$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/D1xhIYtqwkkF2caJfECPEyPVqcg.roa File: D1xhIYtqwkkF2caJfECPEyPVqcg.roa (raw, json) Hash identifier: qnV0DhszgCWuWtbZB5/gXnznIK7XmB4qTTK4iCtnOHg= Subject key identifier: 0F:5C:61:21:8B:6A:C2:49:05:D9:C6:89:7C:40:8F:13:23:D5:A9:C8 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 08F0 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/D1xhIYtqwkkF2caJfECPEyPVqcg.roa Signing time: Tue 30 Apr 2024 02:26:32 +0000 ROA not before: Tue 30 Apr 2024 02:26:32 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 219.114.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2288 (0x8f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:26:32 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=0F5C61218B6AC24905D9C6897C408F1323D5A9C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:89:f9:7f:4d:90:33:ca:b1:2a:2d:3c:47:13: a2:79:27:99:45:48:48:57:0f:da:d8:9a:f7:de:e9: 46:3f:d7:f8:8d:3b:9f:3a:d7:28:08:41:b8:e8:a6: 2f:de:a9:74:e1:17:66:dd:3c:37:5c:cb:85:a0:f5: 99:1a:33:44:e4:dc:7e:20:b8:62:25:14:0e:9e:41: 57:dd:54:62:b4:68:59:68:88:b5:b0:3e:85:8d:4a: 4c:ae:7d:37:3b:8c:31:5e:46:0b:18:f4:9b:db:31: a0:99:01:4b:19:14:ea:b1:af:65:3b:07:70:7d:94: cb:ba:03:bd:0e:06:ca:ba:cf:63:69:cc:f4:64:3b: 37:63:12:25:0b:38:cc:51:53:30:f0:70:31:6b:27: 28:a1:c1:47:c4:ce:63:c4:81:53:d3:38:76:b1:32: 9c:12:df:52:b8:aa:e0:09:16:4d:f9:c2:76:81:69: a4:d8:ca:8b:43:2b:cd:00:c0:d4:e4:52:eb:6f:70: 00:4f:9d:fe:85:a9:02:3c:49:64:e0:75:59:50:5c: 02:e3:97:07:b6:32:fc:de:e6:e7:99:bd:8d:7b:fa: 51:91:71:5b:5b:20:13:e7:bf:5c:2b:92:90:9b:c0: 9d:4b:31:7a:d0:12:3d:65:46:1d:d7:16:76:ee:b4: fd:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:5C:61:21:8B:6A:C2:49:05:D9:C6:89:7C:40:8F:13:23:D5:A9:C8 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/D1xhIYtqwkkF2caJfECPEyPVqcg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.114.176.0/21 Signature Algorithm: sha256WithRSAEncryption de:b2:fc:20:ab:a1:4c:b3:53:01:8f:29:07:00:a7:b0:ff:ea: 51:85:8a:42:1d:e7:0b:40:51:d4:cc:b4:6f:32:47:34:03:63: 72:9b:c7:83:cf:aa:ae:3f:93:b2:88:5e:db:23:19:33:08:dd: 3b:dd:65:37:9b:77:28:e3:ac:f8:38:41:a2:9e:01:9b:bf:00: 2e:55:71:39:89:6a:60:25:c8:41:57:c9:2f:47:c5:ee:1c:c5: 43:c9:72:cf:54:73:35:1c:7f:39:0f:df:3e:39:e1:47:28:92: 26:4c:e2:13:cb:af:3d:14:62:ee:e0:b3:be:5a:0f:8c:7d:72: f6:5c:3c:fd:c9:57:e2:87:37:16:22:e7:4e:44:96:1f:f6:a5: ad:d2:8b:ee:bd:87:a8:ce:e7:2e:c0:87:eb:b1:90:ca:91:43: 34:23:c4:ae:e9:01:c5:11:ed:ef:e3:24:82:7b:f3:68:d2:e1: bc:03:c4:d0:f7:e2:72:cf:4a:d8:6c:a4:87:37:94:74:96:e2: 5f:26:7e:2f:06:e0:71:ad:4f:4f:db:17:34:23:6a:18:50:9e: e3:15:59:ae:39:b8:8f:fb:08:16:a8:63:06:05:e9:47:85:37: f5:9b:76:76:9e:47:93:1c:95:65:1a:ac:85:1a:2e:f9:4c:e5: 1f:09:16:76 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCPAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjI2MzJaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDBGNUM2MTIxOEI2QUMy NDkwNUQ5QzY4OTdDNDA4RjEzMjNENUE5QzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZifl/TZAzyrEqLTxHE6J5J5lFSEhXD9rYmvfe6UY/1/iNO586 1ygIQbjopi/eqXThF2bdPDdcy4Wg9ZkaM0Tk3H4guGIlFA6eQVfdVGK0aFloiLWw PoWNSkyufTc7jDFeRgsY9JvbMaCZAUsZFOqxr2U7B3B9lMu6A70OBsq6z2NpzPRk OzdjEiULOMxRUzDwcDFrJyihwUfEzmPEgVPTOHaxMpwS31K4quAJFk35wnaBaaTY yotDK80AwNTkUutvcABPnf6FqQI8SWTgdVlQXALjlwe2Mvze5ueZvY17+lGRcVtb IBPnv1wrkpCbwJ1LMXrQEj1lRh3XFnbutP2FAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUD1xhIYtqwkkF2caJfECPEyPVqcgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0QxeGhJWXRxd2trRjJjYUpmRUNQRXlQVnFjZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPbcrAwDQYJKoZIhvcNAQELBQADggEBAN6y/CCroUyzUwGPKQcAp7D/6lGF ikId5wtAUdTMtG8yRzQDY3Kbx4PPqq4/k7KIXtsjGTMI3TvdZTebdyjjrPg4QaKe AZu/AC5VcTmJamAlyEFXyS9Hxe4cxUPJcs9UczUcfzkP3z454UcokiZM4hPLrz0U Yu7gs75aD4x9cvZcPP3JV+KHNxYi505Elh/2pa3Si+69h6jO5y7Ah+uxkMqRQzQj xK7pAcUR7e/jJIJ782jS4bwDxND34nLPSthspIc3lHSW4l8mfi8G4HGtT0/bFzQj ahhQnuMVWa45uI/7CBaoYwYF6UeFN/WbdnaeR5MclWUarIUaLvlM5R8JFnY= -----END CERTIFICATE-----Generated at Sun Feb 16 22:21:01 2025 by rpki-client