$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/IF3A6gdF0PiKuiHg3a9UwYqCSPs.roa File: IF3A6gdF0PiKuiHg3a9UwYqCSPs.roa (raw, json) Hash identifier: 6zi3pLK4RBaml1GdNFBoSkLMvSKBXUmidmKH/QUhod4= Subject key identifier: 20:5D:C0:EA:07:45:D0:F8:8A:BA:21:E0:DD:AF:54:C1:8A:82:48:FB Certificate issuer: /CN=F89E0F15C1E20E191AAF17288F6E30FF01869A6E Certificate serial: 3E Authority key identifier: F8:9E:0F:15:C1:E2:0E:19:1A:AF:17:28:8F:6E:30:FF:01:86:9A:6E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/IF3A6gdF0PiKuiHg3a9UwYqCSPs.roa Signing time: Tue 30 Apr 2024 02:10:35 +0000 ROA not before: Tue 30 Apr 2024 02:10:35 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 148.68.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F89E0F15C1E20E191AAF17288F6E30FF01869A6E Validity Not Before: Apr 30 02:10:35 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=205DC0EA0745D0F88ABA21E0DDAF54C18A8248FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:19:49:93:cf:16:53:4f:f6:d0:17:23:fe:98: 34:54:79:2b:84:b9:6a:56:73:b3:f1:56:6d:58:80: 16:5b:14:b7:9a:35:1b:59:7b:0d:37:c1:c4:18:fa: d4:27:a3:b8:fc:42:44:3d:4d:e6:1a:e1:84:c2:39: 87:de:f3:33:a3:fe:b8:a2:83:5d:f9:64:aa:4a:23: 0f:73:f1:56:0e:17:c1:38:70:ea:37:c2:3e:f5:97: b9:6b:59:42:16:f5:b5:71:0b:84:08:ff:34:64:0b: ef:33:04:5a:68:8e:50:c3:e8:c8:a0:12:15:c5:90: 7b:fc:94:3b:3a:fe:a7:09:4d:62:45:fe:c5:c2:85: d1:25:a6:e0:4b:fb:55:cc:29:74:43:4f:05:5c:83: 71:35:da:da:e6:20:da:1f:05:6a:a3:2f:1c:0c:53: 0a:f8:e2:e9:fd:3d:d3:15:fd:f0:79:da:ea:27:32: 76:cd:76:40:b4:40:1a:19:94:dd:6f:85:65:72:59: 82:b3:bf:b3:19:68:c8:66:83:99:37:16:e2:b6:39: a9:57:a0:6f:ac:45:32:03:f2:1d:1b:47:15:32:15: 03:3e:f1:75:a7:e9:f6:49:66:1b:2e:b3:96:9e:5d: b9:9f:ea:ab:35:b9:07:61:54:98:90:2d:1e:d1:f5: 78:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:5D:C0:EA:07:45:D0:F8:8A:BA:21:E0:DD:AF:54:C1:8A:82:48:FB X509v3 Authority Key Identifier: keyid:F8:9E:0F:15:C1:E2:0E:19:1A:AF:17:28:8F:6E:30:FF:01:86:9A:6E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/IF3A6gdF0PiKuiHg3a9UwYqCSPs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 148.68.0.0/16 Signature Algorithm: sha256WithRSAEncryption 08:ad:b1:06:0c:da:48:7c:cb:27:68:b5:1c:30:9c:12:a8:5d: 7c:dc:7a:ea:b6:d7:d0:d1:3b:00:9d:1e:dc:75:b7:76:80:6a: