$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/BOE6H_f5oGolml6wYwrC0QnUGdg.roa File: BOE6H_f5oGolml6wYwrC0QnUGdg.roa (raw, json) Hash identifier: Z4XZcUl3iBcNw8jQxiJSmxEne3s+Fn4ipfMkGSpwi7E= Subject key identifier: 04:E1:3A:1F:F7:F9:A0:6A:25:9A:5E:B0:63:0A:C2:D1:09:D4:19:D8 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A52 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BOE6H_f5oGolml6wYwrC0QnUGdg.roa Signing time: Sun 30 Jun 2024 01:48:31 +0000 ROA not before: Sun 30 Jun 2024 01:48:31 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.79.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2642 (0xa52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:48:31 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=04E13A1FF7F9A06A259A5EB0630AC2D109D419D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1a:c1:41:ae:22:7d:4d:5c:a4:14:7a:c2:23: 3e:3f:f3:ec:22:d3:f2:c2:e2:ee:e4:7e:d6:8f:03: c5:7c:88:5b:2c:a1:5d:ff:aa:59:09:b8:a0:2e:da: c8:66:af:b1:37:c4:a3:09:9f:9a:f6:54:4f:2b:fe: b7:01:c8:f5:e3:a1:1a:96:3d:e3:09:71:81:98:1e: ad:36:90:82:58:9d:cc:0e:e3:c3:30:58:94:c6:e9: de:43:62:a8:88:8b:1f:2c:63:c9:52:d0:db:35:71: 87:24:52:cb:32:2c:71:38:de:47:a9:24:a0:58:f3: 52:b9:05:8c:83:11:37:b8:ba:3e:79:60:a7:6a:9a: c1:94:98:49:7d:d3:02:a9:21:f2:a3:93:13:4c:1e: de:9e:72:76:55:71:27:61:6d:d6:a7:71:ab:cc:e9: c7:fe:66:85:b1:03:2a:49:1b:3e:3a:46:08:56:a5: bc:1d:72:a0:cd:f7:e7:2e:65:99:61:11:b5:69:c7: fa:a9:a7:0a:3a:fc:69:9b:64:dd:31:5b:27:c0:28: d0:1c:99:40:84:9b:c8:64:7f:b0:54:d8:2b:e1:fd: 07:42:a9:47:6e:a3:7b:2e:d7:71:08:83:d5:59:4e: c2:75:5e:bc:32:f6:2e:cf:89:a8:a3:6b:45:f4:39: 85:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:E1:3A:1F:F7:F9:A0:6A:25:9A:5E:B0:63:0A:C2:D1:09:D4:19:D8 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BOE6H_f5oGolml6wYwrC0QnUGdg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.128.0/20 Signature Algorithm: sha256WithRSAEncryption d5:3e:2b:ca:5d:d8:d1:64:44:7b:3e:e2:bd:a2:6a:3c:89:95: 1a:08:fd:7b:27:9d:fc:e7:05:7c:2d:5e:3b:3c:7a:fc:9c:65: 14:49:00:ea:b2:61:7f:14:66:82:bc:f8:0e:84:73:2e:89:e0: eb:f0:1f:f3:ab:b1:eb:65:e9:97:8e:8e:7f:54:88:72:91:7a: 2f:1f:6a:2e:3b:7a:0b:45:23:ce:85:68:d3:f4:32:86:91:ca: b7:a2:31:4a:c8:45:1f:bc:3d:e0:06:99:5a:d7:5e:e7:f6:d1: 50:09:ab:56:51:6f:26:a6:ec:25:70:d7:77:d9:f9:a7:06:83: c9:e6:fe:2c:6b:f1:ab:17:27:40:17:52:fe:39:af:c8:cd:5f: ff:8d:82:fc:de:26:24:b4:ec:b0:18:bd:6e:8a:78:86:81:d3: 3f:78:0e:d9:8f:52:e7:23:09:ee:77:41:93:64:ac:ca:19:dc: ee:0e:da:bb:27:86:47:74:cb:f3:7f:7c:4d:30:5d:b5:9e:de: ca:85:72:96:7d:3a:0f:e2:93:78:9e:bc:1e:f1:05:53:81:a0: fd:d0:fb:30:7b:2d:73:b8:04:56:8b:e5:32:3e:06:e0:b6:bf: e0:ac:7e:7b:56:8c:e7:34:f2:7c:1b:4a:2f:62:5c:8f:1a:c9: 30:de:e8:96 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICClIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQ4MzFaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDA0RTEzQTFGRjdGOUEw NkEyNTlBNUVCMDYzMEFDMkQxMDlENDE5RDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4GsFBriJ9TVykFHrCIz4/8+wi0/LC4u7kftaPA8V8iFssoV3/ qlkJuKAu2shmr7E3xKMJn5r2VE8r/rcByPXjoRqWPeMJcYGYHq02kIJYncwO48Mw WJTG6d5DYqiIix8sY8lS0Ns1cYckUssyLHE43kepJKBY81K5BYyDETe4uj55YKdq msGUmEl90wKpIfKjkxNMHt6ecnZVcSdhbdancavM6cf+ZoWxAypJGz46RghWpbwd cqDN9+cuZZlhEbVpx/qppwo6/GmbZN0xWyfAKNAcmUCEm8hkf7BU2Cvh/QdCqUdu o3su13EIg9VZTsJ1Xrwy9i7Piaija0X0OYUZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUBOE6H/f5oGolml6wYwrC0QnUGdgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0JPRTZIX2Y1b0dvbG1sNndZd3JDMFFuVUdkZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQBT4AwDQYJKoZIhvcNAQELBQADggEBANU+K8pd2NFkRHs+4r2iajyJlRoI /XsnnfznBXwtXjs8evycZRRJAOqyYX8UZoK8+A6Ecy6J4OvwH/Orsetl6ZeOjn9U iHKRei8fai47egtFI86FaNP0MoaRyreiMUrIRR+8PeAGmVrXXuf20VAJq1ZRbyam 7CVw13fZ+acGg8nm/ixr8asXJ0AXUv45r8jNX/+NgvzeJiS07LAYvW6KeIaB0z94 DtmPUucjCe53QZNkrMoZ3O4O2rsnhkd0y/N/fE0wXbWe3sqFcpZ9Og/ik3ievB7x BVOBoP3Q+zB7LXO4BFaL5TI+BuC2v+CsfntWjOc08nwbSi9iXI8ayTDe6JY= -----END CERTIFICATE-----Generated at Sun Feb 16 22:33:02 2025 by rpki-client