8Avj/YiXATuxl1yNp i80PKYrAqXroXCGbeK2TC1tz/XCb2Exa8gPkggdenGkDYk/w1wAkfmDkpraksSsn kw/wHjxHuTgazNVLgGm7NvPeJvcuQh02VQgDQpsBBTE94DvgiihJJgoimfQ= -----END CERTIFICATE-----Generated at Sun Feb 16 22:10:26 2025 by rpki-client