$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/DkSrUFIuHYWIh7KSwoG6yF5kRD8.roa File: DkSrUFIuHYWIh7KSwoG6yF5kRD8.roa (raw, json) Hash identifier: qVegTWg541Egbs5K4LA/3ZUqQuI82Pfo8grP2WXfmgs= Subject key identifier: 0E:44:AB:50:52:2E:1D:85:88:87:B2:92:C2:81:BA:C8:5E:64:44:3F Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0AD6 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/DkSrUFIuHYWIh7KSwoG6yF5kRD8.roa Signing time: Fri 24 Jan 2025 04:53:07 +0000 ROA not before: Fri 24 Jan 2025 04:53:07 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.96.120.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2774 (0xad6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 24 04:53:07 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=0E44AB50522E1D858887B292C281BAC85E64443F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:a8:18:57:f1:37:6f:f3:5d:46:35:18:1e:e1: 50:f2:de:49:a9:4a:8e:fe:9a:fa:58:06:d7:11:e9: 46:e0:11:1c:7f:6b:f5:66:c4:1f:51:3b:0c:c1:a7: 3b:82:2c:26:1a:b8:79:7e:b4:6b:75:9a:80:03:0c: 8a:3c:2f:50:2c:7f:35:ae:2a:4b:63:bd:1f:cf:5a: fa:1d:33:da:dc:17:93:fa:ee:39:ac:1d:34:b7:48: 9c:ce:b3:f2:57:d3:55:50:e9:22:16:45:de:6a:3d: b5:a0:70:d2:6f:8b:2d:19:3d:26:27:39:80:7b:67: f0:b9:b9:ec:76:3a:32:ad:3d:53:11:f5:08:2c:4c: 93:39:95:23:27:e2:9f:a4:0c:9a:4f:ff:46:91:f6: 14:bd:1c:b2:02:f4:c6:63:79:40:d4:56:a6:88:3d: 76:55:86:f2:96:39:f2:29:86:14:e4:17:37:ef:2a: c3:bd:e0:7a:e3:9f:b2:92:87:95:64:37:b1:5f:59: 7f:27:30:3c:27:b6:af:11:7e:ee:7b:03:77:1d:14: 02:1b:c6:57:27:6e:91:24:1f:6d:da:d2:c7:dc:1f: f0:74:43:85:81:88:6a:ca:74:a1:d9:d8:dc:d1:ad: a1:c8:26:4a:b5:c1:78:f1:42:17:b0:78:e3:b1:b8: 6e:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:44:AB:50:52:2E:1D:85:88:87:B2:92:C2:81:BA:C8:5E:64:44:3F X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/DkSrUFIuHYWIh7KSwoG6yF5kRD8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.120.0/21 Signature Algorithm: sha256WithRSAEncryption 5d:57:89:41:bb:65:3f:05:e7:48:d8:64:fb:03:26:50:f9:64: 78:b7:a5:27:db:e5:67:b5:34:d4:50:6e:45:ab:68:b0:5c:8f: 95:cc:36:52:11:18:65:2d:78:16:50:7d:34:64:a8:16:e4:fe: 39:38:aa:1b:fd:55:94:e5:84:7a:91:d4:4c:58:79:91:22:53: 9b:dd:9d:17:5f:95:38:8a:8c:2a:c1:96:3f:99:6b:17:4c:c9: 85:47:16:eb:12:0f:6c:db:27:eb:fb:df:6e:c1:9f:c3:90:bf: af:00:bf:d4:50:77:ad:40:95:7c:99:9a:51:f4:55:9f:d0:a1: 71:d0:8b:13:9a:26:e8:f3:c8:40:61:f0:ab:81:ad:f0:6b:8a: b8:d4:e2:0b:bc:72:6b:7d:6f:47:45:74:e7:83:28:1f:0b:1c: e4:dd:36:49:cb:b4:3a:c7:dd:b4:d8:82:9c:3f:e6:a2:1a:91: a7:48:ac:e9:57:cf:eb:b3:00:36:35:d0:f9:55:da:54:3b:fc: 67:05:04:a5:f3:a6:41:04:05:19:f5:c2:0d:be:99:5f:30:6e: b9:18:26:3b:8c:6a:69:88:4e:f4:98:c3:74:5b:61:74:ea:fe: 7a:c8:d7:10:9a:26:07:0b:a5:10:d9:35:87:a8:07:9a:46:2f: 99:f4:ba:c1 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCtYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMjQw NDUzMDdaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDBFNDRBQjUwNTIyRTFE ODU4ODg3QjI5MkMyODFCQUM4NUU2NDQ0M0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCcqBhX8Tdv811GNRge4VDy3kmpSo7+mvpYBtcR6UbgERx/a/Vm xB9ROwzBpzuCLCYauHl+tGt1moADDIo8L1AsfzWuKktjvR/PWvodM9rcF5P67jms HTS3SJzOs/JX01VQ6SIWRd5qPbWgcNJviy0ZPSYnOYB7Z/C5uex2OjKtPVMR9Qgs TJM5lSMn4p+kDJpP/0aR9hS9HLIC9MZjeUDUVqaIPXZVhvKWOfIphhTkFzfvKsO9 4Hrjn7KSh5VkN7FfWX8nMDwntq8Rfu57A3cdFAIbxlcnbpEkH23a0sfcH/B0Q4WB iGrKdKHZ2NzRraHIJkq1wXjxQheweOOxuG6NAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUDkSrUFIuHYWIh7KSwoG6yF5kRD8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0RrU3JVRkl1SFlXSWg3S1N3b0c2eUY1a1JEOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMxYHgwDQYJKoZIhvcNAQELBQADggEBAF1XiUG7ZT8F50jYZPsDJlD5ZHi3 pSfb5We1NNRQbkWraLBcj5XMNlIRGGUteBZQfTRkqBbk/jk4qhv9VZTlhHqR1ExY eZEiU5vdnRdflTiKjCrBlj+ZaxdMyYVHFusSD2zbJ+v7327Bn8OQv68Av9RQd61A lXyZmlH0VZ/QoXHQixOaJujzyEBh8KuBrfBrirjU4gu8cmt9b0dFdOeDKB8LHOTd NknLtDrH3bTYgpw/5qIakadIrOlXz+uzADY10PlV2lQ7/GcFBKXzpkEEBRn1wg2+ mV8wbrkYJjuMammITvSYw3RbYXTq/nrI1xCaJgcLpRDZNYeoB5pGL5n0usE= -----END CERTIFICATE-----Generated at Wed Feb 19 22:29:45 2025 by rpki-client