$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/HCkv2wRl_6Xg3LBkGOSrH1hHgEc.roa File: HCkv2wRl_6Xg3LBkGOSrH1hHgEc.roa (raw, json) Hash identifier: 3+bM5xUNSFIqRALwNMC4mFBxiECqr7RF5CatmHXN8jI= Subject key identifier: 1C:29:2F:DB:04:65:FF:A5:E0:DC:B0:64:18:E4:AB:1F:58:47:80:47 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 08FF Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/HCkv2wRl_6Xg3LBkGOSrH1hHgEc.roa Signing time: Tue 30 Apr 2024 02:26:39 +0000 ROA not before: Tue 30 Apr 2024 02:26:39 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.77.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2303 (0x8ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:26:39 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=1C292FDB0465FFA5E0DCB06418E4AB1F58478047 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:48:d6:02:ec:72:1b:86:55:a5:87:a0:b6:4a: c2:3d:3f:6c:a3:0c:1f:88:c6:52:4d:11:da:69:d5: 69:fa:f2:4a:12:fd:28:81:34:67:91:05:7f:7e:e2: 44:6c:be:bb:f8:9c:a1:16:19:a8:f5:5a:26:a0:8b: 31:d5:e9:81:b6:c0:75:82:07:20:cc:d1:5b:e1:67: 13:23:2e:86:d9:0a:ab:a6:d6:d0:53:8e:fc:cd:60: 7b:9c:c4:76:d6:e7:60:f9:ff:4f:12:1d:d1:c7:b1: 1f:f2:11:62:c2:6b:86:5e:4d:82:36:43:43:f7:93: 3f:91:e7:07:9e:c2:4a:7e:d9:a2:a8:66:9d:bc:6b: a5:a2:2a:9b:f3:21:ee:5d:7b:dc:22:2f:7b:42:22: e8:a6:b9:53:be:bc:41:1e:b0:f7:37:6f:af:98:a8: 1d:bf:9d:1c:fa:6c:dd:58:0c:e0:3e:62:2c:85:80: f5:55:8c:f6:b8:60:f5:7b:29:98:77:c2:7c:e6:ce: 90:15:9b:e6:92:f0:87:bf:bb:d8:19:df:48:dd:bc: 0a:c4:04:f1:ba:5f:f6:32:c4:9d:df:77:5e:6b:31: 7b:1b:50:96:ba:bc:40:2b:84:23:be:c8:e3:6c:28: 9b:23:9c:f4:b3:7d:e1:88:aa:ab:b4:00:08:27:47: d1:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:29:2F:DB:04:65:FF:A5:E0:DC:B0:64:18:E4:AB:1F:58:47:80:47 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/HCkv2wRl_6Xg3LBkGOSrH1hHgEc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.77.0.0/16 Signature Algorithm: sha256WithRSAEncryption bd:d0:69:7d:ff:81:7c:a8:fb:f0:ec:9d:e3:d3:46:5f:5d:6f: d6:38:9d:c1:12:e6:3a:31:dc:9d:e4:43:f6:09:14:e2:73:15: fb:08:10:45:2d:1a:d4:dd:94:42:33:e8:c0:e0:b8:10:96:be: 10:78:1a:6a:c6:59:32:80:4f:fc:e9:23:38:32:c4:fc:4e:33: 1d:4b:d9:9b:13:69:11:17:9e:8e:c9:1d:a2:18:e4:f4:70:69: 6e:78:d4:4d:79:41:a7:92:9d:b1:e0:bb:fe:f5:8d:93:57:17: 34:41:f3:37:18:55:9e:6c:1b:f0:1b:32:55:fe:b1:0c:ee:b2: be:62:37:f2:46:56:30:25:81:eb:47:0a:e5:d6:18:d9:69:32: be:58:94:d4:0c:40:97:bd:e7:25:9b:e8:82:9f:2f:b2:f8:fd: 16:d7:c1:e3:06:78:d0:96:0d:c1:95:0e:72:3e:2b:b1:5b:1f: d6:6d:83:d2:8e:80:67:9e:e0:0a:75:ea:c0:35:72:b7:d7:91: 12:dd:6d:35:b9:30:a4:0f:92:2f:e9:5c:7a:4b:53:36:48:c2: 23:a3:b3:a8:6d:45:0c:8f:36:8e:d7:5b:14:0a:ae:8b:d7:3b: 2c:5a:20:10:00:58:5e:d5:ec:d3:e7:01:48:70:8f:fe:6b:c0: 7d:c1:6e:66 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICCP8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjI2MzlaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDFDMjkyRkRCMDQ2NUZG QTVFMERDQjA2NDE4RTRBQjFGNTg0NzgwNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdSNYC7HIbhlWlh6C2SsI9P2yjDB+IxlJNEdpp1Wn68koS/SiB NGeRBX9+4kRsvrv4nKEWGaj1WiagizHV6YG2wHWCByDM0VvhZxMjLobZCqum1tBT jvzNYHucxHbW52D5/08SHdHHsR/yEWLCa4ZeTYI2Q0P3kz+R5weewkp+2aKoZp28 a6WiKpvzIe5de9wiL3tCIuimuVO+vEEesPc3b6+YqB2/nRz6bN1YDOA+YiyFgPVV jPa4YPV7KZh3wnzmzpAVm+aS8Ie/u9gZ30jdvArEBPG6X/YyxJ3fd15rMXsbUJa6 vEArhCO+yONsKJsjnPSzfeGIqqu0AAgnR9FNAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUHCkv2wRl/6Xg3LBkGOSrH1hHgEcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0hDa3Yyd1JsXzZYZzNMQmtHT1NySDFoSGdFYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwABTTANBgkqhkiG9w0BAQsFAAOCAQEAvdBpff+BfKj78Oyd49NGX11v1jid wRLmOjHcneRD9gkU4nMV+wgQRS0a1N2UQjPowOC4EJa+EHgaasZZMoBP/OkjODLE /E4zHUvZmxNpEReejskdohjk9HBpbnjUTXlBp5KdseC7/vWNk1cXNEHzNxhVnmwb 8BsyVf6xDO6yvmI38kZWMCWB60cK5dYY2WkyvliU1AxAl73nJZvogp8vsvj9FtfB 4wZ40JYNwZUOcj4rsVsf1m2D0o6AZ57gCnXqwDVyt9eREt1tNbkwpA+SL+lcektT NkjCI6OzqG1FDI82jtdbFAqui9c7LFogEABYXtXs0+cBSHCP/mvAfcFuZg== -----END CERTIFICATE-----Generated at Sun Feb 16 22:32:23 2025 by rpki-client