$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/BKo4eRka34xUPtSS02azB9yNx-s.roa File: BKo4eRka34xUPtSS02azB9yNx-s.roa (raw, json) Hash identifier: mdexIToiKAHzAVCi54mKF1MeSA1mIY+Fu3QyDUeDtVQ= Subject key identifier: 04:AA:38:79:19:1A:DF:8C:54:3E:D4:92:D3:66:B3:07:DC:8D:C7:EB Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0790 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BKo4eRka34xUPtSS02azB9yNx-s.roa Signing time: Tue 30 Apr 2024 02:04:46 +0000 ROA not before: Tue 30 Apr 2024 02:04:46 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 211.14.74.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1936 (0x790) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:04:46 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=04AA3879191ADF8C543ED492D366B307DC8DC7EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:63:00:b7:76:ad:3f:1e:f6:42:a3:70:fb:c1: e0:03:9a:2a:a3:66:a6:f5:2c:48:27:b4:5f:34:e4: ca:5f:36:e7:9f:50:b4:10:8d:66:40:1a:e4:38:e0: 6c:f6:a5:b0:cd:78:fe:e5:03:66:ea:4c:ce:cc:5c: cd:eb:96:fa:3e:58:85:8f:08:58:37:82:4b:8a:d5: 20:32:c8:c4:0e:b6:7f:ca:20:86:97:46:bd:5e:45: aa:93:cb:01:29:3f:59:0d:5b:ff:6d:50:fb:3c:02: 54:a8:38:59:74:30:f4:42:74:b2:3d:b0:6f:46:69: 9b:83:11:95:9b:9a:f0:a2:b4:b0:f3:42:c7:03:9e: 4d:50:07:ee:36:55:4e:4c:23:f0:bb:21:b7:cb:54: f7:7e:41:fb:c5:14:ec:bd:34:1d:67:6d:4e:fd:ce: b4:05:07:49:47:24:e1:5f:1f:4a:40:49:a4:0a:04: d4:25:56:30:b5:26:8b:d2:67:84:c5:b6:cb:d9:e6: be:8c:06:7c:90:e1:68:87:b1:0f:28:3d:6f:b2:5d: 8c:d1:df:67:84:d7:07:07:6a:18:b2:b7:06:1d:07: a0:32:03:8c:4e:69:d4:80:1d:8b:37:78:70:46:29: 6b:5d:57:c5:a5:d8:7a:7e:2d:73:8d:33:fe:ff:06: 09:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:AA:38:79:19:1A:DF:8C:54:3E:D4:92:D3:66:B3:07:DC:8D:C7:EB X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BKo4eRka34xUPtSS02azB9yNx-s.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.74.0/23 Signature Algorithm: sha256WithRSAEncryption 96:e8:d4:68:66:ed:6a:33:21:10:7e:3e:3f:ad:aa:a4:4e:33: 49:51:7f:d7:bc:2b:c8:88:a4:74:10:18:d6:c3:9e:ee:2f:4e: d4:24:85:03:db:9a:b3:c3:b6:5f:02:a1:0c:82:d8:e4:47:f7: e6:03:15:b1:63:28:cd:a1:27:84:41:e3:e1:a8:85:c6:3b:a4: d3:73:e9:77:b1:4e:9e:ae:6b:f6:92:06:6f:0d:8d:aa:a1:a2: e4:e3:12:19:27:be:69:c3:bb:1b:f2:a9:50:98:d1:e7:02:d8: f7:64:63:b9:8c:52:57:23:eb:3b:5e:ee:97:b5:a9:c7:b6:25: e0:f4:f3:8e:0a:12:5f:be:75:52:b9:e5:04:97:54:bb:c5:e4: a0:25:de:0d:39:0e:c2:9e:d5:82:8b:a8:47:06:ba:de:83:58: b8:ba:d6:be:f7:4b:2e:a3:d6:99:e8:d5:c4:ea:5c:9f:44:4e: 3c:5c:ba:01:0f:41:51:36:f4:4e:43:45:49:c9:bc:c0:30:6e: bb:67:e9:fe:0d:2a:48:93:2f:74:90:26:ca:c8:91:65:3e:f4: a6:e9:af:2c:78:6e:b7:9e:37:d0:f3:4b:e6:ba:11:70:4c:5c: c8:f7:c7:c2:94:c2:9b:be:1b:5f:2e:a9:fd:56:cd:16:ae:88: 1d:ef:0b:41 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB5AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjA0NDZaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDA0QUEzODc5MTkxQURG OEM1NDNFRDQ5MkQzNjZCMzA3REM4REM3RUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+YwC3dq0/HvZCo3D7weADmiqjZqb1LEgntF805MpfNuefULQQ jWZAGuQ44Gz2pbDNeP7lA2bqTM7MXM3rlvo+WIWPCFg3gkuK1SAyyMQOtn/KIIaX Rr1eRaqTywEpP1kNW/9tUPs8AlSoOFl0MPRCdLI9sG9GaZuDEZWbmvCitLDzQscD nk1QB+42VU5MI/C7IbfLVPd+QfvFFOy9NB1nbU79zrQFB0lHJOFfH0pASaQKBNQl VjC1JovSZ4TFtsvZ5r6MBnyQ4WiHsQ8oPW+yXYzR32eE1wcHahiytwYdB6AyA4xO adSAHYs3eHBGKWtdV8Wl2Hp+LXONM/7/BglNAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUBKo4eRka34xUPtSS02azB9yNx+swHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0JLbzRlUmthMzR4VVB0U1MwMmF6Qjl5Tngtcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHTDkowDQYJKoZIhvcNAQELBQADggEBAJbo1Ghm7WozIRB+Pj+tqqROM0lR f9e8K8iIpHQQGNbDnu4vTtQkhQPbmrPDtl8CoQyC2ORH9+YDFbFjKM2hJ4RB4+Go hcY7pNNz6XexTp6ua/aSBm8NjaqhouTjEhknvmnDuxvyqVCY0ecC2PdkY7mMUlcj 6zte7pe1qce2JeD0844KEl++dVK55QSXVLvF5KAl3g05DsKe1YKLqEcGut6DWLi6 1r73Sy6j1pno1cTqXJ9ETjxcugEPQVE29E5DRUnJvMAwbrtn6f4NKkiTL3SQJsrI kWU+9Kbpryx4breeN9DzS+a6EXBMXMj3x8KUwpu+G18uqf1WzRauiB3vC0E= -----END CERTIFICATE-----Generated at Sun Feb 16 22:16:45 2025 by rpki-client