$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/E289dcHPyBTKHPVvVy5KfCnkASE.roa File: E289dcHPyBTKHPVvVy5KfCnkASE.roa (raw, json) Hash identifier: mkL3D6hSwVTy5tYZBpgFjZOYOOE+iOOqO+D/IlL8YRo= Subject key identifier: 13:6F:3D:75:C1:CF:C8:14:CA:1C:F5:6F:57:2E:4A:7C:29:E4:01:21 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 09BE Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/E289dcHPyBTKHPVvVy5KfCnkASE.roa Signing time: Sun 30 Jun 2024 01:40:22 +0000 ROA not before: Sun 30 Jun 2024 01:40:22 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 49.107.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2494 (0x9be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:40:22 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=136F3D75C1CFC814CA1CF56F572E4A7C29E40121 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:5c:a1:84:53:55:c9:d9:6a:44:01:15:47:15: 97:aa:b9:94:5b:aa:64:ac:eb:bd:c1:c3:d6:d9:50: 2e:99:ca:cf:47:c7:e9:c7:d2:f0:8f:d2:80:f0:ce: 6b:08:bd:6a:bb:71:3e:2d:e0:ed:f0:af:ec:5f:22: 3d:69:58:b0:95:7d:3a:15:ad:ed:0a:ee:f0:d3:fa: 28:97:5c:00:a9:e8:6b:7c:5f:bf:20:df:c7:84:4a: f5:74:dc:62:12:85:02:df:b9:d7:b6:71:87:68:ac: da:6a:f8:8f:15:ae:81:b1:4a:1f:eb:16:65:14:47: a4:db:f7:be:fb:3e:1a:71:61:95:d5:07:0a:5c:da: c2:6b:4b:cd:ef:9f:59:f0:02:75:41:54:5f:00:c4: b0:a0:08:e3:93:d8:2c:c9:05:77:29:ce:ff:b0:80: bc:c1:9c:42:8c:0e:80:b9:f8:4f:76:c3:2e:eb:57: f0:b0:43:90:42:a5:5e:2d:ff:85:65:3e:c7:97:9b: ad:52:ff:93:2e:df:20:93:31:18:55:51:c4:0f:b8: 08:38:8a:13:3a:b0:fc:18:3b:0c:4d:49:06:47:78: 2f:01:64:52:95:18:e7:34:af:18:cd:94:3c:9c:14: 64:e1:15:6c:4f:d3:c0:25:c2:ee:0b:7d:ea:83:c8: 73:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:6F:3D:75:C1:CF:C8:14:CA:1C:F5:6F:57:2E:4A:7C:29:E4:01:21 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/E289dcHPyBTKHPVvVy5KfCnkASE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.107.160.0/19 Signature Algorithm: sha256WithRSAEncryption a1:14:ef:56:98:79:84:ed:36:cc:85:dc:fe:9d:dc:fb:47:96: f0:30:cc:6d:ef:b8:14:96:15:6a:bc:b3:00:2a:e3:91:90:06: 81:ca:4f:d8:0a:78:6a:bc:30:47:d2:87:0d:b6:1e:2d:b7:b9: 78:36:6e:aa:09:61:01:8f:2b:c4:72:ed:65:ff:dc:4d:b8:45: c1:82:7c:7b:66:96:a3:a8:f8:96:13:b8:a5:4f:4f:a5:64:0d: 6f:20:62:62:db:13:92:d4:3d:4a:d5:c0:a8:8e:b3:8c:58:aa: 66:8d:38:c5:eb:b2:fe:c5:f1:b1:d9:9b:30:26:b4:9e:5f:fa: 4d:6a:d3:32:78:97:22:06:b1:d7:47:86:57:61:67:99:18:8d: 62:11:5a:13:a4:42:a4:85:e4:fa:a7:61:79:fc:e2:9a:c3:c9: 68:ff:dc:0a:1c:42:e4:55:5e:80:9a:91:7d:d2:1f:79:56:56: af:0a:55:b9:b4:7d:34:d5:26:63:df:7a:25:cc:dc:d9:bf:22: 45:82:20:47:ef:25:eb:cd:d8:ec:aa:77:07:03:78:c8:4a:68: bb:58:9a:f5:71:0a:b8:9f:ca:eb:53:e8:5c:5e:e7:f6:ed:a2: d9:a8:3f:a9:82:77:8a:56:01:74:c5:73:03:e8:cc:b4:cd:6e: d0:16:c5:5a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCb4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQwMjJaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDEzNkYzRDc1QzFDRkM4 MTRDQTFDRjU2RjU3MkU0QTdDMjlFNDAxMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgXKGEU1XJ2WpEARVHFZequZRbqmSs673Bw9bZUC6Zys9Hx+nH 0vCP0oDwzmsIvWq7cT4t4O3wr+xfIj1pWLCVfToVre0K7vDT+iiXXACp6Gt8X78g 38eESvV03GIShQLfude2cYdorNpq+I8VroGxSh/rFmUUR6Tb9777PhpxYZXVBwpc 2sJrS83vn1nwAnVBVF8AxLCgCOOT2CzJBXcpzv+wgLzBnEKMDoC5+E92wy7rV/Cw Q5BCpV4t/4VlPseXm61S/5Mu3yCTMRhVUcQPuAg4ihM6sPwYOwxNSQZHeC8BZFKV GOc0rxjNlDycFGThFWxP08Alwu4LfeqDyHNtAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUE289dcHPyBTKHPVvVy5KfCnkASEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0UyODlkY0hQeUJUS0hQVnZWeTVLZkNua0FTRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUxa6AwDQYJKoZIhvcNAQELBQADggEBAKEU71aYeYTtNsyF3P6d3PtHlvAw zG3vuBSWFWq8swAq45GQBoHKT9gKeGq8MEfShw22Hi23uXg2bqoJYQGPK8Ry7WX/ 3E24RcGCfHtmlqOo+JYTuKVPT6VkDW8gYmLbE5LUPUrVwKiOs4xYqmaNOMXrsv7F 8bHZmzAmtJ5f+k1q0zJ4lyIGsddHhldhZ5kYjWIRWhOkQqSF5PqnYXn84prDyWj/ 3AocQuRVXoCakX3SH3lWVq8KVbm0fTTVJmPfeiXM3Nm/IkWCIEfvJevN2OyqdwcD eMhKaLtYmvVxCrifyutT6Fxe5/btotmoP6mCd4pWAXTFcwPozLTNbtAWxVo= -----END CERTIFICATE-----Generated at Sun Feb 16 22:07:08 2025 by rpki-client