$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/DKDczXAI7Wqiv6ZXdUk4paegOeg.roa File: DKDczXAI7Wqiv6ZXdUk4paegOeg.roa (raw, json) Hash identifier: sJ/hQebf2MS7ovWXM4uuMyheOcXP+Tw8yhItsMuXHEE= Subject key identifier: 0C:A0:DC:CD:70:08:ED:6A:A2:BF:A6:57:75:49:38:A5:A7:A0:39:E8 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0895 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/DKDczXAI7Wqiv6ZXdUk4paegOeg.roa Signing time: Tue 30 Apr 2024 02:20:39 +0000 ROA not before: Tue 30 Apr 2024 02:20:39 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.22.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2197 (0x895) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:20:39 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=0CA0DCCD7008ED6AA2BFA657754938A5A7A039E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6c:56:bd:8a:bd:26:a4:71:44:57:f0:1f:4d: c4:40:de:85:d3:6e:d0:1a:fe:2a:0c:d5:de:41:73: ca:de:14:46:27:6f:d1:16:9d:5b:3b:3d:1d:0b:09: ca:ac:37:5b:46:30:a7:d5:88:74:2d:02:1a:9c:05: a6:33:0a:04:f1:2a:6b:89:0a:c5:d7:22:33:df:bb: bd:54:33:0d:19:52:3d:71:83:17:c5:e5:42:c0:ef: 56:a6:5c:68:e9:47:a6:36:9f:53:9d:93:8f:b6:fb: db:19:30:00:d9:ae:8e:8b:9f:8d:e4:4b:40:49:fe: 5a:7d:13:aa:43:46:c3:69:5f:33:b8:28:0e:5c:93: 50:da:19:ee:8d:45:83:95:75:1d:8e:e1:9b:dc:5c: f6:ae:fb:4f:15:c0:35:46:24:0a:f5:18:17:83:44: 8c:67:7f:67:cc:14:63:89:2e:db:f8:2d:70:29:d7: 4d:34:20:01:38:fb:f8:a6:c7:fd:02:39:56:ba:c5: 2d:2d:f2:0b:79:c2:57:c1:ce:98:c3:64:ac:74:68: 8e:72:1f:8d:1b:3d:93:66:a1:60:2a:dd:e0:b4:01: 62:08:ce:9a:ae:60:8d:92:f5:2d:d3:01:a9:9f:90: 23:41:f8:3d:1b:f2:d9:88:96:fa:0d:db:57:83:99: 9f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:A0:DC:CD:70:08:ED:6A:A2:BF:A6:57:75:49:38:A5:A7:A0:39:E8 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/DKDczXAI7Wqiv6ZXdUk4paegOeg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.22.0/23 Signature Algorithm: sha256WithRSAEncryption 59:9b:af:1b:76:ee:15:68:ed:a5:f7:0d:cb:5b:74:d9:0d:1f: 90:78:00:5c:70:7b:87:76:df:f3:d1:e8:43:47:b0:6c:60:07: fd:28:7d:44:cf:d2:7e:bd:9f:2a:13:34:1a:d3:fb:99:84:5d: 1c:75:47:dd:a3:b0:db:20:65:6e:be:70:3c:6e:a8:f2:b3:62: 8b:20:af:94:cb:3c:6f:77:d0:a1:f0:40:38:99:44:b9:d8:d8: e6:dd:3c:b8:e3:54:c6:52:32:89:d3:db:8b:67:3b:44:1e:f6: a5:e4:9c:44:84:d1:08:f7:8e:d4:25:e3:6d:35:3c:a3:44:bd: 47:07:8e:5d:eb:de:e9:1b:59:d7:2a:f7:13:82:6b:0e:ec:e8: 78:9c:f6:e1:c1:78:cd:be:86:fb:56:9a:8a:d5:84:45:f7:6a: cb:3d:22:08:16:a1:96:8e:d1:c9:a7:7a:c4:51:d0:f9:dd:f9: cd:bc:dd:43:83:77:b8:6a:7d:f3:bd:07:4f:53:5b:16:92:02: 3c:b9:a3:5b:c6:d2:d7:d7:71:08:cf:5d:eb:fc:2a:d6:52:dc: 56:e0:4c:c8:58:f8:98:0f:5a:b2:54:ec:67:0b:87:b2:8e:07: fd:33:c3:75:79:48:61:b7:81:95:f0:5c:c0:61:2b:38:e5:17: ea:df:a1:0f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCJUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjIwMzlaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDBDQTBEQ0NENzAwOEVE NkFBMkJGQTY1Nzc1NDkzOEE1QTdBMDM5RTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9bFa9ir0mpHFEV/AfTcRA3oXTbtAa/ioM1d5Bc8reFEYnb9EW nVs7PR0LCcqsN1tGMKfViHQtAhqcBaYzCgTxKmuJCsXXIjPfu71UMw0ZUj1xgxfF 5ULA71amXGjpR6Y2n1Odk4+2+9sZMADZro6Ln43kS0BJ/lp9E6pDRsNpXzO4KA5c k1DaGe6NRYOVdR2O4ZvcXPau+08VwDVGJAr1GBeDRIxnf2fMFGOJLtv4LXAp1000 IAE4+/imx/0COVa6xS0t8gt5wlfBzpjDZKx0aI5yH40bPZNmoWAq3eC0AWIIzpqu YI2S9S3TAamfkCNB+D0b8tmIlvoN21eDmZ+TAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUDKDczXAI7Wqiv6ZXdUk4paegOegwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0RLRGN6WEFJN1dxaXY2WlhkVWs0cGFlZ09lZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYBYwDQYJKoZIhvcNAQELBQADggEBAFmbrxt27hVo7aX3DctbdNkNH5B4 AFxwe4d23/PR6ENHsGxgB/0ofUTP0n69nyoTNBrT+5mEXRx1R92jsNsgZW6+cDxu qPKzYosgr5TLPG930KHwQDiZRLnY2ObdPLjjVMZSMonT24tnO0Qe9qXknESE0Qj3 jtQl4201PKNEvUcHjl3r3ukbWdcq9xOCaw7s6Hic9uHBeM2+hvtWmorVhEX3ass9 IggWoZaO0cmnesRR0Pnd+c283UODd7hqffO9B09TWxaSAjy5o1vG0tfXcQjPXev8 KtZS3FbgTMhY+JgPWrJU7GcLh7KOB/0zw3V5SGG3gZXwXMBhKzjlF+rfoQ8= -----END CERTIFICATE-----Generated at Sun Feb 16 22:34:17 2025 by rpki-client