$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/CEJi2I3pcbk4PhXNS5hXMv-CLXc.roa File: CEJi2I3pcbk4PhXNS5hXMv-CLXc.roa (raw, json) Hash identifier: VcnFuMyvfbQZW9sxQ8X7ce5vg2SfeDpkAaNRjPcYU88= Subject key identifier: 08:42:62:D8:8D:E9:71:B9:38:3E:15:CD:4B:98:57:32:FF:82:2D:77 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0803 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CEJi2I3pcbk4PhXNS5hXMv-CLXc.roa Signing time: Tue 30 Apr 2024 02:12:20 +0000 ROA not before: Tue 30 Apr 2024 02:12:20 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2051 (0x803) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:12:20 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=084262D88DE971B9383E15CD4B985732FF822D77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:de:c2:dd:6e:11:a8:da:48:26:85:1b:41:ea: 03:5c:f9:2a:e8:f9:37:29:eb:32:87:61:4e:d8:e8: 68:51:26:98:9f:18:52:49:d8:73:65:79:fd:3e:e9: 7d:b5:92:3b:6e:b4:67:7c:cd:9f:05:83:6a:07:7d: af:8f:88:9a:ae:31:94:be:ef:ca:37:7c:62:52:f4: 2e:0e:87:c8:a1:37:dc:20:11:e7:35:7a:fe:4b:d7: 8d:7a:9d:21:05:8b:ba:07:2f:2c:b5:e6:55:ef:9f: 9e:b0:e0:66:aa:44:6d:5d:0b:59:7e:b6:c2:b6:fc: 25:7a:8f:b3:39:64:ac:7f:c4:3a:43:eb:0d:80:04: 76:28:2b:3f:90:e9:2c:f3:9e:d7:ab:bf:85:1f:3f: 7d:73:4b:45:aa:20:f6:72:34:6a:82:3b:86:4b:10: 2d:a1:a7:89:39:76:dc:74:ee:a3:9a:0d:5e:41:58: 67:ef:2c:01:4a:b0:e3:aa:6b:76:1d:a1:d6:2b:62: a0:8e:2e:24:00:25:3b:1b:40:a2:21:56:e9:ca:06: e5:09:31:3f:7b:1c:15:2e:ba:cf:1b:ef:3f:31:27: f3:c2:57:d9:63:0c:a6:3d:ec:13:50:2b:28:ea:67: 9c:3f:00:3c:36:08:15:d7:3d:63:22:1a:39:b4:1f: 97:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:42:62:D8:8D:E9:71:B9:38:3E:15:CD:4B:98:57:32:FF:82:2D:77 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CEJi2I3pcbk4PhXNS5hXMv-CLXc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.52.0/22 Signature Algorithm: sha256WithRSAEncryption 19:c1:f5:d8:7f:b4:ab:21:b2:e1:cb:34:55:ad:94:4d:c1:9e: 54:49:94:56:2b:55:68:46:8a:74:f9:68:01:59:d8:3c:3e:33: db:32:c3:c5:fd:1f:72:c1:de:98:f6:95:f7:7a:8a:f1:d9:01: 43:30:cd:6d:8c:9d:3c:16:eb:d0:66:a6:96:5c:e0:f4:77:f9: 32:e8:a9:aa:7c:0a:6b:db:0a:c6:a0:ef:71:7d:7e:3b:10:04: 58:46:58:28:1d:ec:58:92:6f:07:0b:b8:b2:2c:48:e2:4a:e2: c4:e5:e0:a9:21:9c:dd:8e:00:69:d5:6b:c4:68:f9:99:3b:43: eb:20:8c:b6:69:93:db:b9:84:bf:ec:79:6e:96:59:db:a3:da: 77:49:e3:94:a8:f7:d0:56:bf:b5:69:9d:ea:52:99:26:2f:da: 95:6a:e5:76:bb:fd:7a:8a:ed:ef:43:41:06:c5:85:7a:3e:ce: 60:56:87:e5:3e:a4:37:eb:6c:0f:89:fd:33:e0:d2:47:9b:aa: 3f:97:b2:41:d7:a4:a8:24:5e:4b:56:90:62:7a:f1:ee:cc:4f: 82:8a:c9:01:e1:10:39:03:a6:6a:31:9a:46:73:bb:f9:74:cb: 63:0a:4e:c4:de:70:50:1d:79:35:40:e7:57:29:dd:60:83:9b: 49:10:ee:8e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCAMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjEyMjBaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDA4NDI2MkQ4OERFOTcx QjkzODNFMTVDRDRCOTg1NzMyRkY4MjJENzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQ3sLdbhGo2kgmhRtB6gNc+Sro+Tcp6zKHYU7Y6GhRJpifGFJJ 2HNlef0+6X21kjtutGd8zZ8Fg2oHfa+PiJquMZS+78o3fGJS9C4Oh8ihN9wgEec1 ev5L1416nSEFi7oHLyy15lXvn56w4GaqRG1dC1l+tsK2/CV6j7M5ZKx/xDpD6w2A BHYoKz+Q6Szznterv4UfP31zS0WqIPZyNGqCO4ZLEC2hp4k5dtx07qOaDV5BWGfv LAFKsOOqa3YdodYrYqCOLiQAJTsbQKIhVunKBuUJMT97HBUuus8b7z8xJ/PCV9lj DKY97BNQKyjqZ5w/ADw2CBXXPWMiGjm0H5dDAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUCEJi2I3pcbk4PhXNS5hXMv+CLXcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0NFSmkySTNwY2JrNFBoWE5TNWhYTXYtQ0xYYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYDQwDQYJKoZIhvcNAQELBQADggEBABnB9dh/tKshsuHLNFWtlE3BnlRJ lFYrVWhGinT5aAFZ2Dw+M9syw8X9H3LB3pj2lfd6ivHZAUMwzW2MnTwW69BmppZc 4PR3+TLoqap8CmvbCsag73F9fjsQBFhGWCgd7FiSbwcLuLIsSOJK4sTl4KkhnN2O AGnVa8Ro+Zk7Q+sgjLZpk9u5hL/seW6WWduj2ndJ45So99BWv7VpnepSmSYv2pVq 5Xa7/XqK7e9DQQbFhXo+zmBWh+U+pDfrbA+J/TPg0kebqj+XskHXpKgkXktWkGJ6 8e7MT4KKyQHhEDkDpmoxmkZzu/l0y2MKTsTecFAdeTVA51cp3WCDm0kQ7o4= -----END CERTIFICATE-----Generated at Sun Feb 16 22:29:49 2025 by rpki-client