$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/EnGjHbLaNFGGFBWolDZ7gTAXyKQ.roa File: EnGjHbLaNFGGFBWolDZ7gTAXyKQ.roa (raw, json) Hash identifier: vP3JTCBO1w95+CNGKxevzL5BHX8sn8gF5Sg4FjyhNzs= Subject key identifier: 12:71:A3:1D:B2:DA:34:51:86:14:15:A8:94:36:7B:81:30:17:C8:A4 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0710 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/EnGjHbLaNFGGFBWolDZ7gTAXyKQ.roa Signing time: Tue 30 Apr 2024 01:52:57 +0000 ROA not before: Tue 30 Apr 2024 01:52:57 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.106.206.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1808 (0x710) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:52:57 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=1271A31DB2DA3451861415A894367B813017C8A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:81:2a:db:7b:e8:36:e6:25:d7:9a:8e:b0:58: a0:51:06:48:55:49:fe:f3:ec:d9:cb:29:cf:f6:09: 27:c5:db:fe:fd:b7:91:ef:98:84:81:46:db:7f:b8: 1c:c6:80:92:a1:82:06:df:47:52:42:e8:2d:0d:38: a0:87:21:95:cc:d0:33:71:37:ba:54:b7:6d:e4:57: 0b:be:05:9c:3c:bf:db:25:87:05:8f:12:24:8f:cc: f8:55:5b:ce:2d:f8:be:9f:13:25:9c:a5:c2:44:21: 2b:bf:ba:52:5b:6c:72:9f:48:b0:7f:f5:94:06:96: fe:f5:92:6f:0a:75:2c:0c:9e:a8:0e:c1:fc:81:3b: 3f:c2:0e:15:b5:49:90:14:06:c4:b0:0d:00:d3:07: f9:82:07:d2:bb:ae:39:84:7c:64:db:07:b7:b9:6f: 50:9a:c3:af:f2:c9:8f:ea:00:a8:ac:a2:1f:61:0c: 7d:a3:17:74:0b:c1:d5:15:59:f0:ca:76:48:1b:b0: 75:4a:1b:06:8b:77:e5:04:8c:79:ab:cc:02:80:21: 54:59:ae:7a:3c:45:d4:65:d5:12:f6:74:10:6c:d6: b5:da:9b:2f:50:ef:30:c1:71:76:50:b8:9e:b8:66: 4a:8a:a3:fa:43:af:86:2d:b6:f4:05:0f:03:d0:7a: 73:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:71:A3:1D:B2:DA:34:51:86:14:15:A8:94:36:7B:81:30:17:C8:A4 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/EnGjHbLaNFGGFBWolDZ7gTAXyKQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.206.0/23 Signature Algorithm: sha256WithRSAEncryption b5:b6:2e:08:e0:fb:11:25:24:35:91:7b:45:c1:c8:e7:18:f6: 54:14:5d:85:79:56:cb:75:44:64:e7:cf:9d:d5:82:06:e2:36: 57:68:bb:44:18:ff:89:11:ec:0f:91:83:e3:c9:cb:f0:da:74: d7:c2:66:5b:03:08:38:c5:91:32:cd:3c:07:14:a4:f5:81:62: f7:f4:61:26:6c:29:1e:59:ac:5d:4b:94:19:57:42:aa:0d:f0: 65:75:de:37:06:4d:f7:0b:a6:17:a6:ed:31:41:70:cd:b7:cb: fe:a4:84:ea:a7:97:6d:1c:ea:c0:f4:6d:c4:4a:20:fd:57:b8: 04:9f:ed:ca:51:82:ab:89:6e:12:38:97:c7:1f:ec:e9:e9:6f: d7:79:94:1f:d9:2c:b2:cb:28:d3:7d:d1:91:0f:70:bd:dd:4d: eb:01:df:6f:a5:86:09:7a:25:1b:6d:1c:77:23:9a:19:c0:33: bb:2f:c5:36:03:e8:8d:8d:d8:aa:85:ab:37:29:f6:65:2b:70: 05:e7:c1:e3:17:b7:7d:af:70:27:4c:fb:de:12:97:81:b5:7c: 02:c5:53:45:1f:10:26:f7:23:be:0f:db:da:07:4b:67:17:e9: a9:41:19:e1:60:86:11:3c:47:37:3d:2d:93:d8:de:89:87:89: 57:6c:7d:e3 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBxAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTUyNTdaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDEyNzFBMzFEQjJEQTM0 NTE4NjE0MTVBODk0MzY3QjgxMzAxN0M4QTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvgSrbe+g25iXXmo6wWKBRBkhVSf7z7NnLKc/2CSfF2/79t5Hv mISBRtt/uBzGgJKhggbfR1JC6C0NOKCHIZXM0DNxN7pUt23kVwu+BZw8v9slhwWP EiSPzPhVW84t+L6fEyWcpcJEISu/ulJbbHKfSLB/9ZQGlv71km8KdSwMnqgOwfyB Oz/CDhW1SZAUBsSwDQDTB/mCB9K7rjmEfGTbB7e5b1Caw6/yyY/qAKisoh9hDH2j F3QLwdUVWfDKdkgbsHVKGwaLd+UEjHmrzAKAIVRZrno8RdRl1RL2dBBs1rXamy9Q 7zDBcXZQuJ64ZkqKo/pDr4YttvQFDwPQenMFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUEnGjHbLaNFGGFBWolDZ7gTAXyKQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0VuR2pIYkxhTkZHR0ZCV29sRFo3Z1RBWHlLUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExas4wDQYJKoZIhvcNAQELBQADggEBALW2Lgjg+xElJDWRe0XByOcY9lQU XYV5Vst1RGTnz53VggbiNldou0QY/4kR7A+Rg+PJy/DadNfCZlsDCDjFkTLNPAcU pPWBYvf0YSZsKR5ZrF1LlBlXQqoN8GV13jcGTfcLphem7TFBcM23y/6khOqnl20c 6sD0bcRKIP1XuASf7cpRgquJbhI4l8cf7Onpb9d5lB/ZLLLLKNN90ZEPcL3dTesB 32+lhgl6JRttHHcjmhnAM7svxTYD6I2N2KqFqzcp9mUrcAXnweMXt32vcCdM+94S l4G1fALFU0UfECb3I74P29oHS2cX6alBGeFghhE8Rzc9LZPY3omHiVdsfeM= -----END CERTIFICATE-----Generated at Sun Feb 16 22:34:33 2025 by rpki-client