$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/CIgOQaM3t9Mmqyb0L1AVI1UBG-U.roa File: CIgOQaM3t9Mmqyb0L1AVI1UBG-U.roa (raw, json) Hash identifier: ylJJx15hPvsJtl7GlbYlXgSJv7qgd7VQHMxkqqgSkIQ= Subject key identifier: 08:88:0E:41:A3:37:B7:D3:26:AB:26:F4:2F:50:15:23:55:01:1B:E5 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 071B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CIgOQaM3t9Mmqyb0L1AVI1UBG-U.roa Signing time: Tue 30 Apr 2024 01:55:48 +0000 ROA not before: Tue 30 Apr 2024 01:55:48 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 219.114.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1819 (0x71b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:55:48 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=08880E41A337B7D326AB26F42F50152355011BE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:71:16:3f:d0:8f:02:22:e8:75:19:fb:e6:90: ae:5e:42:d7:20:29:cc:43:7f:dc:74:3d:33:c1:7b: 93:8b:c5:da:57:1a:dd:22:e0:24:b7:50:14:11:a9: d1:24:d0:7a:9d:00:47:1b:41:bd:0f:06:c1:91:43: 01:0c:3e:6a:39:9e:1e:7f:0c:c7:e4:46:23:aa:1f: 20:8b:55:96:c8:89:d3:28:00:d1:c7:6c:60:35:fd: 41:a5:c4:9c:54:f8:2d:3c:74:a2:79:eb:f5:16:c3: 1c:a3:a5:4c:4c:7f:22:cd:60:96:90:67:0c:37:88: 06:f4:93:55:84:06:76:1c:2d:ec:be:66:cf:3f:f0: bb:c8:c5:78:a8:27:9d:b1:c6:3f:a7:14:35:45:56: e0:a1:04:9d:c6:30:66:c6:90:54:7c:e2:ff:9e:dc: d9:37:c9:9a:44:ac:ca:84:45:0f:7b:26:13:44:2b: f8:cb:4f:9b:2b:17:69:da:1e:07:1b:84:40:aa:8b: ab:8c:77:36:44:55:67:2d:1d:1f:86:fb:31:23:29: 9e:3c:35:01:11:7a:7d:77:93:2b:ff:50:99:0c:db: 14:5a:f4:a1:96:91:2d:25:09:2c:03:34:9c:b9:3c: dd:e2:a7:8d:c4:03:cb:dd:23:c8:02:b2:67:83:7f: b0:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:88:0E:41:A3:37:B7:D3:26:AB:26:F4:2F:50:15:23:55:01:1B:E5 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CIgOQaM3t9Mmqyb0L1AVI1UBG-U.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.114.184.0/24 Signature Algorithm: sha256WithRSAEncryption 21:fe:fc:ec:ec:38:73:16:38:14:8f:e9:f9:e7:92:d6:9b:5d: bb:c4:57:79:3b:1a:82:58:06:5b:6e:f8:a0:71:00:ca:66:b8: 9e:26:6b:11:55:92:b3:ff:8c:38:19:01:96:dc:dd:8c:fa:2b: f4:a1:71:0b:af:d5:1a:61:d4:cf:98:c0:21:6d:ed:21:d2:8d: 78:23:79:f5:7a:b6:66:6a:fb:5a:1e:6b:cb:c7:3c:9b:84:28: 52:d5:6f:55:c6:9a:25:89:f7:68:84:3f:52:f8:b8:f4:81:64: b9:26:cd:06:28:37:d4:f3:44:c0:05:52:32:31:90:b0:5c:2f: 8c:a0:0e:fd:a7:64:7d:b3:4f:96:e4:31:ed:4f:03:0b:b0:04: 55:47:c2:e6:e1:3c:26:b4:0e:af:96:fd:86:19:1d:6d:3a:8c: 5b:61:50:96:00:cf:8b:f8:df:19:21:99:13:06:20:b7:1c:cd: 03:c9:d3:e1:4e:93:a0:6d:93:a1:7c:ff:38:c3:76:19:fc:91: 40:c1:5d:24:82:8f:80:42:b5:1e:5c:d7:53:7e:6e:66:3f:5e: d9:6a:15:ad:37:9c:07:48:a7:90:9c:f1:9b:3b:9c:70:a7:8e: 27:17:5c:26:d9:49:ec:7e:21:f0:50:bc:64:76:c4:0d:9d:26: 90:b4:28:e0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBxswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTU1NDhaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDA4ODgwRTQxQTMzN0I3 RDMyNkFCMjZGNDJGNTAxNTIzNTUwMTFCRTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCTcRY/0I8CIuh1GfvmkK5eQtcgKcxDf9x0PTPBe5OLxdpXGt0i 4CS3UBQRqdEk0HqdAEcbQb0PBsGRQwEMPmo5nh5/DMfkRiOqHyCLVZbIidMoANHH bGA1/UGlxJxU+C08dKJ56/UWwxyjpUxMfyLNYJaQZww3iAb0k1WEBnYcLey+Zs8/ 8LvIxXioJ52xxj+nFDVFVuChBJ3GMGbGkFR84v+e3Nk3yZpErMqERQ97JhNEK/jL T5srF2naHgcbhECqi6uMdzZEVWctHR+G+zEjKZ48NQERen13kyv/UJkM2xRa9KGW kS0lCSwDNJy5PN3ip43EA8vdI8gCsmeDf7DHAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUCIgOQaM3t9Mmqyb0L1AVI1UBG+UwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0NJZ09RYU0zdDlNbXF5YjBMMUFWSTFVQkctVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADbcrgwDQYJKoZIhvcNAQELBQADggEBACH+/OzsOHMWOBSP6fnnktabXbvE V3k7GoJYBltu+KBxAMpmuJ4maxFVkrP/jDgZAZbc3Yz6K/ShcQuv1Rph1M+YwCFt 7SHSjXgjefV6tmZq+1oea8vHPJuEKFLVb1XGmiWJ92iEP1L4uPSBZLkmzQYoN9Tz RMAFUjIxkLBcL4ygDv2nZH2zT5bkMe1PAwuwBFVHwubhPCa0Dq+W/YYZHW06jFth UJYAz4v43xkhmRMGILcczQPJ0+FOk6Btk6F8/zjDdhn8kUDBXSSCj4BCtR5c11N+ bmY/XtlqFa03nAdIp5Cc8Zs7nHCnjicXXCbZSex+IfBQvGR2xA2dJpC0KOA= -----END CERTIFICATE-----Generated at Sun Feb 16 22:32:36 2025 by rpki-client