$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/7LtjKdgssV_V-Ylo5hS0Ziq_xnE.roa File: 7LtjKdgssV_V-Ylo5hS0Ziq_xnE.roa (raw, json) Hash identifier: 7gJLV8GOk7/Ys87LzuhJQ1Q8OEs2IKsPq7qOf+dyFAk= Subject key identifier: EC:BB:63:29:D8:2C:B1:5F:D5:F9:89:68:E6:14:B4:66:2A:BF:C6:71 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0AD4 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/7LtjKdgssV_V-Ylo5hS0Ziq_xnE.roa Signing time: Fri 24 Jan 2025 04:49:09 +0000 ROA not before: Fri 24 Jan 2025 04:49:09 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.109.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2772 (0xad4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 24 04:49:09 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=ECBB6329D82CB15FD5F98968E614B4662ABFC671 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:7b:19:56:9b:48:97:b4:06:76:7c:cc:35:a1: a5:34:1f:28:d2:e0:d9:08:c8:5c:21:bf:29:95:98: c6:48:b3:c9:b0:71:11:81:ec:66:29:24:47:f5:ce: 99:1c:c7:62:c6:a6:59:2c:f1:58:4a:36:cf:a5:87: 7f:1c:ed:56:a2:b5:52:cf:18:e7:d8:91:02:ce:54: 60:2c:95:1b:1a:56:14:10:7a:04:19:ba:b3:58:cd: 41:ea:58:d8:77:c4:86:de:b3:82:ce:33:6e:e7:1c: 6e:39:a9:56:a2:b1:a7:1e:c7:2a:66:d9:20:06:c6: c5:35:bb:51:8b:dd:33:eb:e2:f1:60:9b:2a:72:37: 72:cf:30:9c:6d:c8:a0:ea:ff:85:2b:8a:df:c1:02: fb:ad:0d:82:9f:ca:95:1a:23:90:5b:01:e2:60:37: ae:f9:54:a6:c4:25:d6:37:d6:5b:52:34:f7:1d:b9: 24:29:2b:64:ee:3f:6c:6b:63:ea:5e:36:1d:5f:27: 98:1b:65:51:1c:60:02:7c:e7:78:79:99:7a:4a:b0: e9:33:94:a0:29:46:0d:c3:42:ea:fe:cf:b1:18:82: f8:4f:69:7e:90:a1:aa:33:ca:53:11:e5:c9:50:d0: b6:13:a7:11:e4:89:a4:99:04:6f:fe:e1:7a:8c:3c: 5c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:BB:63:29:D8:2C:B1:5F:D5:F9:89:68:E6:14:B4:66:2A:BF:C6:71 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/7LtjKdgssV_V-Ylo5hS0Ziq_xnE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.109.220.0/22 Signature Algorithm: sha256WithRSAEncryption 00:e7:7f:39:13:55:f0:a3:e0:ac:1d:bb:b9:03:e6:81:a2:fc: 86:8f:47:57:83:90:3f:40:0e:cd:52:96:20:12:a0:a2:75:e2: a7:64:4a:24:fc:35:04:f8:37:ba:9f:d6:65:cf:fb:dc:72:0b: 3e:46:ab:0a:6b:8c:c6:90:b4:84:d8:88:08:ea:53:84:44:b1: 67:4e:17:c1:49:7d:44:99:58:cb:79:e9:c8:14:aa:7c:75:ba: d0:46:35:bb:d4:0f:d8:c1:c6:48:43:c4:3d:e0:a0:7a:ac:ac: 83:3e:23:58:1e:37:aa:d7:77:71:d7:66:b5:bc:f0:45:79:a2: 10:ac:c4:ce:25:9c:3b:57:e9:a1:33:7f:c1:4d:6a:b2:38:0a: 7a:51:f9:50:93:72:9d:b5:70:3b:15:47:21:7f:9e:e8:02:3d: 3f:bf:f0:d4:5d:52:ae:5a:d2:a6:20:db:98:ca:78:dc:f2:3d: 5a:a3:f2:fc:69:d2:f3:bf:77:2d:6c:ac:96:2b:23:db:71:9e: 96:8c:cc:99:9a:da:ff:d7:50:ab:f2:30:27:70:85:22:38:94: 21:e9:12:84:1f:61:0d:7e:22:a3:08:b3:48:93:c0:7a:dc:10: 80:38:33:08:59:22:95:47:3a:3a:b6:3b:c8:66:02:c5:0f:55: be:e5:2a:bc -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCtQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMjQw NDQ5MDlaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEVDQkI2MzI5RDgyQ0Ix NUZENUY5ODk2OEU2MTRCNDY2MkFCRkM2NzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKexlWm0iXtAZ2fMw1oaU0HyjS4NkIyFwhvymVmMZIs8mwcRGB 7GYpJEf1zpkcx2LGplks8VhKNs+lh38c7VaitVLPGOfYkQLOVGAslRsaVhQQegQZ urNYzUHqWNh3xIbes4LOM27nHG45qVaisacexypm2SAGxsU1u1GL3TPr4vFgmypy N3LPMJxtyKDq/4Urit/BAvutDYKfypUaI5BbAeJgN675VKbEJdY31ltSNPcduSQp K2TuP2xrY+peNh1fJ5gbZVEcYAJ853h5mXpKsOkzlKApRg3DQur+z7EYgvhPaX6Q oaozylMR5clQ0LYTpxHkiaSZBG/+4XqMPFz5AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU7LtjKdgssV/V+Ylo5hS0Ziq/xnEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzdMdGpLZGdzc1ZfVi1ZbG81aFMwWmlxX3huRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxbdwwDQYJKoZIhvcNAQELBQADggEBAADnfzkTVfCj4Kwdu7kD5oGi/IaP R1eDkD9ADs1SliASoKJ14qdkSiT8NQT4N7qf1mXP+9xyCz5GqwprjMaQtITYiAjq U4REsWdOF8FJfUSZWMt56cgUqnx1utBGNbvUD9jBxkhDxD3goHqsrIM+I1geN6rX d3HXZrW88EV5ohCsxM4lnDtX6aEzf8FNarI4CnpR+VCTcp21cDsVRyF/nugCPT+/ 8NRdUq5a0qYg25jKeNzyPVqj8vxp0vO/dy1srJYrI9txnpaMzJma2v/XUKvyMCdw hSI4lCHpEoQfYQ1+IqMIs0iTwHrcEIA4MwhZIpVHOjq2O8hmAsUPVb7lKrw= -----END CERTIFICATE-----Generated at Wed Feb 19 22:34:21 2025 by rpki-client