$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/GzT_z0zhDoyNYBK0bIKSSC5bw1U.roa File: GzT_z0zhDoyNYBK0bIKSSC5bw1U.roa (raw, json) Hash identifier: X4jz3RaoylzhwSQPa6LAdXh+Vqw9p5hzjWTZhDU3zAA= Subject key identifier: 1B:34:FF:CF:4C:E1:0E:8C:8D:60:12:B4:6C:82:92:48:2E:5B:C3:55 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0972 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/GzT_z0zhDoyNYBK0bIKSSC5bw1U.roa Signing time: Sun 30 Jun 2024 01:33:40 +0000 ROA not before: Sun 30 Jun 2024 01:33:40 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 219.122.68.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2418 (0x972) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:33:40 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=1B34FFCF4CE10E8C8D6012B46C8292482E5BC355 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:01:89:97:ea:2b:d2:e4:5a:b5:9b:2e:58:ae: 07:89:21:f6:cc:eb:72:fb:9a:05:b0:68:07:0a:fd: de:f2:95:c2:e1:5f:fc:97:6b:a4:91:d0:6c:93:e2: be:50:21:fc:9f:ac:2b:a1:cf:3e:6c:b6:56:4e:26: 8a:c3:28:e6:da:f8:d1:ec:ff:bc:52:eb:b9:be:a6: e1:0c:ce:b9:53:ac:3f:97:73:54:6b:c6:17:81:10: 3a:c8:5e:0e:f5:34:b6:c6:84:99:b7:d7:64:85:a5: f5:1e:ca:1e:21:55:b1:65:65:ef:40:00:92:1b:9b: 3b:01:51:bb:55:fd:1b:5b:80:ea:dd:65:11:7e:49: b4:d5:c1:e9:39:32:39:25:07:b0:9a:cf:d0:a7:91: dd:0e:b4:7b:d4:fb:4e:89:85:33:19:46:e7:e1:a6: 64:e6:aa:e2:ea:7d:80:a6:68:09:f1:69:ff:20:f2: dc:af:3b:32:1d:cd:1b:6b:f1:f6:9d:1c:e1:37:6c: fb:8f:9d:51:28:a0:6a:a8:b1:d3:ee:36:81:aa:59: 19:7e:85:ab:ac:19:58:e7:ca:d2:6d:1b:d4:33:2b: 69:82:8b:d6:9b:ca:61:13:87:7a:34:3a:c7:31:99: d4:bc:9b:65:1a:d3:36:9f:94:3e:dd:f1:a3:db:85: 14:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:34:FF:CF:4C:E1:0E:8C:8D:60:12:B4:6C:82:92:48:2E:5B:C3:55 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/GzT_z0zhDoyNYBK0bIKSSC5bw1U.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.122.68.0/22 Signature Algorithm: sha256WithRSAEncryption 23:b6:3c:df:95:cd:16:53:12:00:65:d3:f1:13:13:7d:46:33: dc:f3:04:a1:76:6d:15:ad:0d:8f:d2:de:5b:0e:2e:03:72:90: 9f:bb:ec:71:71:2a:9b:10:84:ce:d7:71:46:6d:92:83:d5:3b: bf:d1:2b:cb:f4:3e:e3:06:1d:3f:c8:5f:bb:bd:5a:a0:a4:65: 55:1e:47:98:07:75:6d:25:7c:28:2a:64:0d:0d:88:34:fa:12: 72:7e:6f:f8:07:16:63:4a:8a:b5:b6:2b:14:51:11:ec:04:34: e9:57:ac:b6:1c:ef:fd:a3:b8:8a:59:2d:27:e6:01:7d:1a:65: 86:8a:a0:e1:5b:d5:a9:bb:59:fc:24:ec:ee:8a:bc:cb:e4:f5: d1:f7:5d:7f:64:ab:1c:b9:cc:a4:b2:16:33:0c:c5:e8:fc:31: 30:b4:50:d2:bb:5b:6c:d6:30:0d:dc:39:e7:8d:aa:ce:53:7d: 92:c3:10:6e:70:59:51:ac:3f:d2:e9:f8:d0:74:11:68:4f:27: 51:84:2d:b1:ad:98:36:29:6e:76:1f:49:1d:4a:f9:02:73:8e: 1e:1d:06:72:55:6a:50:a7:02:91:2f:63:f4:79:0c:6b:bc:84: cc:57:73:0d:77:38:fd:ec:d2:9e:73:d2:a7:34:e4:04:99:5a: f0:6b:69:6c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCXIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTMzNDBaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDFCMzRGRkNGNENFMTBF OEM4RDYwMTJCNDZDODI5MjQ4MkU1QkMzNTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnAYmX6ivS5Fq1my5YrgeJIfbM63L7mgWwaAcK/d7ylcLhX/yX a6SR0GyT4r5QIfyfrCuhzz5stlZOJorDKOba+NHs/7xS67m+puEMzrlTrD+Xc1Rr xheBEDrIXg71NLbGhJm312SFpfUeyh4hVbFlZe9AAJIbmzsBUbtV/RtbgOrdZRF+ SbTVwek5MjklB7Caz9Cnkd0OtHvU+06JhTMZRufhpmTmquLqfYCmaAnxaf8g8tyv OzIdzRtr8fadHOE3bPuPnVEooGqosdPuNoGqWRl+hausGVjnytJtG9QzK2mCi9ab ymETh3o0OscxmdS8m2Ua0zaflD7d8aPbhRQBAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUGzT/z0zhDoyNYBK0bIKSSC5bw1UwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0d6VF96MHpoRG95TllCSzBiSUtTU0M1YncxVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALbekQwDQYJKoZIhvcNAQELBQADggEBACO2PN+VzRZTEgBl0/ETE31GM9zz BKF2bRWtDY/S3lsOLgNykJ+77HFxKpsQhM7XcUZtkoPVO7/RK8v0PuMGHT/IX7u9 WqCkZVUeR5gHdW0lfCgqZA0NiDT6EnJ+b/gHFmNKirW2KxRREewENOlXrLYc7/2j uIpZLSfmAX0aZYaKoOFb1am7Wfwk7O6KvMvk9dH3XX9kqxy5zKSyFjMMxej8MTC0 UNK7W2zWMA3cOeeNqs5TfZLDEG5wWVGsP9Lp+NB0EWhPJ1GELbGtmDYpbnYfSR1K +QJzjh4dBnJValCnApEvY/R5DGu8hMxXcw13OP3s0p5z0qc05ASZWvBraWw= -----END CERTIFICATE-----Generated at Sun Feb 16 22:28:37 2025 by rpki-client