$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/67bY-2J05wHDVDTtd1W-Bwug6As.roa File: 67bY-2J05wHDVDTtd1W-Bwug6As.roa (raw, json) Hash identifier: ceuxhB2otGlYMKbppDS0JpVt0mS9V2Oe0E+h6kHllyI= Subject key identifier: EB:B6:D8:FB:62:74:E7:01:C3:54:34:ED:77:55:BE:07:0B:A0:E8:0B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0867 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/67bY-2J05wHDVDTtd1W-Bwug6As.roa Signing time: Tue 30 Apr 2024 02:18:26 +0000 ROA not before: Tue 30 Apr 2024 02:18:26 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.80.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2151 (0x867) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:18:26 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=EBB6D8FB6274E701C35434ED7755BE070BA0E80B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:0e:f3:d8:fb:49:8d:c0:3e:97:1d:77:61:e4: 6e:a1:63:07:03:df:e7:72:63:8d:06:6f:f8:e0:7e: 67:78:2a:dd:ce:53:ba:98:e8:12:d7:16:24:b5:36: ef:3e:4d:5b:13:9e:66:59:5b:bf:b1:91:1b:b0:be: f9:f9:35:51:cb:89:73:5f:22:1d:bf:e1:3f:5d:ba: 10:d3:01:a0:58:a9:71:ff:30:93:b5:6f:01:47:92: e7:63:98:b5:74:87:b1:3c:f6:6a:35:6e:d7:b0:63: 86:7a:be:9b:e7:32:16:ab:36:c7:1e:be:cb:a4:21: 32:56:0e:8b:2e:03:ae:f3:7e:e6:69:4d:8f:18:5f: 0d:c4:ba:a3:c5:54:d9:c8:a6:98:ae:65:a4:ba:23: e2:b0:86:7a:40:0b:bf:b3:d0:42:e6:ed:9c:a1:4c: e3:7c:ed:1c:4f:c8:2a:0c:31:2a:b1:51:f9:7e:e6: fd:c9:3a:a0:52:61:fa:bb:c5:d2:2e:0b:2b:73:bf: cd:27:43:99:ac:05:f8:48:62:2c:1c:21:d8:c2:ce: 2f:5e:ac:50:d1:81:f9:18:fb:98:ed:19:7a:ef:79: 96:2b:d0:4c:e9:dd:f9:91:e8:b4:41:85:c6:92:36: f9:30:a4:1f:a8:84:68:4d:99:87:2b:9d:ad:36:bb: d0:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:B6:D8:FB:62:74:E7:01:C3:54:34:ED:77:55:BE:07:0B:A0:E8:0B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/67bY-2J05wHDVDTtd1W-Bwug6As.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.80.0/24 Signature Algorithm: sha256WithRSAEncryption 69:aa:05:91:16:fb:83:10:f1:b7:38:e9:6f:80:ed:e4:6d:0f: c6:71:3f:b3:16:11:46:68:33:a2:09:c2:74:72:7e:b7:7c:84: 9b:58:ea:8c:a2:49:d6:45:28:45:16:f4:9e:b6:bb:ca:f8:7f: 2c:33:e9:4f:d3:da:33:9b:e2:5b:32:8e:69:87:19:e8:81:a2: 38:f5:a8:94:bd:39:49:62:df:92:64:3c:78:59:df:f7:37:d6: b2:b9:64:69:ed:1d:2c:74:51:e2:44:53:0b:1a:96:03:78:a2: 7f:ca:84:2c:e2:1a:90:b8:be:cb:39:73:09:b6:32:88:8e:31: ce:57:f7:17:2a:11:6d:ad:5d:ef:7d:ee:32:07:8c:ff:f7:13: 93:22:19:76:0b:46:3b:7f:91:7f:e3:2f:31:a7:2e:04:11:fb: 99:2a:16:79:aa:72:71:41:cf:90:f9:49:5f:1f:97:d0:81:fc: d8:3d:c3:33:92:9f:48:df:c6:76:30:39:70:c0:e3:0f:e3:9f: 1c:36:08:33:e6:e9:b6:01:4c:9c:ec:b5:b6:63:45:7b:58:2c: f6:ac:be:c9:2c:2f:07:a0:6f:4f:11:e0:86:01:9f:cb:35:ba: ae:9b:a9:5b:88:58:e5:cc:e4:96:dc:2c:24:b9:c9:6c:7d:bb: 5a:85:4f:77 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCGcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjE4MjZaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEVCQjZEOEZCNjI3NEU3 MDFDMzU0MzRFRDc3NTVCRTA3MEJBMEU4MEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxDvPY+0mNwD6XHXdh5G6hYwcD3+dyY40Gb/jgfmd4Kt3OU7qY 6BLXFiS1Nu8+TVsTnmZZW7+xkRuwvvn5NVHLiXNfIh2/4T9duhDTAaBYqXH/MJO1 bwFHkudjmLV0h7E89mo1btewY4Z6vpvnMharNscevsukITJWDosuA67zfuZpTY8Y Xw3EuqPFVNnIppiuZaS6I+KwhnpAC7+z0ELm7ZyhTON87RxPyCoMMSqxUfl+5v3J OqBSYfq7xdIuCytzv80nQ5msBfhIYiwcIdjCzi9erFDRgfkY+5jtGXrveZYr0Ezp 3fmR6LRBhcaSNvkwpB+ohGhNmYcrna02u9ChAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU67bY+2J05wHDVDTtd1W+Bwug6AswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzY3YlktMkowNXdIRFZEVHRkMVctQnd1ZzZBcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABT1AwDQYJKoZIhvcNAQELBQADggEBAGmqBZEW+4MQ8bc46W+A7eRtD8Zx P7MWEUZoM6IJwnRyfrd8hJtY6oyiSdZFKEUW9J62u8r4fywz6U/T2jOb4lsyjmmH GeiBojj1qJS9OUli35JkPHhZ3/c31rK5ZGntHSx0UeJEUwsalgN4on/KhCziGpC4 vss5cwm2MoiOMc5X9xcqEW2tXe997jIHjP/3E5MiGXYLRjt/kX/jLzGnLgQR+5kq FnmqcnFBz5D5SV8fl9CB/Ng9wzOSn0jfxnYwOXDA4w/jnxw2CDPm6bYBTJzstbZj RXtYLPasvsksLwegb08R4IYBn8s1uq6bqVuIWOXM5JbcLCS5yWx9u1qFT3c= -----END CERTIFICATE-----Generated at Sun Feb 16 22:32:27 2025 by rpki-client