$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/4sWkh-DXj-QbcsS0cfrNuCHNv2o.roa File: 4sWkh-DXj-QbcsS0cfrNuCHNv2o.roa (raw, json) Hash identifier: ZNWpq4l3SE8+u+nlmdLFWFRn/GSYvUFl6pDxw+ZB5go= Subject key identifier: E2:C5:A4:87:E0:D7:8F:E4:1B:72:C4:B4:71:FA:CD:B8:21:CD:BF:6A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A95 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4sWkh-DXj-QbcsS0cfrNuCHNv2o.roa Signing time: Sun 30 Jun 2024 01:52:42 +0000 ROA not before: Sun 30 Jun 2024 01:52:42 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 49.107.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2709 (0xa95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:52:42 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=E2C5A487E0D78FE41B72C4B471FACDB821CDBF6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:4d:d3:c5:05:34:88:0c:63:e0:0a:a6:4b:3e: be:d7:43:a1:cd:d4:b4:76:a0:82:aa:74:7f:f1:05: 5e:98:a3:a7:ae:1e:0f:c1:6a:5a:8e:94:9d:aa:4a: 4f:8b:bc:e8:41:db:2e:64:36:75:65:cb:31:e7:21: 04:3b:72:ab:d6:65:e4:39:bc:27:f8:7d:f2:f5:23: 87:ff:e4:43:72:93:cc:a1:b5:43:81:7a:80:e1:1a: e4:80:5f:57:5a:71:99:3a:51:a5:db:0e:fd:11:a8: 7e:49:a4:62:7e:a6:21:47:ac:1a:bf:7d:6c:15:f5: 9a:bc:2e:f0:d0:88:19:be:c2:b1:fe:28:41:42:b8: 7e:75:9b:43:ea:09:4c:9a:7f:b7:58:34:4c:4c:25: bf:0d:e4:2a:9b:a4:23:e5:e7:fa:6d:63:4f:b2:31: e9:1a:5a:ee:99:0e:97:14:bf:e3:19:7a:eb:9b:6c: 96:45:5c:46:95:10:22:cf:bc:33:a0:78:d6:27:20: f5:b7:1b:4c:57:c4:00:9d:1e:4b:22:4d:d6:83:c9: 07:c7:67:df:eb:71:a9:32:ff:fd:5a:91:c8:a7:c2: 3c:28:52:64:88:84:d7:2c:fb:02:f6:81:01:a3:5d: 7c:b8:c7:0d:fc:46:c1:38:fe:6e:eb:d8:8c:80:74: f1:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:C5:A4:87:E0:D7:8F:E4:1B:72:C4:B4:71:FA:CD:B8:21:CD:BF:6A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4sWkh-DXj-QbcsS0cfrNuCHNv2o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.107.128.0/19 Signature Algorithm: sha256WithRSAEncryption 05:b9:19:71:02:f1:80:13:47:96:07:ca:25:24:ca:fe:57:e6: 6e:7e:f4:fa:4c:6b:f7:f3:74:6c:4a:8e:6b:db:4f:05:6b:57: 92:ba:97:2d:c9:6e:e8:ef:c6:e5:48:cc:4d:76:5d:1f:1e:15: 78:8a:ca:d1:76:4e:ae:e1:eb:1f:31:8d:f5:d0:e7:3e:6f:64: 2c:45:90:7b:7f:54:c7:f8:72:d5:83:df:3b:31:52:34:ee:1b: de:aa:d9:80:8f:08:d6:94:fc:75:04:83:a2:5f:2a:74:98:97: 13:04:a0:41:37:f1:3c:b2:5a:ec:90:ce:dc:ba:a8:04:64:22: 3b:24:77:49:df:bc:93:be:d9:41:0b:11:6d:90:72:ef:f8:0c: 58:ec:cb:c4:66:86:af:a4:37:ee:c7:a8:34:eb:75:c2:50:10: ec:82:6e:4c:92:ef:c9:9e:aa:47:21:e0:58:61:7d:8a:f9:bb: 6c:ca:8b:47:ae:27:51:3e:90:18:66:2a:90:f4:61:3c:2c:97: e6:ce:0b:33:ab:8a:0b:90:72:71:58:0a:ee:d0:13:c6:09:60: 6a:3e:5c:2c:01:de:c7:c5:35:fc:11:5c:bb:9a:63:c0:8b:3b: f0:1c:85:3b:0c:21:bd:b5:26:0a:b8:59:bd:7f:21:a7:ac:2c: ec:c5:f9:f8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCpUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTUyNDJaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEUyQzVBNDg3RTBENzhG RTQxQjcyQzRCNDcxRkFDREI4MjFDREJGNkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbTdPFBTSIDGPgCqZLPr7XQ6HN1LR2oIKqdH/xBV6Yo6euHg/B alqOlJ2qSk+LvOhB2y5kNnVlyzHnIQQ7cqvWZeQ5vCf4ffL1I4f/5ENyk8yhtUOB eoDhGuSAX1dacZk6UaXbDv0RqH5JpGJ+piFHrBq/fWwV9Zq8LvDQiBm+wrH+KEFC uH51m0PqCUyaf7dYNExMJb8N5CqbpCPl5/ptY0+yMekaWu6ZDpcUv+MZeuubbJZF XEaVECLPvDOgeNYnIPW3G0xXxACdHksiTdaDyQfHZ9/rcaky//1akcinwjwoUmSI hNcs+wL2gQGjXXy4xw38RsE4/m7r2IyAdPFZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU4sWkh+DXj+QbcsS0cfrNuCHNv2owHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzRzV2toLURYai1RYmNzUzBjZnJOdUNITnYyby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUxa4AwDQYJKoZIhvcNAQELBQADggEBAAW5GXEC8YATR5YHyiUkyv5X5m5+ 9PpMa/fzdGxKjmvbTwVrV5K6ly3JbujvxuVIzE12XR8eFXiKytF2Tq7h6x8xjfXQ 5z5vZCxFkHt/VMf4ctWD3zsxUjTuG96q2YCPCNaU/HUEg6JfKnSYlxMEoEE38Tyy WuyQzty6qARkIjskd0nfvJO+2UELEW2Qcu/4DFjsy8Rmhq+kN+7HqDTrdcJQEOyC bkyS78meqkch4FhhfYr5u2zKi0euJ1E+kBhmKpD0YTwsl+bOCzOriguQcnFYCu7Q E8YJYGo+XCwB3sfFNfwRXLuaY8CLO/AchTsMIb21Jgq4Wb1/IaesLOzF+fg= -----END CERTIFICATE-----Generated at Sun Feb 16 22:11:01 2025 by rpki-client