$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/CqzMwS3O98jsRTzAQGBEZwJhEyE.roa File: CqzMwS3O98jsRTzAQGBEZwJhEyE.roa (raw, json) Hash identifier: 89lU6uL16uw1P6F3NOnmvCDEvBvq4/+hdUu9hsz2hx8= Subject key identifier: 0A:AC:CC:C1:2D:CE:F7:C8:EC:45:3C:C0:40:60:44:67:02:61:13:21 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 07D1 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CqzMwS3O98jsRTzAQGBEZwJhEyE.roa Signing time: Tue 30 Apr 2024 02:08:53 +0000 ROA not before: Tue 30 Apr 2024 02:08:53 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 220.159.22.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2001 (0x7d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:08:53 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=0AACCCC12DCEF7C8EC453CC04060446702611321 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:06:71:90:8e:db:05:8d:8f:3e:b8:e2:f0:08: 21:52:d3:a8:76:14:74:11:18:e2:98:46:21:19:23: 1d:a6:0f:4d:ca:c7:93:0f:6d:f3:1e:d3:de:4e:83: 60:80:cc:db:70:7e:63:de:a7:32:3b:02:26:d8:16: a4:af:98:40:4d:09:e0:22:f2:0a:6e:3d:eb:ea:ab: 94:4e:4a:82:ce:65:d2:e9:f9:30:79:75:85:c0:2b: 68:d9:08:21:b4:a5:6a:37:3d:18:91:a8:9e:00:19: e2:c8:d4:b6:05:0c:80:be:55:03:21:4b:b1:33:39: 03:6b:b3:78:c1:83:c1:6d:da:25:b6:9f:6a:f1:a1: 3e:93:81:63:72:30:4d:4e:92:0e:34:bd:61:86:02: 7e:89:a1:35:92:27:36:cc:d9:14:1c:29:1d:6d:82: dd:85:66:46:42:46:41:a8:a4:ea:f6:f8:2a:c9:f3: 76:88:37:48:ec:a6:17:b6:ce:00:66:e5:f9:46:54: a7:3e:c8:2b:1b:17:7a:0b:77:d0:1e:c0:1a:56:3e: bd:a7:37:d1:5b:14:f4:0d:22:68:f1:72:53:87:af: 04:9f:ab:b2:f3:7f:3d:d3:d1:cc:bd:38:6f:d0:e5: 25:7d:a2:a4:36:8e:e3:35:57:3d:d9:b7:f2:6d:e1: c8:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:AC:CC:C1:2D:CE:F7:C8:EC:45:3C:C0:40:60:44:67:02:61:13:21 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CqzMwS3O98jsRTzAQGBEZwJhEyE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.22.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:68:da:d3:ba:c6:e9:c2:32:a3:bd:69:28:a1:d2:1d:0d:ef: bd:31:e6:42:3e:a2:59:fb:61:f7:cc:1b:ac:2c:8c:70:e1:28: 1d:03:03:a4:04:08:b8:91:33:11:0c:ac:19:50:92:9c:27:05: 6d:83:dc:7c:28:29:10:26:0c:06:2d:68:14:f5:bc:86:15:03: b9:80:ae:4e:0b:33:60:23:7e:ba:bf:45:25:dd:11:09:f1:b5: b3:4c:8c:05:ae:43:cf:53:ab:0f:04:1b:ba:38:82:0f:d2:ee: 22:50:1a:06:ce:c6:54:27:b5:64:93:b8:f8:42:8e:7c:c3:d8: c8:a6:c6:62:27:0d:7f:8f:64:86:7f:b0:4e:ea:6a:6b:40:15: 89:5c:5c:b9:e2:4d:b6:35:6d:32:4f:7b:2c:8d:bc:0a:7f:23: 50:d3:90:64:eb:18:f1:37:07:78:c8:94:24:d7:62:a3:dd:e5: 24:bf:0f:80:63:38:82:02:bf:aa:b5:0b:74:01:41:a6:31:b1: 91:08:fa:65:24:57:33:f8:28:ad:12:b4:30:cf:aa:e6:98:7c: 0d:80:5d:91:2a:2a:43:7b:ff:2c:33:1f:67:4e:e8:00:a8:81: e1:8b:32:fb:48:15:0e:f0:35:b0:b2:f2:64:4c:88:f6:66:ca: bf:27:70:85 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB9EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjA4NTNaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDBBQUNDQ0MxMkRDRUY3 QzhFQzQ1M0NDMDQwNjA0NDY3MDI2MTEzMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD2BnGQjtsFjY8+uOLwCCFS06h2FHQRGOKYRiEZIx2mD03Kx5MP bfMe095Og2CAzNtwfmPepzI7AibYFqSvmEBNCeAi8gpuPevqq5ROSoLOZdLp+TB5 dYXAK2jZCCG0pWo3PRiRqJ4AGeLI1LYFDIC+VQMhS7EzOQNrs3jBg8Ft2iW2n2rx oT6TgWNyME1Okg40vWGGAn6JoTWSJzbM2RQcKR1tgt2FZkZCRkGopOr2+CrJ83aI N0jsphe2zgBm5flGVKc+yCsbF3oLd9AewBpWPr2nN9FbFPQNImjxclOHrwSfq7Lz fz3T0cy9OG/Q5SV9oqQ2juM1Vz3Zt/Jt4cidAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUCqzMwS3O98jsRTzAQGBEZwJhEyEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0Nxek13UzNPOThqc1JUekFRR0JFWndKaEV5RS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHcnxYwDQYJKoZIhvcNAQELBQADggEBAGxo2tO6xunCMqO9aSih0h0N770x 5kI+oln7YffMG6wsjHDhKB0DA6QECLiRMxEMrBlQkpwnBW2D3HwoKRAmDAYtaBT1 vIYVA7mArk4LM2Ajfrq/RSXdEQnxtbNMjAWuQ89Tqw8EG7o4gg/S7iJQGgbOxlQn tWSTuPhCjnzD2MimxmInDX+PZIZ/sE7qamtAFYlcXLniTbY1bTJPeyyNvAp/I1DT kGTrGPE3B3jIlCTXYqPd5SS/D4BjOIICv6q1C3QBQaYxsZEI+mUkVzP4KK0StDDP quaYfA2AXZEqKkN7/ywzH2dO6ACogeGLMvtIFQ7wNbCy8mRMiPZmyr8ncIU= -----END CERTIFICATE-----Generated at Sun Feb 16 22:23:54 2025 by rpki-client