$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/5JYX1oiGt6MAcAt1v2XnJPB4Mtc.roa File: 5JYX1oiGt6MAcAt1v2XnJPB4Mtc.roa (raw, json) Hash identifier: y1LzKNa4u1TlUn9xG+tMM4uTn+JN5cBm85JWRQGnoFQ= Subject key identifier: E4:96:17:D6:88:86:B7:A3:00:70:0B:75:BF:65:E7:24:F0:78:32:D7 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A7C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/5JYX1oiGt6MAcAt1v2XnJPB4Mtc.roa Signing time: Sun 30 Jun 2024 01:52:31 +0000 ROA not before: Sun 30 Jun 2024 01:52:31 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.72.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2684 (0xa7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:52:31 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=E49617D68886B7A300700B75BF65E724F07832D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:46:a9:ce:9c:74:6e:96:6b:02:e3:91:90:8d: 92:77:ed:ee:06:eb:5c:e4:e3:6b:3b:d9:e0:f8:fc: f8:da:d2:16:82:c6:24:78:2e:96:44:42:12:71:c0: e5:ed:3c:de:b8:48:45:88:42:97:f1:68:d5:c6:56: ce:d8:90:06:64:61:5f:68:e3:c6:d7:32:86:16:78: f3:f2:56:dd:df:21:a1:f2:66:20:cd:48:b3:c5:f8: 84:2c:07:67:ce:1a:40:2d:ce:4f:42:39:28:ce:26: fe:97:6a:c6:2f:2f:82:90:4f:33:53:2a:12:f3:0c: 0e:07:f4:73:2a:ac:30:43:12:26:02:a9:2b:c1:66: 49:ff:a1:de:35:3f:51:83:13:48:3a:91:9a:0e:0d: ed:b7:d7:3d:1f:f0:b1:9d:e4:81:d1:19:ad:d5:29: c3:62:f2:79:7e:61:c2:5a:6c:62:d5:bf:9e:e4:05: 3e:02:0e:c6:46:da:bb:ca:14:f2:cc:ed:22:49:36: 2d:43:3c:7b:27:25:66:6c:be:84:0a:34:75:26:6d: 54:09:2a:7a:03:29:e2:44:05:1d:9a:f4:3d:1c:69: c4:aa:1f:dd:57:9b:b6:1c:9d:75:66:9b:f6:f9:43: 7e:9b:9d:63:54:e0:c5:e2:75:cf:7e:69:a8:8c:68: 0a:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:96:17:D6:88:86:B7:A3:00:70:0B:75:BF:65:E7:24:F0:78:32:D7 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/5JYX1oiGt6MAcAt1v2XnJPB4Mtc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.96.0/19 Signature Algorithm: sha256WithRSAEncryption 89:42:83:41:21:4d:9c:47:c1:50:9c:03:3c:d7:34:6a:6b:c9: 42:d9:a4:cb:f0:f8:ed:da:d2:ea:fd:44:c4:c9:03:77:69:8f: 2e:39:02:2e:57:81:85:cd:25:9a:14:a7:b4:43:8d:b3:c8:40: b5:0c:88:9d:70:f5:e7:ac:d9:7d:39:5d:b6:3b:24:95:e1:7d: 4b:67:5c:38:c7:b1:b6:85:ac:ce:ec:b5:43:79:9b:01:1d:22: 22:0b:bd:8d:4a:20:a2:11:f5:3a:c5:a1:7e:4a:8a:1a:b2:9b: cb:61:69:e5:65:b2:85:54:9d:ea:18:21:aa:77:49:8e:fc:e3: 5c:07:e5:39:33:4b:b2:c6:c1:4c:93:80:3f:3f:9a:a3:5e:cf: 36:1b:79:35:3b:0c:1f:d6:cb:85:ca:83:28:27:b3:4c:cf:69: e2:16:36:ec:ea:33:bd:b8:7f:55:7e:47:5b:67:ba:cd:f3:5e: 7f:fa:fe:ad:0f:ad:cd:37:67:79:31:6b:29:72:ad:02:76:4c: e3:e1:91:7d:f2:eb:36:d7:2b:54:fc:5c:3a:6c:16:f4:8a:00: c6:22:91:46:d4:f2:43:d0:69:25:de:55:fa:1d:e4:27:2a:93: 7c:88:dd:e7:61:19:58:20:1e:90:89:bf:6b:7a:9f:e6:d7:3b: 72:7c:e7:ba -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCnwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTUyMzFaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEU0OTYxN0Q2ODg4NkI3 QTMwMDcwMEI3NUJGNjVFNzI0RjA3ODMyRDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyRqnOnHRulmsC45GQjZJ37e4G61zk42s72eD4/Pja0haCxiR4 LpZEQhJxwOXtPN64SEWIQpfxaNXGVs7YkAZkYV9o48bXMoYWePPyVt3fIaHyZiDN SLPF+IQsB2fOGkAtzk9COSjOJv6XasYvL4KQTzNTKhLzDA4H9HMqrDBDEiYCqSvB Zkn/od41P1GDE0g6kZoODe231z0f8LGd5IHRGa3VKcNi8nl+YcJabGLVv57kBT4C DsZG2rvKFPLM7SJJNi1DPHsnJWZsvoQKNHUmbVQJKnoDKeJEBR2a9D0cacSqH91X m7YcnXVmm/b5Q36bnWNU4MXidc9+aaiMaAr1AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU5JYX1oiGt6MAcAt1v2XnJPB4MtcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzVKWVgxb2lHdDZNQWNBdDF2MlhuSlBCNE10Yy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUBSGAwDQYJKoZIhvcNAQELBQADggEBAIlCg0EhTZxHwVCcAzzXNGpryULZ pMvw+O3a0ur9RMTJA3dpjy45Ai5XgYXNJZoUp7RDjbPIQLUMiJ1w9ees2X05XbY7 JJXhfUtnXDjHsbaFrM7stUN5mwEdIiILvY1KIKIR9TrFoX5Kihqym8thaeVlsoVU neoYIap3SY7841wH5TkzS7LGwUyTgD8/mqNezzYbeTU7DB/Wy4XKgygns0zPaeIW NuzqM724f1V+R1tnus3zXn/6/q0Prc03Z3kxaylyrQJ2TOPhkX3y6zbXK1T8XDps FvSKAMYikUbU8kPQaSXeVfod5Ccqk3yI3edhGVggHpCJv2t6n+bXO3J857o= -----END CERTIFICATE-----Generated at Sun Feb 16 22:03:44 2025 by rpki-client