$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/DUc_GiF3kPKvULcKuz7PXR2z3Js.roa File: DUc_GiF3kPKvULcKuz7PXR2z3Js.roa (raw, json) Hash identifier: gKqYVPd6S09P3Joch4WNYNwkkeaS/cwsFPhGglxItsQ= Subject key identifier: 0D:47:3F:1A:21:77:90:F2:AF:50:B7:0A:BB:3E:CF:5D:1D:B3:DC:9B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0AB8 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/DUc_GiF3kPKvULcKuz7PXR2z3Js.roa Signing time: Sun 30 Jun 2024 01:54:34 +0000 ROA not before: Sun 30 Jun 2024 01:54:34 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 49.102.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2744 (0xab8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:54:34 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=0D473F1A217790F2AF50B70ABB3ECF5D1DB3DC9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d4:5f:19:c3:c0:bb:b7:68:26:73:7b:6e:24: b9:f9:73:9e:33:95:bd:72:7a:5a:27:a6:0e:dc:9e: 39:6b:f5:1f:0c:59:47:1f:df:5d:c5:f1:3a:7c:eb: 1b:c0:3e:e8:78:04:dc:81:1e:bd:11:9d:15:a5:29: 38:b5:2a:f0:eb:2f:9d:7a:d5:15:ae:b1:99:b1:03: d4:8d:af:2c:e9:a9:e3:fc:88:01:11:cc:0b:72:03: c7:55:ee:c5:97:fe:8f:cb:5d:61:91:3d:72:63:b9: e0:70:76:2d:5b:cf:b8:f9:ff:ce:2a:3d:bd:bb:b6: c4:24:20:1d:a1:2c:c5:cf:3d:a0:c7:b9:e5:9f:ad: dc:bc:3c:74:ee:ac:2f:b3:29:f7:a5:0f:61:6d:89: 8b:5a:f2:fa:f2:ec:5e:80:3e:28:03:f2:94:d8:4e: 6e:8b:b3:fc:e1:0b:9e:73:fa:c6:00:74:4a:fa:8b: 55:d9:a1:c9:e5:1e:6b:ad:c5:ba:fb:d9:a4:c5:5f: 1a:90:f3:53:8f:ff:93:4f:12:8a:f5:2b:bb:3f:19: c3:e1:c1:93:46:1e:92:da:8a:09:bf:38:89:4a:f4: 5b:5e:31:c6:ad:6e:0d:62:7d:c2:ca:bf:4c:95:c8: 53:90:13:65:2c:24:9b:52:73:5c:87:f5:cc:89:e0: 03:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:47:3F:1A:21:77:90:F2:AF:50:B7:0A:BB:3E:CF:5D:1D:B3:DC:9B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/DUc_GiF3kPKvULcKuz7PXR2z3Js.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.102.161.0/24 Signature Algorithm: sha256WithRSAEncryption 90:5b:9e:09:9e:5c:93:80:e7:ab:b0:ba:ba:13:64:4a:63:e0: a4:36:cb:c1:01:89:df:0e:38:bb:88:3c:27:5a:19:d1:0f:d4: 40:fb:3d:40:da:9f:4e:ff:64:88:26:75:12:d4:2c:e3:c6:cc: 8c:b5:5f:97:59:00:96:8a:0a:bb:01:de:7d:6f:ae:e7:3b:3a: 85:d0:e4:ed:a8:0d:c3:2f:bd:9a:7a:31:42:3c:57:c5:e5:67: 0a:3b:8d:20:b5:c3:e2:9b:b4:18:c0:0c:ae:de:75:9f:ad:16: c4:4d:81:2c:ce:67:f0:b9:c0:94:17:5a:e4:9c:4a:42:6e:14: bf:57:8b:99:34:d8:7b:d2:94:2a:9c:20:40:e5:19:bd:fb:26: 89:bb:c8:1d:73:86:8e:ef:c5:64:ea:70:af:14:26:b2:00:30: 3e:38:7f:c4:ed:6d:99:42:fe:6e:f6:8d:61:11:9a:ef:20:43: 26:bd:aa:99:b3:e2:e4:44:6b:70:da:90:d6:8d:cb:b7:cd:a4: 67:7d:c4:84:55:7f:8b:12:36:d0:42:35:cf:49:ed:b1:b5:bc: 2e:d7:e0:8e:75:ac:39:0e:aa:20:2b:06:de:02:4a:9e:d1:e9: 09:20:4a:a0:ea:94:51:79:f4:ab:1e:09:1e:54:cf:34:10:8e: ff:75:7d:cc -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCrgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTU0MzRaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDBENDczRjFBMjE3Nzkw RjJBRjUwQjcwQUJCM0VDRjVEMURCM0RDOUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/1F8Zw8C7t2gmc3tuJLn5c54zlb1yelonpg7cnjlr9R8MWUcf 313F8Tp86xvAPuh4BNyBHr0RnRWlKTi1KvDrL5161RWusZmxA9SNryzpqeP8iAER zAtyA8dV7sWX/o/LXWGRPXJjueBwdi1bz7j5/84qPb27tsQkIB2hLMXPPaDHueWf rdy8PHTurC+zKfelD2FtiYta8vry7F6APigD8pTYTm6Ls/zhC55z+sYAdEr6i1XZ ocnlHmutxbr72aTFXxqQ81OP/5NPEor1K7s/GcPhwZNGHpLaigm/OIlK9FteMcat bg1ifcLKv0yVyFOQE2UsJJtSc1yH9cyJ4APTAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUDUc/GiF3kPKvULcKuz7PXR2z3JswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0RVY19HaUYza1BLdlVMY0t1ejdQWFIyejNKcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxZqEwDQYJKoZIhvcNAQELBQADggEBAJBbngmeXJOA56uwuroTZEpj4KQ2 y8EBid8OOLuIPCdaGdEP1ED7PUDan07/ZIgmdRLULOPGzIy1X5dZAJaKCrsB3n1v ruc7OoXQ5O2oDcMvvZp6MUI8V8XlZwo7jSC1w+KbtBjADK7edZ+tFsRNgSzOZ/C5 wJQXWuScSkJuFL9Xi5k02HvSlCqcIEDlGb37Jom7yB1zho7vxWTqcK8UJrIAMD44 f8TtbZlC/m72jWERmu8gQya9qpmz4uREa3DakNaNy7fNpGd9xIRVf4sSNtBCNc9J 7bG1vC7X4I51rDkOqiArBt4CSp7R6QkgSqDqlFF59KseCR5UzzQQjv91fcw= -----END CERTIFICATE-----Generated at Sun Feb 16 22:20:25 2025 by rpki-client