$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/669Y5fxDEkuhrsNFp5_m1lJ-7vQ.roa File: 669Y5fxDEkuhrsNFp5_m1lJ-7vQ.roa (raw, json) Hash identifier: YWOBwOamfX38A8FjsxFN3DPq7lVxoes5qUHXE3+9H3g= Subject key identifier: EB:AF:58:E5:FC:43:12:4B:A1:AE:C3:45:A7:9F:E6:D6:52:7E:EE:F4 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 07B6 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/669Y5fxDEkuhrsNFp5_m1lJ-7vQ.roa Signing time: Tue 30 Apr 2024 02:06:38 +0000 ROA not before: Tue 30 Apr 2024 02:06:38 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 110.158.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1974 (0x7b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:06:38 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=EBAF58E5FC43124BA1AEC345A79FE6D6527EEEF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8a:e8:c5:a5:ee:d5:c3:5b:72:06:08:fe:28: 22:fd:0e:ea:f2:c9:51:8d:c4:a3:66:40:49:6d:98: b5:e7:63:a9:5d:c4:6a:cd:4c:1b:09:fe:59:28:ae: 1f:2e:3d:98:2b:97:9f:be:f7:94:8a:95:b1:89:e5: ac:50:e2:1e:43:07:d2:7a:78:19:58:bc:a4:ee:0b: df:3c:fe:4c:56:fd:51:ad:bd:04:de:1e:f4:c0:a3: a8:4f:ed:44:c8:e3:2b:5f:88:37:20:9c:a4:47:45: 4c:bf:4f:d3:95:57:e1:53:b6:27:2f:cc:2b:05:f3: 9e:65:a5:f8:a6:bb:fb:3d:fb:de:73:e4:a2:a3:d4: 99:a1:6b:c8:9c:27:a7:91:9c:c5:be:2b:cb:ff:d0: 6b:62:0d:62:71:b8:0d:1e:54:e2:06:2b:28:65:6b: c6:a3:77:98:08:71:b5:10:6c:81:44:1f:51:9f:8a: 6d:03:40:65:a0:2f:3d:c1:f0:9b:30:d9:bf:77:7a: c9:c7:bf:a0:af:a8:3e:f0:5d:f5:26:d7:b6:6a:4e: cf:62:43:97:88:7b:dc:d5:c9:9f:5e:36:ac:9b:fc: d1:f5:c3:be:33:39:40:de:4f:75:d1:be:b5:2a:64: f6:99:99:5c:22:0b:2c:98:46:8a:ce:99:d5:08:6a: 0b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:AF:58:E5:FC:43:12:4B:A1:AE:C3:45:A7:9F:E6:D6:52:7E:EE:F4 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/669Y5fxDEkuhrsNFp5_m1lJ-7vQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.158.188.0/22 Signature Algorithm: sha256WithRSAEncryption a6:43:c1:38:b7:d6:a3:a2:fa:68:8a:de:4c:37:75:b5:90:b7: 5f:dc:64:ea:64:30:f5:d9:64:ce:36:ff:71:a8:25:84:09:50: 32:8a:95:40:a2:31:db:d3:ba:4f:49:21:76:5a:dc:f3:45:18: 28:5a:3f:4e:b1:be:e5:f6:7e:ad:3b:57:08:e6:d7:49:c7:84: 76:79:02:a0:c5:2e:94:9b:9d:dc:ac:77:1c:1c:d0:64:67:94: d6:a3:ca:af:0c:a1:f0:51:2a:6d:00:ae:8c:a5:fe:6a:7e:24: 06:0d:68:47:9f:80:6a:b2:30:5e:a8:68:6a:cb:11:6d:9e:66: 00:89:6c:b7:69:aa:b5:8f:9b:ca:7b:f2:73:eb:30:ca:bd:6f: 7c:24:6d:a4:fd:d9:82:9f:0c:66:f8:18:a9:56:84:07:6d:89: d4:90:34:46:cf:97:bd:88:96:62:bd:93:a9:44:7b:5c:7d:1a: b8:8b:cf:38:03:3d:66:be:9e:3e:d8:49:5d:c2:6f:8f:34:45: e9:2a:32:2e:75:f8:1e:7d:bd:c5:ac:2f:de:7c:41:54:06:e2: bc:3d:e0:ed:c9:e0:a1:77:a9:55:56:9f:e9:ca:36:04:ca:b0: 63:a7:96:cb:87:b2:89:07:96:96:eb:2e:d4:cf:d8:e5:b8:dc: 2e:a3:a3:13 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB7YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjA2MzhaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEVCQUY1OEU1RkM0MzEy NEJBMUFFQzM0NUE3OUZFNkQ2NTI3RUVFRjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEiujFpe7Vw1tyBgj+KCL9DuryyVGNxKNmQEltmLXnY6ldxGrN TBsJ/lkorh8uPZgrl5++95SKlbGJ5axQ4h5DB9J6eBlYvKTuC988/kxW/VGtvQTe HvTAo6hP7UTI4ytfiDcgnKRHRUy/T9OVV+FTticvzCsF855lpfimu/s9+95z5KKj 1Jmha8icJ6eRnMW+K8v/0GtiDWJxuA0eVOIGKyhla8ajd5gIcbUQbIFEH1Gfim0D QGWgLz3B8Jsw2b93esnHv6CvqD7wXfUm17ZqTs9iQ5eIe9zVyZ9eNqyb/NH1w74z OUDeT3XRvrUqZPaZmVwiCyyYRorOmdUIagtBAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU669Y5fxDEkuhrsNFp5/m1lJ+7vQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzY2OVk1ZnhERWt1aHJzTkZwNV9tMWxKLTd2US5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJunrwwDQYJKoZIhvcNAQELBQADggEBAKZDwTi31qOi+miK3kw3dbWQt1/c ZOpkMPXZZM42/3GoJYQJUDKKlUCiMdvTuk9JIXZa3PNFGChaP06xvuX2fq07Vwjm 10nHhHZ5AqDFLpSbndysdxwc0GRnlNajyq8MofBRKm0Aroyl/mp+JAYNaEefgGqy MF6oaGrLEW2eZgCJbLdpqrWPm8p78nPrMMq9b3wkbaT92YKfDGb4GKlWhAdtidSQ NEbPl72IlmK9k6lEe1x9GriLzzgDPWa+nj7YSV3Cb480RekqMi51+B59vcWsL958 QVQG4rw94O3J4KF3qVVWn+nKNgTKsGOnlsuHsokHlpbrLtTP2OW43C6joxM= -----END CERTIFICATE-----Generated at Sun Feb 16 22:25:57 2025 by rpki-client