$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/8Wh8Z5QG1eJ7xB09q9uyV3RGBEk.roa File: 8Wh8Z5QG1eJ7xB09q9uyV3RGBEk.roa (raw, json) Hash identifier: CDeiP43nOK9QnbK+c0r4nf3epCEtvzwOoB0kCsm7IXk= Subject key identifier: F1:68:7C:67:94:06:D5:E2:7B:C4:1D:3D:AB:DB:B2:57:74:46:04:49 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A7D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/8Wh8Z5QG1eJ7xB09q9uyV3RGBEk.roa Signing time: Sun 30 Jun 2024 01:52:31 +0000 ROA not before: Sun 30 Jun 2024 01:52:31 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 220.159.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2685 (0xa7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:52:31 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=F1687C679406D5E27BC41D3DABDBB25774460449 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5f:b0:e4:df:4d:0e:69:36:04:bf:a0:35:bb: 8b:63:0c:50:e4:d5:dc:dd:70:50:4c:53:16:67:2d: 3c:36:93:25:d5:2c:13:30:27:77:c7:68:fb:2e:fd: 70:bd:26:c0:9c:60:48:a4:c9:49:74:a6:52:07:ce: ab:63:8e:37:7f:2f:e4:03:bf:c1:f7:01:62:18:3d: 68:a7:86:95:17:c9:c0:40:a8:01:c8:41:82:7d:4a: 2a:b9:2b:a5:84:83:47:1c:4a:34:89:ca:26:4d:a7: 75:13:91:1a:20:8c:b4:4a:0f:17:ad:19:47:be:0a: 97:d7:c4:b2:f5:65:5d:4d:b0:76:e3:52:56:d8:09: be:04:4d:7c:38:97:38:69:ed:69:f7:d9:4a:29:e3: 43:c4:25:47:4c:91:32:6c:e9:c7:d8:f8:c4:50:79: 52:c0:86:45:c3:ae:19:f3:76:cd:e4:7c:e2:15:ae: 89:8f:d2:f2:d9:0c:49:e9:09:a0:cd:c9:a6:84:bf: 2b:58:26:b9:e5:12:b0:18:10:8b:c1:ab:e7:21:2d: 6e:b8:dc:fa:b9:b8:30:b0:d9:83:d6:ba:fc:0e:e5: 09:ff:95:c7:6e:1f:c4:e0:79:2f:80:42:b6:d9:d7: 37:ca:3c:0e:0f:ee:25:fb:7e:6b:9f:82:4f:f3:eb: 65:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:68:7C:67:94:06:D5:E2:7B:C4:1D:3D:AB:DB:B2:57:74:46:04:49 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/8Wh8Z5QG1eJ7xB09q9uyV3RGBEk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.31.0/24 Signature Algorithm: sha256WithRSAEncryption 99:a5:44:ec:43:4b:fd:ea:03:6c:30:39:99:42:cd:cd:7d:7b: 87:90:15:46:a1:8f:92:7c:91:f5:52:92:f2:e5:df:46:79:16: 52:48:77:54:d5:a0:be:db:8b:90:dc:98:5b:9e:61:c8:3d:45: 53:e3:5a:33:9d:e9:b1:a0:eb:cc:cf:3b:04:61:8c:e8:d6:24: 2e:6c:08:02:f8:cf:50:a1:a2:ac:79:28:3a:aa:d0:6d:0c:16: 49:64:dd:99:42:ac:f5:ef:01:1f:d9:92:2e:d2:a1:96:03:67: 87:95:cd:aa:51:69:b9:9f:dd:0b:e5:67:63:1a:3e:c3:2d:9f: e2:15:52:3e:bf:09:da:de:1a:78:58:34:88:21:8c:69:cf:0b: 41:2c:9f:97:b4:d4:aa:31:c7:4b:73:48:ad:7b:a0:c5:ac:da: 60:f6:29:76:83:40:48:ce:06:6f:c7:d6:f7:c3:c9:46:f2:a2: be:c9:9e:e6:a8:34:86:72:14:05:7a:9c:4a:7a:66:52:5a:7b: 85:29:47:3b:a9:47:e2:17:28:ef:ca:55:d0:ed:b1:dc:6e:d3: 25:14:c0:ee:ab:fc:3a:52:c7:82:f9:87:73:cb:77:45:b5:67: 94:98:81:77:78:99:5c:ae:da:40:1f:66:89:8d:9d:d2:8b:69: dc:d7:68:b8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCn0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTUyMzFaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEYxNjg3QzY3OTQwNkQ1 RTI3QkM0MUQzREFCREJCMjU3NzQ0NjA0NDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVX7Dk300OaTYEv6A1u4tjDFDk1dzdcFBMUxZnLTw2kyXVLBMw J3fHaPsu/XC9JsCcYEikyUl0plIHzqtjjjd/L+QDv8H3AWIYPWinhpUXycBAqAHI QYJ9Siq5K6WEg0ccSjSJyiZNp3UTkRogjLRKDxetGUe+CpfXxLL1ZV1NsHbjUlbY Cb4ETXw4lzhp7Wn32Uop40PEJUdMkTJs6cfY+MRQeVLAhkXDrhnzds3kfOIVromP 0vLZDEnpCaDNyaaEvytYJrnlErAYEIvBq+chLW643Pq5uDCw2YPWuvwO5Qn/lcdu H8TgeS+AQrbZ1zfKPA4P7iX7fmufgk/z62WdAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU8Wh8Z5QG1eJ7xB09q9uyV3RGBEkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzhXaDhaNVFHMWVKN3hCMDlxOXV5VjNSR0JFay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADcnx8wDQYJKoZIhvcNAQELBQADggEBAJmlROxDS/3qA2wwOZlCzc19e4eQ FUahj5J8kfVSkvLl30Z5FlJId1TVoL7bi5DcmFueYcg9RVPjWjOd6bGg68zPOwRh jOjWJC5sCAL4z1Choqx5KDqq0G0MFklk3ZlCrPXvAR/Zki7SoZYDZ4eVzapRabmf 3QvlZ2MaPsMtn+IVUj6/CdreGnhYNIghjGnPC0Esn5e01Koxx0tzSK17oMWs2mD2 KXaDQEjOBm/H1vfDyUbyor7JnuaoNIZyFAV6nEp6ZlJae4UpRzupR+IXKO/KVdDt sdxu0yUUwO6r/DpSx4L5h3PLd0W1Z5SYgXd4mVyu2kAfZomNndKLadzXaLg= -----END CERTIFICATE-----Generated at Sun Feb 16 22:04:24 2025 by rpki-client