$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/BSAZAt0X3PvpYxc9hTvUzWJfGiw.roa File: BSAZAt0X3PvpYxc9hTvUzWJfGiw.roa (raw, json) Hash identifier: TAn4DjTKo5D0CCVB6V6AkR2LlnuZwA4XOjCJ09dS/I0= Subject key identifier: 05:20:19:02:DD:17:DC:FB:E9:63:17:3D:85:3B:D4:CD:62:5F:1A:2C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0AE7 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BSAZAt0X3PvpYxc9hTvUzWJfGiw.roa Signing time: Fri 31 Jan 2025 01:28:29 +0000 ROA not before: Fri 31 Jan 2025 01:28:29 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.96.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2791 (0xae7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:28:29 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=05201902DD17DCFBE963173D853BD4CD625F1A2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:63:62:6f:f2:02:2c:12:d6:82:ad:a7:63:0c: d2:73:ca:54:93:6a:77:aa:18:f5:68:b5:f6:8e:5c: f1:b6:98:2e:bd:09:57:80:47:24:2a:9d:3a:e0:50: 2b:2f:8f:51:79:68:e3:e8:ea:7e:65:2c:42:50:8e: b9:46:31:a9:cb:6b:94:87:6a:a3:98:3d:1c:5f:7d: 84:22:38:7d:c6:f4:88:01:d1:99:86:49:63:a6:44: 4c:eb:43:a0:c7:0c:ab:21:c4:b8:33:83:ec:42:87: 53:87:46:77:bd:11:9c:a9:b7:25:c9:fc:41:e6:ea: 3b:12:44:00:5c:b0:ec:09:6d:ab:d9:51:18:8f:19: f6:06:54:d8:d7:04:06:c2:5d:01:02:e2:e7:76:6a: 99:22:59:54:ca:5a:4a:39:17:0d:8c:f8:72:73:0c: e9:66:71:ae:be:6d:b7:87:1e:b7:65:08:fc:16:5c: 76:0e:2d:fb:db:3b:3d:63:21:62:c5:8f:3f:fe:65: a1:12:24:6c:42:64:94:08:26:9c:e6:16:7a:65:54: 43:8f:61:b3:b8:2d:e2:43:00:b8:b5:bb:f8:f4:1f: a2:e2:15:24:ba:21:bc:6b:12:7e:3e:37:16:b7:70: 0b:0b:3c:29:1b:b6:a5:bf:2c:73:45:7b:db:0c:d2: a0:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:20:19:02:DD:17:DC:FB:E9:63:17:3D:85:3B:D4:CD:62:5F:1A:2C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BSAZAt0X3PvpYxc9hTvUzWJfGiw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.25.0/24 Signature Algorithm: sha256WithRSAEncryption 67:d2:42:9d:fa:18:6e:99:09:61:a5:4a:4c:54:3e:dc:fa:f8: fd:c2:1f:46:d0:ef:80:5c:c0:e2:79:20:3a:97:54:53:9f:23: 5f:29:9e:38:5e:99:9b:89:7b:20:d2:a5:6e:83:ad:88:2f:e5: 65:41:85:ec:96:a7:4d:dd:a0:db:c3:79:3c:bd:60:17:9b:c9: 56:1e:c0:40:fc:38:d3:10:0d:a6:cb:34:9d:b2:09:fe:9a:5a: 9b:b2:fa:13:79:8b:84:dc:24:d4:52:95:b2:d9:68:c0:51:d8: 71:a4:3a:ff:fd:cc:ed:3b:f7:01:86:5d:74:5e:39:f8:36:19: 40:ee:e5:ab:5c:31:c7:56:6c:e5:62:93:c9:c7:a7:db:cb:4f: 4d:f4:58:9c:de:6b:5d:c7:39:c3:34:34:6b:88:86:2d:62:8b: 57:b3:2c:11:b3:61:be:b9:9e:e1:9f:65:d5:d8:57:68:ea:0d: 8f:ce:df:20:f7:0d:c5:82:54:23:54:ee:30:62:57:8d:c8:88: 4e:04:c2:cc:45:55:5f:a7:92:3c:20:e8:65:36:af:c4:6b:fd: 59:98:56:c8:9b:ca:cf:c2:80:b6:c1:d9:78:6b:87:65:21:a8: 1f:0d:43:7f:7b:dd:8d:47:88:93:1c:f7:14:eb:99:96:fa:da: ec:5b:19:a3 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCucwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTI4MjlaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDA1MjAxOTAyREQxN0RD RkJFOTYzMTczRDg1M0JENENENjI1RjFBMkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOY2Jv8gIsEtaCradjDNJzylSTaneqGPVotfaOXPG2mC69CVeA RyQqnTrgUCsvj1F5aOPo6n5lLEJQjrlGManLa5SHaqOYPRxffYQiOH3G9IgB0ZmG SWOmREzrQ6DHDKshxLgzg+xCh1OHRne9EZyptyXJ/EHm6jsSRABcsOwJbavZURiP GfYGVNjXBAbCXQEC4ud2apkiWVTKWko5Fw2M+HJzDOlmca6+bbeHHrdlCPwWXHYO LfvbOz1jIWLFjz/+ZaESJGxCZJQIJpzmFnplVEOPYbO4LeJDALi1u/j0H6LiFSS6 IbxrEn4+Nxa3cAsLPCkbtqW/LHNFe9sM0qB3AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUBSAZAt0X3PvpYxc9hTvUzWJfGiwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0JTQVpBdDBYM1B2cFl4YzloVHZVeldKZkdpdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxYBkwDQYJKoZIhvcNAQELBQADggEBAGfSQp36GG6ZCWGlSkxUPtz6+P3C H0bQ74BcwOJ5IDqXVFOfI18pnjhemZuJeyDSpW6DrYgv5WVBheyWp03doNvDeTy9 YBebyVYewED8ONMQDabLNJ2yCf6aWpuy+hN5i4TcJNRSlbLZaMBR2HGkOv/9zO07 9wGGXXReOfg2GUDu5atcMcdWbOVik8nHp9vLT030WJzea13HOcM0NGuIhi1ii1ez LBGzYb65nuGfZdXYV2jqDY/O3yD3DcWCVCNU7jBiV43IiE4EwsxFVV+nkjwg6GU2 r8Rr/VmYVsibys/CgLbB2Xhrh2UhqB8NQ3973Y1HiJMc9xTrmZb62uxbGaM= -----END CERTIFICATE-----Generated at Wed Feb 19 22:30:02 2025 by rpki-client