$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/96U7zsAex-QDK33j5uo0XBq4NXM.roa File: 96U7zsAex-QDK33j5uo0XBq4NXM.roa (raw, json) Hash identifier: Avw0XGwVg794+Pjucsxzf0uvaiTyIdmNtB3+adewdIc= Subject key identifier: F7:A5:3B:CE:C0:1E:C7:E4:03:2B:7D:E3:E6:EA:34:5C:1A:B8:35:73 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0AD0 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/96U7zsAex-QDK33j5uo0XBq4NXM.roa Signing time: Tue 31 Dec 2024 01:28:52 +0000 ROA not before: Tue 31 Dec 2024 01:28:52 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 9605 IP address blocks: 49.109.216.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2768 (0xad0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Dec 31 01:28:52 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=F7A53BCEC01EC7E4032B7DE3E6EA345C1AB83573 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c3:65:c1:34:66:d1:ea:96:4f:17:24:56:70: 45:59:35:b1:d5:d8:0d:1f:66:f3:12:9b:e7:03:fb: 53:4b:fe:33:da:fa:82:8b:e6:7a:cb:19:08:5f:4e: 99:f0:fa:f1:a8:de:16:62:41:02:09:b5:4b:99:0a: 69:10:8e:da:8e:85:9a:7c:2d:05:88:be:a6:78:dc: 78:e7:ad:cd:13:7f:28:c3:fb:41:93:da:46:54:d2: 9b:55:df:a4:57:2d:9e:4c:66:f5:d7:2f:9c:b4:d4: 8f:75:d6:49:72:c3:5b:38:89:05:be:c5:77:1d:f6: be:d4:f5:2d:e0:0f:69:48:35:50:dc:51:60:26:15: b6:49:bb:cd:ec:44:2b:cf:b4:72:00:f4:fa:2c:c4: bb:cd:8c:0c:26:5c:7f:73:90:32:df:e2:11:c7:e0: a8:94:5b:86:27:e0:82:20:fb:46:3f:a8:79:bc:5a: 85:4c:94:db:bb:d2:c3:a4:ad:09:46:b4:1c:2f:50: b9:7d:3c:7e:1c:12:ad:93:34:ba:3d:34:43:ee:68: b6:0f:5c:ea:f5:56:f2:94:3f:9e:bf:13:3a:14:7a: 31:b5:af:35:b7:f3:2a:f2:49:22:fd:ae:d9:0d:00: 22:66:a2:b7:b3:af:d4:a8:ad:59:49:f5:81:98:56: 8f:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:A5:3B:CE:C0:1E:C7:E4:03:2B:7D:E3:E6:EA:34:5C:1A:B8:35:73 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/96U7zsAex-QDK33j5uo0XBq4NXM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.109.216.0/22 Signature Algorithm: sha256WithRSAEncryption c9:a3:f3:6a:56:5d:9e:9f:00:ee:3b:7a:06:f1:71:d8:2a:44: 72:17:f8:78:4f:04:e2:7a:fc:5a:af:b1:54:58:d2:d1:49:44: 18:df:62:90:ab:7f:ba:cb:51:46:61:16:c5:52:df:13:be:9b: a3:fc:9b:2a:c1:02:7b:8e:34:e0:b6:d6:71:4a:c0:dc:20:14: 7f:0c:06:4f:cf:a6:9d:58:1a:61:cc:11:f0:51:19:b0:4b:41: 1c:0f:b8:cc:a3:6d:3e:05:ab:eb:f0:47:90:02:59:e1:d8:14: 5b:8c:47:93:cb:8a:07:11:e1:b4:cf:26:bf:04:14:bf:25:98: a3:e3:e9:99:9f:cb:79:33:10:49:ad:36:ac:72:11:6f:75:47: b4:82:6a:21:40:2a:eb:12:1e:31:bd:17:b9:d1:9a:18:92:16: 8e:5a:6d:5c:20:21:ca:8f:e0:69:67:74:bf:ac:b5:f8:b1:c3: b1:5b:75:65:c8:46:4c:af:00:ef:67:38:8c:c3:15:51:50:b3: 87:ff:f1:0c:88:77:82:2c:ad:39:23:8e:41:48:80:66:ae:7f: 1e:5a:4b:c2:b1:f7:4a:bb:34:e4:a2:bf:9c:6a:48:8c:29:b2: be:d7:10:be:2e:39:8c:ff:12:d4:8c:33:1e:79:62:de:93:fe: 5f:47:df:53 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCtAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDEyMzEw MTI4NTJaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEY3QTUzQkNFQzAxRUM3 RTQwMzJCN0RFM0U2RUEzNDVDMUFCODM1NzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3w2XBNGbR6pZPFyRWcEVZNbHV2A0fZvMSm+cD+1NL/jPa+oKL 5nrLGQhfTpnw+vGo3hZiQQIJtUuZCmkQjtqOhZp8LQWIvqZ43Hjnrc0TfyjD+0GT 2kZU0ptV36RXLZ5MZvXXL5y01I911klyw1s4iQW+xXcd9r7U9S3gD2lINVDcUWAm FbZJu83sRCvPtHIA9PosxLvNjAwmXH9zkDLf4hHH4KiUW4Yn4IIg+0Y/qHm8WoVM lNu70sOkrQlGtBwvULl9PH4cEq2TNLo9NEPuaLYPXOr1VvKUP56/EzoUejG1rzW3 8yrySSL9rtkNACJmorezr9SorVlJ9YGYVo8NAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU96U7zsAex+QDK33j5uo0XBq4NXMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5Lzk2VTd6c0FleC1RREszM2o1dW8wWEJxNE5YTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxbdgwDQYJKoZIhvcNAQELBQADggEBAMmj82pWXZ6fAO47egbxcdgqRHIX +HhPBOJ6/FqvsVRY0tFJRBjfYpCrf7rLUUZhFsVS3xO+m6P8myrBAnuONOC21nFK wNwgFH8MBk/Ppp1YGmHMEfBRGbBLQRwPuMyjbT4Fq+vwR5ACWeHYFFuMR5PLigcR 4bTPJr8EFL8lmKPj6Zmfy3kzEEmtNqxyEW91R7SCaiFAKusSHjG9F7nRmhiSFo5a bVwgIcqP4GlndL+stfixw7FbdWXIRkyvAO9nOIzDFVFQs4f/8QyId4IsrTkjjkFI gGaufx5aS8Kx90q7NOSiv5xqSIwpsr7XEL4uOYz/EtSMMx55Yt6T/l9H31M= -----END CERTIFICATE-----Generated at Wed Feb 19 22:43:19 2025 by rpki-client