b6:14:43:90:c6:7a:38:51:e7:eb:ee:7e:5e:d1:ff:f2:27:71: 99:8a:0a:69:b7:43:cf:80:69:ca:d0:c5:e3:a6:72:7b:47:6f: 77:24:ba:bb:e9:40:ae:37:dc:66:89:a1:ab:a0:a4:c9:52:e6: 76:0f:09:de:70:06:81:d0:62:16:43:54:6f:ec:6e:bd:65:2c: 08:e9:09:66:9f:07:fc:c9:95:f5:94:39:63:9e:a0:a3:ba:da: 9b:b4:e6:3f:f3:49:c9:25:b5:82:45:55:c5:cf:88:ff:53:71: 02:d2:fa:b4:59:2e:f2:9f:7c:f9:d0:7f:25:6f:75:8b:5d:bf: 1a:6e:a2:6e:9e:18:2d:17:af:07:0b:9b:46:a5:ed:9b:f4:b1: 4e:ec:01:69:37:66:5b:e5:57:e9:d6:40:0b:68:be:f7:b0:40: ee:8b:a6:90:cb:89:3d:6f:46:97:e9:8a:26:df:a5:84:c6:7d: 9a:0e:5d:42:bc:71:dc:29:ad:2e:dd:69:c0:6f:00:a8:23:31: a8:96:80:77:10:27:9e:16:1c:8d:3a:e3:ec:dc:4c:e8:bf:29: e6:41:d4:13 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIBPjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGODlF MEYxNUMxRTIwRTE5MUFBRjE3Mjg4RjZFMzBGRjAxODY5QTZFMB4XDTI0MDQzMDAy MTAzNVoXDTI1MDQxNTAxMzAwMlowMzExMC8GA1UEAxMoMjA1REMwRUEwNzQ1RDBG ODhBQkEyMUUwRERBRjU0QzE4QTgyNDhGQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALcZSZPPFlNP9tAXI/6YNFR5K4S5alZzs/FWbViAFlsUt5o1G1l7 DTfBxBj61CejuPxCRD1N5hrhhMI5h97zM6P+uKKDXflkqkojD3PxVg4XwThw6jfC PvWXuWtZQhb1tXELhAj/NGQL7zMEWmiOUMPoyKASFcWQe/yUOzr+pwlNYkX+xcKF 0SWm4Ev7VcwpdENPBVyDcTXa2uYg2h8FaqMvHAxTCvji6f090xX98Hna6icyds12 QLRAGhmU3W+FZXJZgrO/sxloyGaDmTcW4rY5qVegb6xFMgPyHRtHFTIVAz7xdafp 9klmGy6zlp5duZ/qqzW5B2FUmJAtHtH1eGMCAwEAAaOCAiMwggIfMB0GA1UdDgQW BBQgXcDqB0XQ+Iq6IeDdr1TBioJI+zAfBgNVHSMEGDAWgBT4ng8VweIOGRqvFyiP bjD/AYaabjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA5Ly1KNFBGY0hpRGhrYXJ4Y29qMjR3X3dHR21tNC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLy1KNFBGY0hpRGhrYXJ4Y29qMjR3X3dH R21tNC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zMDkvSUYzQTZnZEYwUGlLdWlIZzNhOVV3WXFDU1BzLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDAJREMA0GCSqGSIb3DQEBCwUAA4IBAQAIrbEGDNpIfMsnaLUcMJwSqF183Hrq ttfQ0TsAnR7cdbd2gGq2FEOQxno4Uefr7n5e0f/yJ3GZigppt0PPgGnK0MXjpnJ7 R293JLq76UCuN9xmiaGroKTJUuZ2DwnecAaB0GIWQ1Rv7G69ZSwI6Qlmnwf8yZX1 lDljnqCjutqbtOY/80nJJbWCRVXFz4j/U3EC0vq0WS7yn3z50H8lb3WLXb8abqJu nhgtF68HC5tGpe2b9LFO7AFpN2Zb5Vfp1kALaL73sEDui6aQy4k9b0aX6Yom36WE xn2aDl1CvHHcKa0u3WnAbwCoIzGoloB3ECeeFhyNOuPs3EzovynmQdQT -----END CERTIFICATE-----Generated at Sun Feb 16 22:07:34 2025 by rpki-client