$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ByqVKffX7xN4wrGLqG4mBKo3GCU.roa File: ByqVKffX7xN4wrGLqG4mBKo3GCU.roa (raw, json) Hash identifier: E9TjFrhYbVLnOzwj7u3rLstBO49KnoBJBuAtNR93EvI= Subject key identifier: 07:2A:95:29:F7:D7:EF:13:78:C2:B1:8B:A8:6E:26:04:AA:37:18:25 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 07E3 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ByqVKffX7xN4wrGLqG4mBKo3GCU.roa Signing time: Tue 30 Apr 2024 02:10:31 +0000 ROA not before: Tue 30 Apr 2024 02:10:31 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 220.210.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2019 (0x7e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:10:31 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=072A9529F7D7EF1378C2B18BA86E2604AA371825 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:1c:84:64:2e:90:86:76:9f:da:42:6a:4e:1f: 6c:51:2c:b6:42:8d:fb:62:72:1d:dc:9e:58:e8:57: 5e:aa:e2:f9:6e:7c:3e:d5:bb:b1:b8:a2:b5:a0:67: 44:a6:98:f5:1f:f3:76:7e:60:10:2a:c2:e7:03:f5: 78:bc:52:6f:de:09:b9:3c:6b:19:39:22:61:37:89: 77:4d:3f:b1:7b:a7:76:a4:1b:78:af:ec:a6:8e:28: 4e:9e:5f:70:15:85:9b:99:92:1c:65:e4:15:bd:30: 8a:50:ef:2d:0e:4c:7b:3d:66:a7:fb:d6:25:fd:f3: 7d:2b:50:72:b2:dc:33:a5:dc:12:f2:92:cf:51:5c: 1a:6e:d6:cb:cf:f4:13:c3:d3:ef:80:7c:ba:9f:bd: f5:83:b9:d2:98:36:fa:e8:10:87:d2:1e:1d:ee:eb: bd:c1:3e:71:15:cf:a8:03:dc:ef:87:cd:ae:55:cb: cd:48:d4:ec:22:61:73:69:72:26:16:74:7e:56:6d: d3:ad:53:81:82:70:15:4f:82:a2:14:b8:0f:dd:11: 0c:3f:a5:7d:9a:27:d0:dd:06:33:4c:26:fb:21:f9: e8:de:9b:3f:1b:0b:e8:3b:df:e9:ea:eb:d9:21:c7: 67:77:0a:7c:8d:31:75:01:bf:a3:0c:fe:02:e1:05: dc:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:2A:95:29:F7:D7:EF:13:78:C2:B1:8B:A8:6E:26:04:AA:37:18:25 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ByqVKffX7xN4wrGLqG4mBKo3GCU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.88.0/21 Signature Algorithm: sha256WithRSAEncryption 23:f9:6b:ed:b9:ba:69:52:8b:4e:39:13:ea:e2:60:2b:b7:20: 59:d6:83:56:83:c3:45:b7:e4:b3:71:4a:67:eb:5b:bf:81:20: bc:3c:5a:c7:77:9b:41:ef:6d:98:d1:37:38:28:95:cc:61:ce: 71:59:29:88:91:13:74:b3:12:37:17:3a:6a:2f:ca:bc:30:7e: db:a4:67:2a:ce:6a:62:e1:b1:4d:63:40:5c:f1:70:30:67:aa: 32:1d:36:36:21:eb:bf:45:d7:3e:39:bc:69:99:7b:0c:5a:27: c6:0d:0f:a7:17:4f:d2:3d:1b:87:2c:cb:41:16:16:dd:f2:14: 65:c5:f4:9e:17:4c:15:81:6e:a6:71:06:73:dc:46:9f:df:5f: 81:f3:cf:f3:89:2c:e7:9f:9a:1c:75:b7:f0:25:03:d1:8e:d9: 2b:fa:28:ec:44:d5:d2:2e:ff:9e:10:4b:b5:cf:c4:bb:e8:4f: 63:07:80:fd:55:a9:d2:4c:3b:ad:1e:4f:41:ea:00:00:d9:99: 3d:fb:51:da:66:a5:15:17:e7:00:7d:ac:e1:ae:8c:2c:94:a2: 5e:b9:33:2c:4c:9f:11:68:41:7f:2f:81:19:f0:8d:f2:59:88: a2:24:a8:60:ec:09:84:e2:d9:ae:c5:fc:13:8f:e5:10:f1:58: 94:7f:e1:9c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB+MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjEwMzFaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDA3MkE5NTI5RjdEN0VG MTM3OEMyQjE4QkE4NkUyNjA0QUEzNzE4MjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeHIRkLpCGdp/aQmpOH2xRLLZCjftich3cnljoV16q4vlufD7V u7G4orWgZ0SmmPUf83Z+YBAqwucD9Xi8Um/eCbk8axk5ImE3iXdNP7F7p3akG3iv 7KaOKE6eX3AVhZuZkhxl5BW9MIpQ7y0OTHs9Zqf71iX9830rUHKy3DOl3BLyks9R XBpu1svP9BPD0++AfLqfvfWDudKYNvroEIfSHh3u673BPnEVz6gD3O+Hza5Vy81I 1OwiYXNpciYWdH5WbdOtU4GCcBVPgqIUuA/dEQw/pX2aJ9DdBjNMJvsh+ejemz8b C+g73+nq69khx2d3CnyNMXUBv6MM/gLhBdybAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUByqVKffX7xN4wrGLqG4mBKo3GCUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0J5cVZLZmZYN3hONHdyR0xxRzRtQktvM0dDVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPc0lgwDQYJKoZIhvcNAQELBQADggEBACP5a+25umlSi045E+riYCu3IFnW g1aDw0W35LNxSmfrW7+BILw8Wsd3m0HvbZjRNzgolcxhznFZKYiRE3SzEjcXOmov yrwwftukZyrOamLhsU1jQFzxcDBnqjIdNjYh679F1z45vGmZewxaJ8YND6cXT9I9 G4csy0EWFt3yFGXF9J4XTBWBbqZxBnPcRp/fX4Hzz/OJLOefmhx1t/AlA9GO2Sv6 KOxE1dIu/54QS7XPxLvoT2MHgP1VqdJMO60eT0HqAADZmT37UdpmpRUX5wB9rOGu jCyUol65MyxMnxFoQX8vgRnwjfJZiKIkqGDsCYTi2a7F/BOP5RDxWJR/4Zw= -----END CERTIFICATE-----Generated at Sun Feb 16 22:05:10 2025 by rpki-client