$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/CfY70kl8saacU62H6RY3cBsutM8.roa File: CfY70kl8saacU62H6RY3cBsutM8.roa (raw, json) Hash identifier: LXZFcDVgiqJT9hhs/fmceJkytAVkHp4F8Bgy9vCcqWY= Subject key identifier: 09:F6:3B:D2:49:7C:B1:A6:9C:53:AD:87:E9:16:37:70:1B:2E:B4:CF Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 09D7 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CfY70kl8saacU62H6RY3cBsutM8.roa Signing time: Sun 30 Jun 2024 01:40:32 +0000 ROA not before: Sun 30 Jun 2024 01:40:32 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 211.14.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2519 (0x9d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:40:32 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=09F63BD2497CB1A69C53AD87E91637701B2EB4CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e2:95:6e:c2:51:a5:f9:c2:ce:31:9f:9f:6e: 0e:ac:92:3f:74:53:04:8b:d9:ab:b1:84:7a:91:a5: 73:4b:5d:5a:1d:bd:ab:5b:c5:b7:a8:f6:79:8d:7a: cc:58:3f:e0:7c:42:48:fa:1e:67:ca:dd:b8:dc:5f: 9d:50:9f:43:35:2d:c6:5e:5c:ef:5d:66:6e:10:ce: 40:a5:c3:f9:08:9f:dc:55:9a:a0:28:62:ee:dc:a5: b9:e2:56:76:cf:91:a6:81:36:8e:e7:b9:f3:f9:41: f3:ac:20:c0:2d:34:61:a3:3b:e2:2c:5e:ab:ca:55: c2:be:44:7a:03:b2:76:35:e9:19:c5:69:90:73:b9: c6:96:e7:08:ef:0b:8d:4a:84:41:7c:b0:46:66:2a: 7e:fa:6a:e0:67:fd:8c:c5:7b:a8:9a:d4:b4:c4:c5: 20:05:1e:9d:cd:0d:7d:df:47:25:6f:96:39:31:13: 10:15:cd:2a:6f:40:d9:e5:ff:c5:ed:6f:f3:d8:82: ce:61:90:7b:e2:fb:c8:6a:14:b9:7a:78:81:12:5d: 07:0a:4a:47:90:95:5e:ab:7d:b5:21:05:c7:66:67: 1a:01:38:45:07:d5:51:28:b5:9a:a0:a7:d7:53:ba: 06:bb:a6:e5:53:f8:a1:60:88:cb:2d:be:e5:9d:6e: af:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:F6:3B:D2:49:7C:B1:A6:9C:53:AD:87:E9:16:37:70:1B:2E:B4:CF X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CfY70kl8saacU62H6RY3cBsutM8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.96.0/22 Signature Algorithm: sha256WithRSAEncryption 49:ab:2c:95:56:ba:3a:b4:8b:1e:40:15:51:8c:7c:10:30:64: 83:5f:8c:d5:d8:95:ea:e2:83:5a:9a:a1:42:7e:9c:31:a6:14: c3:78:61:40:fb:46:8d:a7:92:4f:a6:ba:59:00:b5:22:a2:b0: d3:5c:92:bf:79:07:7c:76:0b:58:dc:35:47:a4:9f:5c:f8:47: c7:93:4c:4d:fb:a9:06:97:c2:ee:64:83:03:9a:cc:89:85:16: be:28:b1:d6:c2:96:84:69:99:ff:c6:09:b8:a7:5c:be:80:1e: 4d:29:55:d0:e3:de:ab:32:1a:f9:13:e7:4c:ac:c1:d6:96:33: 42:ef:b5:c0:88:ed:1d:7f:49:6d:c1:a1:4e:01:2b:a2:33:fb: 26:28:96:b5:ff:1f:0d:51:21:7f:c1:69:0b:43:be:85:71:69: e8:f4:7c:35:e5:17:b3:ed:e0:35:0a:83:c5:55:02:f9:cb:15: 72:d9:14:ad:8e:53:56:82:32:e6:b5:2e:4d:94:f9:61:25:30: 19:32:48:80:73:72:0e:07:03:e6:ca:25:9c:21:5d:79:77:43: 27:71:52:b7:de:d1:2e:04:66:08:dd:e0:df:d6:06:51:92:49: 92:40:f6:fc:2e:ee:14:3d:26:33:61:77:4c:79:59:7a:aa:4d: 53:65:55:af -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCdcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQwMzJaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDA5RjYzQkQyNDk3Q0Ix QTY5QzUzQUQ4N0U5MTYzNzcwMUIyRUI0Q0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDb4pVuwlGl+cLOMZ+fbg6skj90UwSL2auxhHqRpXNLXVodvatb xbeo9nmNesxYP+B8Qkj6HmfK3bjcX51Qn0M1LcZeXO9dZm4QzkClw/kIn9xVmqAo Yu7cpbniVnbPkaaBNo7nufP5QfOsIMAtNGGjO+IsXqvKVcK+RHoDsnY16RnFaZBz ucaW5wjvC41KhEF8sEZmKn76auBn/YzFe6ia1LTExSAFHp3NDX3fRyVvljkxExAV zSpvQNnl/8Xtb/PYgs5hkHvi+8hqFLl6eIESXQcKSkeQlV6rfbUhBcdmZxoBOEUH 1VEotZqgp9dTuga7puVT+KFgiMstvuWdbq/xAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUCfY70kl8saacU62H6RY3cBsutM8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0NmWTcwa2w4c2FhY1U2Mkg2UlkzY0JzdXRNOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALTDmAwDQYJKoZIhvcNAQELBQADggEBAEmrLJVWujq0ix5AFVGMfBAwZINf jNXYlerig1qaoUJ+nDGmFMN4YUD7Ro2nkk+mulkAtSKisNNckr95B3x2C1jcNUek n1z4R8eTTE37qQaXwu5kgwOazImFFr4osdbCloRpmf/GCbinXL6AHk0pVdDj3qsy GvkT50yswdaWM0LvtcCI7R1/SW3BoU4BK6Iz+yYolrX/Hw1RIX/BaQtDvoVxaej0 fDXlF7Pt4DUKg8VVAvnLFXLZFK2OU1aCMua1Lk2U+WElMBkySIBzcg4HA+bKJZwh XXl3QydxUrfe0S4EZgjd4N/WBlGSSZJA9vwu7hQ9JjNhd0x5WXqqTVNlVa8= -----END CERTIFICATE-----Generated at Sun Feb 16 22:20:11 2025 by rpki-client