$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/6nXKNSqiX5Q3HBfxYR6KIyd0_gc.roa File: 6nXKNSqiX5Q3HBfxYR6KIyd0_gc.roa (raw, json) Hash identifier: k9TCGHirHK+DFqphfDqrG6SvTAFIYDNzCnaR3GNoq9M= Subject key identifier: EA:75:CA:35:2A:A2:5F:94:37:1C:17:F1:61:1E:8A:23:27:74:FE:07 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 064F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/6nXKNSqiX5Q3HBfxYR6KIyd0_gc.roa Signing time: Tue 30 Apr 2024 01:31:33 +0000 ROA not before: Tue 30 Apr 2024 01:31:33 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 211.14.72.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1615 (0x64f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:31:33 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=EA75CA352AA25F94371C17F1611E8A232774FE07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:6d:28:65:c1:da:03:89:a3:8a:ba:53:8c:23: 41:15:c6:b3:96:e0:f7:9e:5d:bb:ac:91:66:53:57: fc:e9:3e:40:4e:87:55:82:e2:2e:0d:24:b2:e3:67: 5b:1f:62:e5:aa:57:f2:8e:66:74:e8:2c:bd:e3:63: d3:04:19:41:f4:20:a6:9a:79:a8:d7:cd:fb:82:5b: 83:67:d0:8a:63:b3:d5:dc:62:69:26:bc:70:39:8f: 85:58:5c:3d:e3:37:e4:84:fd:c3:df:55:e7:62:11: ee:78:c8:30:e1:ce:69:1a:ae:9f:96:bc:c4:46:5f: 04:a2:a8:ca:55:83:98:bd:af:be:d0:da:2b:6b:0b: e3:54:02:b5:18:82:cf:70:ad:2d:bb:4c:0e:26:1d: 9a:c1:17:30:28:13:05:12:88:76:30:e6:01:c4:22: 21:70:f2:6a:38:08:51:6f:9c:83:73:a5:8f:2a:ed: fd:67:68:26:1f:4f:a5:24:da:25:e5:8f:23:8d:eb: 48:8d:c8:7e:50:eb:61:d3:fd:c9:d2:8a:37:25:95: d5:28:d1:9b:84:f7:e5:39:7c:a4:fe:06:c9:0e:e6: f8:90:42:73:1f:b8:48:8c:cb:d0:91:f4:77:09:85: 3f:55:07:59:41:5b:ad:90:df:d9:8a:3a:61:69:d4: bd:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:75:CA:35:2A:A2:5F:94:37:1C:17:F1:61:1E:8A:23:27:74:FE:07 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/6nXKNSqiX5Q3HBfxYR6KIyd0_gc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.72.0/23 Signature Algorithm: sha256WithRSAEncryption 81:0b:52:6e:a2:e9:3a:f2:d3:20:a2:0c:62:b1:c6:1f:2e:88: 41:98:b0:5b:c7:3a:aa:df:50:8c:81:f5:01:4e:bd:3f:90:57: 83:cf:98:af:e0:53:8b:4b:ed:c4:b8:6b:25:00:08:e7:7b:d5: 68:89:7a:29:e7:06:5e:23:38:98:3a:32:93:be:b9:ad:89:4e: 13:21:a7:eb:94:0c:45:31:4b:3c:c6:d4:5c:c4:21:49:24:4a: e9:fe:43:37:62:73:03:a1:23:be:be:41:7e:0f:1c:33:9f:35: 89:db:5f:c5:7f:e0:92:eb:0b:1e:7e:4d:84:12:3c:cf:e9:9a: 99:98:81:1a:8f:03:e2:79:ee:18:f6:fa:3d:00:35:e2:bb:e4: 63:f0:90:84:b9:2e:11:72:cf:36:9c:51:74:da:f8:b8:9b:f9: 04:2d:1b:91:22:f9:c9:0f:34:ac:fb:e4:e2:b0:23:b7:bb:0a: b3:d1:8f:95:83:44:96:db:40:ce:46:f9:ee:7f:53:92:18:c4: b8:78:53:38:29:27:80:7a:33:82:97:20:5b:6f:55:74:55:cf: 75:b7:3d:8a:7c:18:64:2f:22:ad:1a:a8:c9:93:07:4f:96:0a: dd:75:db:da:2a:67:63:0b:48:bd:cb:27:60:2a:21:45:be:cc: 21:bf:67:50 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBk8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTMxMzNaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEVBNzVDQTM1MkFBMjVG OTQzNzFDMTdGMTYxMUU4QTIzMjc3NEZFMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2bShlwdoDiaOKulOMI0EVxrOW4PeeXbuskWZTV/zpPkBOh1WC 4i4NJLLjZ1sfYuWqV/KOZnToLL3jY9MEGUH0IKaaeajXzfuCW4Nn0Ipjs9XcYmkm vHA5j4VYXD3jN+SE/cPfVediEe54yDDhzmkarp+WvMRGXwSiqMpVg5i9r77Q2itr C+NUArUYgs9wrS27TA4mHZrBFzAoEwUSiHYw5gHEIiFw8mo4CFFvnINzpY8q7f1n aCYfT6Uk2iXljyON60iNyH5Q62HT/cnSijclldUo0ZuE9+U5fKT+BskO5viQQnMf uEiMy9CR9HcJhT9VB1lBW62Q39mKOmFp1L3JAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU6nXKNSqiX5Q3HBfxYR6KIyd0/gcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzZuWEtOU3FpWDVRM0hCZnhZUjZLSXlkMF9nYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHTDkgwDQYJKoZIhvcNAQELBQADggEBAIELUm6i6Try0yCiDGKxxh8uiEGY sFvHOqrfUIyB9QFOvT+QV4PPmK/gU4tL7cS4ayUACOd71WiJeinnBl4jOJg6MpO+ ua2JThMhp+uUDEUxSzzG1FzEIUkkSun+QzdicwOhI76+QX4PHDOfNYnbX8V/4JLr Cx5+TYQSPM/pmpmYgRqPA+J57hj2+j0ANeK75GPwkIS5LhFyzzacUXTa+Lib+QQt G5Ei+ckPNKz75OKwI7e7CrPRj5WDRJbbQM5G+e5/U5IYxLh4UzgpJ4B6M4KXIFtv VXRVz3W3PYp8GGQvIq0aqMmTB0+WCt1129oqZ2MLSL3LJ2AqIUW+zCG/Z1A= -----END CERTIFICATE-----Generated at Sun Feb 16 22:09:50 2025 by rpki-client