$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/BcvTyKXv4rTz81nth6GHaFSu4sA.roa File: BcvTyKXv4rTz81nth6GHaFSu4sA.roa (raw, json) Hash identifier: Y39sQkpexPJy3jCjOaM2dBF4tRsJ4pxFgtZEh7J0APM= Subject key identifier: 05:CB:D3:C8:A5:EF:E2:B4:F3:F3:59:ED:87:A1:87:68:54:AE:E2:C0 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B26 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BcvTyKXv4rTz81nth6GHaFSu4sA.roa Signing time: Fri 31 Jan 2025 01:38:01 +0000 ROA not before: Fri 31 Jan 2025 01:38:01 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2854 (0xb26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:38:01 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=05CBD3C8A5EFE2B4F3F359ED87A1876854AEE2C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a4:78:b0:4c:b3:b5:16:cf:b9:18:70:76:09: 01:84:a7:60:ae:e1:2e:c2:a4:72:02:2b:33:d7:17: 0d:2a:56:e3:80:1e:56:0b:fb:36:2f:46:dc:86:cb: c9:5d:25:3c:7e:60:51:11:1a:ff:c2:29:94:83:17: 27:74:da:9a:94:e5:fa:dc:be:de:fe:06:7a:fc:34: 1f:a0:74:0d:9e:61:01:d1:b5:a2:37:fc:d0:ec:a1: cc:5d:b5:34:c8:59:f2:a0:07:12:41:56:b8:61:a7: e2:94:55:df:50:d6:49:20:8d:79:14:29:19:7b:0f: af:00:73:55:ab:af:de:dd:68:28:13:4a:78:2b:bd: 60:fc:3e:2c:c4:97:11:b8:75:42:e3:fc:d9:01:2d: a2:c3:60:b2:e2:84:8f:d6:82:56:ab:9f:5c:d7:53: d9:84:30:d9:e3:89:31:6a:59:11:a3:82:b7:38:01: e9:4b:e8:15:e5:18:7c:70:1a:63:55:42:01:73:e3: d9:5f:9f:8e:58:e7:0c:b2:33:28:39:54:de:27:dd: cd:2e:40:1c:34:57:25:f2:62:80:49:db:82:9d:f2: ec:3a:61:72:d8:e1:29:e3:43:bb:1a:e3:a4:98:a4: 2a:6c:94:84:66:0f:ad:a5:41:d4:c0:20:65:f7:82: a6:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:CB:D3:C8:A5:EF:E2:B4:F3:F3:59:ED:87:A1:87:68:54:AE:E2:C0 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BcvTyKXv4rTz81nth6GHaFSu4sA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.24.0/22 Signature Algorithm: sha256WithRSAEncryption 83:d4:1d:eb:bd:fa:76:6e:9f:9b:62:0c:21:9d:ab:1e:aa:6c: e1:5f:7a:68:78:60:36:0e:8b:c7:77:11:b4:00:36:55:89:e5: d4:16:1a:ea:12:d8:7f:ed:c7:93:bf:f6:b8:cc:ce:ca:ff:c9: cd:d9:b2:e5:b1:1d:11:ce:9d:4b:92:a4:5e:48:12:70:ad:7d: a1:42:98:1e:b8:94:28:cb:94:d0:4f:49:2f:c0:5e:cd:a7:c9: e0:c6:ae:a3:55:54:e6:89:45:fd:98:05:af:d2:66:20:89:b5: 87:3d:6f:7f:07:09:64:7b:22:f5:6d:3e:5c:d3:4b:d2:78:c3: 7d:a1:4d:44:08:a9:2a:69:16:66:ec:ee:f3:50:1d:c2:97:36: 7e:d4:b4:97:4c:25:32:2f:d7:28:32:1c:5c:ee:2d:9c:d6:d1: 45:b4:6c:62:fd:b5:c1:5a:ea:4d:90:30:28:ac:d7:03:d2:69: 32:0a:ef:08:ef:f1:09:e7:d1:7c:fc:9b:d4:7a:24:07:d4:85: 7e:f7:aa:72:5d:57:44:ff:6a:4f:cf:a9:92:f0:45:ea:87:e8: 55:98:8e:ec:28:2b:14:0e:c6:a5:35:3f:24:7c:a4:1f:4f:85: 6b:41:f7:19:18:fb:69:af:8d:da:4c:db:4b:86:43:d6:18:7b: 2e:5a:52:b8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCyYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTM4MDFaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDA1Q0JEM0M4QTVFRkUy QjRGM0YzNTlFRDg3QTE4NzY4NTRBRUUyQzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzpHiwTLO1Fs+5GHB2CQGEp2Cu4S7CpHICKzPXFw0qVuOAHlYL +zYvRtyGy8ldJTx+YFERGv/CKZSDFyd02pqU5frcvt7+Bnr8NB+gdA2eYQHRtaI3 /NDsocxdtTTIWfKgBxJBVrhhp+KUVd9Q1kkgjXkUKRl7D68Ac1Wrr97daCgTSngr vWD8PizElxG4dULj/NkBLaLDYLLihI/Wglarn1zXU9mEMNnjiTFqWRGjgrc4AelL 6BXlGHxwGmNVQgFz49lfn45Y5wyyMyg5VN4n3c0uQBw0VyXyYoBJ24Kd8uw6YXLY 4SnjQ7sa46SYpCpslIRmD62lQdTAIGX3gqbhAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUBcvTyKXv4rTz81nth6GHaFSu4sAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0JjdlR5S1h2NHJUejgxbnRoNkdIYUZTdTRzQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBSxgwDQYJKoZIhvcNAQELBQADggEBAIPUHeu9+nZun5tiDCGdqx6qbOFf emh4YDYOi8d3EbQANlWJ5dQWGuoS2H/tx5O/9rjMzsr/yc3ZsuWxHRHOnUuSpF5I EnCtfaFCmB64lCjLlNBPSS/AXs2nyeDGrqNVVOaJRf2YBa/SZiCJtYc9b38HCWR7 IvVtPlzTS9J4w32hTUQIqSppFmbs7vNQHcKXNn7UtJdMJTIv1ygyHFzuLZzW0UW0 bGL9tcFa6k2QMCis1wPSaTIK7wjv8Qnn0Xz8m9R6JAfUhX73qnJdV0T/ak/PqZLw ReqH6FWYjuwoKxQOxqU1PyR8pB9PhWtB9xkY+2mvjdpM20uGQ9YYey5aUrg= -----END CERTIFICATE-----Generated at Wed Feb 19 22:41:55 2025 by rpki-client