$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/BdDq2xrtxufvKrhGFDf9pSrjFFU.roa File: BdDq2xrtxufvKrhGFDf9pSrjFFU.roa (raw, json) Hash identifier: YAIgA+8J3FnBYANLh28tsiA8rmajFHuCY6ANQT+S0I4= Subject key identifier: 05:D0:EA:DB:1A:ED:C6:E7:EF:2A:B8:46:14:37:FD:A5:2A:E3:14:55 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0AE4 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BdDq2xrtxufvKrhGFDf9pSrjFFU.roa Signing time: Fri 31 Jan 2025 01:28:28 +0000 ROA not before: Fri 31 Jan 2025 01:28:28 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.28.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2788 (0xae4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:28:28 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=05D0EADB1AEDC6E7EF2AB8461437FDA52AE31455 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c6:04:ea:1c:15:98:de:94:02:15:ef:a1:aa: 7f:08:a3:eb:eb:06:61:22:b7:5e:40:73:2f:3e:39: 50:39:b7:76:5d:3b:fa:e3:7b:3d:b2:0f:9f:af:6f: 18:97:85:fd:92:11:53:3a:18:4d:9a:97:46:88:2d: 5a:4e:d4:1c:af:f1:3f:a0:f6:80:f8:99:fe:3a:a1: c1:29:e4:30:9e:6a:fa:20:c0:d5:4f:1a:c7:64:b3: fc:0d:d1:34:f0:7c:79:38:38:f5:c7:e7:49:97:cc: 5a:2d:3d:66:f7:7b:fe:22:d4:37:18:2e:04:7f:9e: 80:c0:ff:38:e8:4d:d8:d7:38:06:62:d6:60:f6:22: 36:5c:f2:5f:e6:72:16:17:94:de:35:f2:0c:4d:6c: 18:1c:f8:47:33:28:38:47:13:de:b0:d1:83:31:e4: 15:02:d8:f3:37:18:9a:6d:73:9e:ed:20:c3:98:06: ee:b7:86:f4:30:84:36:9f:59:63:43:a5:34:f5:0a: a1:73:8c:a0:15:ea:b3:dd:0c:ce:1a:77:b6:99:ab: 0e:02:2f:44:e2:11:d2:54:3d:2c:48:aa:24:22:9e: 14:6e:cb:c1:09:bf:07:fd:44:01:e2:d2:cd:95:41: 34:7f:1a:a1:91:d2:b9:f6:8d:af:6f:51:a5:3b:fe: d9:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:D0:EA:DB:1A:ED:C6:E7:EF:2A:B8:46:14:37:FD:A5:2A:E3:14:55 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BdDq2xrtxufvKrhGFDf9pSrjFFU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.28.0/23 Signature Algorithm: sha256WithRSAEncryption 63:8a:03:5a:f4:f4:d9:46:39:eb:80:b7:f5:09:87:68:0e:49: c2:9d:65:72:67:81:21:ae:69:18:40:60:9a:83:70:7b:55:09: 9d:f7:c3:eb:41:41:de:9b:6e:3b:4c:63:dc:2b:63:d1:b9:ea: 85:74:0b:66:4f:22:29:04:55:10:0f:e1:fd:fa:d6:c3:c1:ea: ce:3b:ec:1f:22:6c:7d:bf:d2:2b:f5:df:2a:fc:2c:d5:e1:b1: f0:f3:da:93:e7:0e:66:ea:ae:5b:7d:fc:80:73:95:97:9d:6c: 0d:80:e9:17:dc:7c:18:c5:47:1d:28:d6:eb:76:f1:b4:47:db: 3e:cd:d6:8d:51:a4:b3:2c:bc:11:54:dd:78:cc:4d:55:94:37: 62:f8:0d:bb:c7:81:67:f7:ac:4d:d4:b5:7c:74:30:5c:36:4f: 93:cd:79:23:5a:3c:28:a0:5f:bf:fc:f8:36:8e:be:6a:50:85: 9c:6e:8e:8a:49:e4:55:b6:4c:ce:b9:cf:c8:d5:8c:48:f4:6f: 23:6f:9b:8a:f1:a1:e3:a5:87:5e:0a:8f:56:8b:bf:6a:48:e8: 35:f8:f4:f6:5f:3f:1f:13:7d:07:64:8a:11:fd:13:ad:41:1a: e0:cf:9c:6a:77:e9:be:bb:64:08:a7:80:17:54:9c:05:35:2c: 33:6c:f8:d7 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCuQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTI4MjhaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDA1RDBFQURCMUFFREM2 RTdFRjJBQjg0NjE0MzdGREE1MkFFMzE0NTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPxgTqHBWY3pQCFe+hqn8Io+vrBmEit15Acy8+OVA5t3ZdO/rj ez2yD5+vbxiXhf2SEVM6GE2al0aILVpO1Byv8T+g9oD4mf46ocEp5DCeavogwNVP Gsdks/wN0TTwfHk4OPXH50mXzFotPWb3e/4i1DcYLgR/noDA/zjoTdjXOAZi1mD2 IjZc8l/mchYXlN418gxNbBgc+EczKDhHE96w0YMx5BUC2PM3GJptc57tIMOYBu63 hvQwhDafWWNDpTT1CqFzjKAV6rPdDM4ad7aZqw4CL0TiEdJUPSxIqiQinhRuy8EJ vwf9RAHi0s2VQTR/GqGR0rn2ja9vUaU7/tlrAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUBdDq2xrtxufvKrhGFDf9pSrjFFUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0JkRHEyeHJ0eHVmdktyaEdGRGY5cFNyakZGVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYhwwDQYJKoZIhvcNAQELBQADggEBAGOKA1r09NlGOeuAt/UJh2gOScKd ZXJngSGuaRhAYJqDcHtVCZ33w+tBQd6bbjtMY9wrY9G56oV0C2ZPIikEVRAP4f36 1sPB6s477B8ibH2/0iv13yr8LNXhsfDz2pPnDmbqrlt9/IBzlZedbA2A6RfcfBjF Rx0o1ut28bRH2z7N1o1RpLMsvBFU3XjMTVWUN2L4DbvHgWf3rE3UtXx0MFw2T5PN eSNaPCigX7/8+DaOvmpQhZxujopJ5FW2TM65z8jVjEj0byNvm4rxoeOlh14Kj1aL v2pI6DX49PZfPx8TfQdkihH9E61BGuDPnGp36b67ZAingBdUnAU1LDNs+Nc= -----END CERTIFICATE-----Generated at Wed Feb 19 22:34:13 2025 by rpki-client