$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/4fAtKdGoJBOiRzlepHzO8CbczjY.roa File: 4fAtKdGoJBOiRzlepHzO8CbczjY.roa (raw, json) Hash identifier: cAYNtHBdWgHUHrNWTHLETpJ7l4eFmBmKnSLzNvIHcG0= Subject key identifier: E1:F0:2D:29:D1:A8:24:13:A2:47:39:5E:A4:7C:CE:F0:26:DC:CE:36 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0929 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4fAtKdGoJBOiRzlepHzO8CbczjY.roa Signing time: Tue 30 Apr 2024 02:30:30 +0000 ROA not before: Tue 30 Apr 2024 02:30:30 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.34.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 20:25:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2345 (0x929) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:30:30 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=E1F02D29D1A82413A247395EA47CCEF026DCCE36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:90:2d:83:34:24:a9:1e:38:bd:be:bb:51:56: d3:0e:fd:97:7e:01:77:ea:37:f0:1d:14:3b:3e:aa: 2b:1a:61:8a:30:58:01:bd:53:41:6b:6d:70:34:94: 03:59:8e:6d:b0:b2:03:fa:47:3f:f1:35:4d:59:d5: d3:f6:94:1c:6d:45:22:16:cb:3b:8c:83:ac:d0:7c: 4e:b5:9a:11:b9:fd:2b:24:92:2d:0d:ea:f0:0d:38: 47:16:15:45:7d:ef:68:2e:4d:bc:2e:d7:2d:eb:c0: f9:d6:37:4d:79:73:5c:73:f8:54:b6:e9:01:19:c0: f7:1a:fc:5b:70:38:61:a5:c6:97:79:3f:44:45:e3: 35:1e:a2:9d:c2:ac:a9:6e:cb:54:3d:94:e5:eb:12: 44:e7:b7:9c:e5:4f:ca:9b:e1:ca:ad:16:bb:53:58: e7:49:bc:37:94:b2:c8:43:84:13:24:2f:ea:0a:5a: 0f:8c:6f:33:cf:ad:8b:35:42:51:f9:0c:0a:b5:49: 67:e3:20:4b:77:6e:2e:24:f9:fc:8e:8d:7b:3c:5a: 79:f9:fe:6a:1f:9b:29:9b:69:76:44:ef:78:85:40: c7:6f:27:a2:1d:2e:de:f5:d7:e8:97:d0:f2:e1:49: e8:04:f4:9a:12:af:13:b6:9f:69:0e:9e:23:33:dc: f8:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:F0:2D:29:D1:A8:24:13:A2:47:39:5E:A4:7C:CE:F0:26:DC:CE:36 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4fAtKdGoJBOiRzlepHzO8CbczjY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.34.0/23 Signature Algorithm: sha256WithRSAEncryption 25:81:13:59:0a:19:ff:14:35:82:73:2a:8a:8b:f4:de:54:98: bb:15:ac:02:99:9d:8a:b6:37:d1:28:dc:07:ad:20:97:41:36: c9:f5:8d:67:96:37:4d:0e:19:d7:f1:64:49:a8:83:b4:2c:d4: 40:23:2b:85:82:e9:48:47:d6:13:0b:90:fe:1c:d1:8f:d0:11: fa:b1:f9:9b:1e:05:9b:3d:23:76:59:f7:83:db:01:9c:f8:7f: 26:53:02:db:e2:57:89:72:99:d2:7c:cc:46:00:ea:17:d7:c2: 8a:7a:f7:b6:0d:06:52:27:7d:8f:65:a1:57:ca:da:22:9c:f4: 76:f8:a7:d6:ff:ae:c7:99:3b:8b:bf:fc:f7:b1:21:03:81:fa: 8b:bf:d4:13:44:67:6b:1f:39:db:41:c0:7f:68:9f:6a:68:44: 16:e3:0b:7b:5d:36:85:d3:b9:bd:a3:3c:47:1d:d1:0e:50:8b: c0:db:f0:7c:9d:d8:a4:ef:a9:cd:76:ac:04:39:05:60:6a:ec: ac:3b:01:dd:02:dc:d4:7f:48:86:d0:ae:a0:cd:55:05:15:a3: 52:07:dc:c8:dc:0b:2a:f7:51:37:40:3d:03:0f:04:ff:96:ff: 39:c9:46:9e:ed:f6:f6:2a:a3:4c:bc:71:dd:6f:4f:f9:04:a2: 98:bf:06:b0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCSkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjMwMzBaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEUxRjAyRDI5RDFBODI0 MTNBMjQ3Mzk1RUE0N0NDRUYwMjZEQ0NFMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLkC2DNCSpHji9vrtRVtMO/Zd+AXfqN/AdFDs+qisaYYowWAG9 U0FrbXA0lANZjm2wsgP6Rz/xNU1Z1dP2lBxtRSIWyzuMg6zQfE61mhG5/Sskki0N 6vANOEcWFUV972guTbwu1y3rwPnWN015c1xz+FS26QEZwPca/FtwOGGlxpd5P0RF 4zUeop3CrKluy1Q9lOXrEkTnt5zlT8qb4cqtFrtTWOdJvDeUsshDhBMkL+oKWg+M bzPPrYs1QlH5DAq1SWfjIEt3bi4k+fyOjXs8Wnn5/mofmymbaXZE73iFQMdvJ6Id Lt711+iX0PLhSegE9JoSrxO2n2kOniMz3PgpAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU4fAtKdGoJBOiRzlepHzO8CbczjYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzRmQXRLZEdvSkJPaVJ6bGVwSHpPOENiY3pqWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBTyIwDQYJKoZIhvcNAQELBQADggEBACWBE1kKGf8UNYJzKoqL9N5UmLsV rAKZnYq2N9Eo3AetIJdBNsn1jWeWN00OGdfxZEmog7Qs1EAjK4WC6UhH1hMLkP4c 0Y/QEfqx+ZseBZs9I3ZZ94PbAZz4fyZTAtviV4lymdJ8zEYA6hfXwop697YNBlIn fY9loVfK2iKc9Hb4p9b/rseZO4u//PexIQOB+ou/1BNEZ2sfOdtBwH9on2poRBbj C3tdNoXTub2jPEcd0Q5Qi8Db8Hyd2KTvqc12rAQ5BWBq7Kw7Ad0C3NR/SIbQrqDN VQUVo1IH3MjcCyr3UTdAPQMPBP+W/znJRp7t9vYqo0y8cd1vT/kEopi/BrA= -----END CERTIFICATE-----Generated at Thu Mar 13 01:50:26 2025 by rpki-client