$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/I_8GcEgt4_gN8nqtXemsqMhRQaQ.roa File: I_8GcEgt4_gN8nqtXemsqMhRQaQ.roa (raw, json) Hash identifier: Hjrm4sDMmI2YhDFXPbumnxTxdUf1PGOMjqyydJV2ois= Subject key identifier: 23:FF:06:70:48:2D:E3:F8:0D:F2:7A:AD:5D:E9:AC:A8:C8:51:41:A4 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A4B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/I_8GcEgt4_gN8nqtXemsqMhRQaQ.roa Signing time: Sun 30 Jun 2024 01:48:29 +0000 ROA not before: Sun 30 Jun 2024 01:48:29 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 110.161.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2635 (0xa4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:48:29 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=23FF0670482DE3F80DF27AAD5DE9ACA8C85141A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ec:63:fb:e6:24:0a:2e:03:4e:1b:62:10:85: ce:c4:7f:9f:8b:5f:6e:be:36:11:07:ce:a6:52:bf: 6a:73:95:03:c8:d6:0f:26:55:ea:d9:9d:64:e3:c0: c4:f3:b6:b2:d3:20:c3:53:c3:ee:57:14:04:a2:af: f8:0a:60:a6:2e:66:90:8d:44:53:81:27:71:11:cb: 1a:8e:ab:cb:f9:17:bd:80:67:d3:09:dd:48:33:d1: dc:77:ad:92:d4:9a:18:af:ce:c8:a4:46:dc:de:1a: 2f:16:84:ff:93:87:3a:94:a0:43:36:0b:5c:82:95: 65:18:00:8e:f3:ee:91:e0:ac:f2:1c:4d:3d:d8:9a: 68:5a:0a:21:ee:27:d3:2e:43:b2:58:07:1a:6b:c0: bc:c1:12:b5:03:39:7d:13:af:36:24:62:b3:34:c2: 4f:3f:e4:31:14:bf:b8:50:ca:d0:6d:92:31:f0:df: b7:28:23:7f:81:ab:68:17:74:26:d5:8a:9e:98:75: 28:e1:de:f8:73:51:b5:e1:65:34:90:ba:b9:ce:a9: 71:f1:24:ad:94:be:4e:35:7e:f4:80:18:d1:12:43: 61:f0:f0:89:e5:1f:51:fe:c9:e3:4a:3e:3e:62:43: 1f:23:d3:e5:01:64:31:8a:68:21:0b:56:d6:4a:f2: 17:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:FF:06:70:48:2D:E3:F8:0D:F2:7A:AD:5D:E9:AC:A8:C8:51:41:A4 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/I_8GcEgt4_gN8nqtXemsqMhRQaQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.161.240.0/20 Signature Algorithm: sha256WithRSAEncryption 16:c6:31:34:d8:36:42:b1:81:3f:9c:82:7e:9d:d0:75:6c:06: 7a:ab:c3:83:b7:58:f5:e2:5c:0c:bd:1c:09:c1:bb:4f:cd:55: 64:69:a5:ff:57:8c:ac:b1:d2:a2:37:73:26:23:40:fc:b7:59: ca:4b:65:39:d2:80:a4:29:11:a5:ea:7c:dc:bd:70:d5:e8:55: ca:3f:12:69:91:4f:63:d7:6d:6b:d1:d3:5e:7a:f2:43:70:09: 9e:fc:ab:1b:20:68:8f:d1:b0:33:b0:77:7f:31:ed:e9:40:9b: 96:a0:d4:5a:2a:f6:da:b7:d1:8c:97:46:2c:b5:26:44:09:1a: 71:cc:eb:15:4b:23:ac:cd:3c:17:a8:13:e5:eb:f9:94:85:d1: c8:f8:e9:10:97:17:d2:6b:f2:ec:93:f7:a8:fb:3f:cf:b2:cf: 6b:cc:9d:e7:62:5b:93:df:af:34:65:06:b6:03:81:98:89:01: 59:94:c7:2f:c0:b3:b9:b0:82:2a:fa:8a:7d:fc:2e:8f:34:a9: e1:89:eb:10:ff:5e:be:c0:37:19:84:f1:ae:8c:aa:1a:a2:0e: ce:de:f1:c4:4d:3a:39:7a:e2:7f:d6:ce:4f:cc:21:c8:5e:dc: 34:bb:93:01:f4:36:13:6b:a7:39:cb:2f:bc:77:9b:34:da:5c: 09:e9:48:72 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCkswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQ4MjlaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDIzRkYwNjcwNDgyREUz RjgwREYyN0FBRDVERTlBQ0E4Qzg1MTQxQTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDC7GP75iQKLgNOG2IQhc7Ef5+LX26+NhEHzqZSv2pzlQPI1g8m VerZnWTjwMTztrLTIMNTw+5XFASir/gKYKYuZpCNRFOBJ3ERyxqOq8v5F72AZ9MJ 3Ugz0dx3rZLUmhivzsikRtzeGi8WhP+ThzqUoEM2C1yClWUYAI7z7pHgrPIcTT3Y mmhaCiHuJ9MuQ7JYBxprwLzBErUDOX0TrzYkYrM0wk8/5DEUv7hQytBtkjHw37co I3+Bq2gXdCbVip6YdSjh3vhzUbXhZTSQurnOqXHxJK2Uvk41fvSAGNESQ2Hw8Inl H1H+yeNKPj5iQx8j0+UBZDGKaCELVtZK8hc3AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUI/8GcEgt4/gN8nqtXemsqMhRQaQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0lfOEdjRWd0NF9nTjhucXRYZW1zcU1oUlFhUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARuofAwDQYJKoZIhvcNAQELBQADggEBABbGMTTYNkKxgT+cgn6d0HVsBnqr w4O3WPXiXAy9HAnBu0/NVWRppf9XjKyx0qI3cyYjQPy3WcpLZTnSgKQpEaXqfNy9 cNXoVco/EmmRT2PXbWvR01568kNwCZ78qxsgaI/RsDOwd38x7elAm5ag1Foq9tq3 0YyXRiy1JkQJGnHM6xVLI6zNPBeoE+Xr+ZSF0cj46RCXF9Jr8uyT96j7P8+yz2vM nediW5PfrzRlBrYDgZiJAVmUxy/As7mwgir6in38Lo80qeGJ6xD/Xr7ANxmE8a6M qhqiDs7e8cRNOjl64n/Wzk/MIche3DS7kwH0NhNrpznLL7x3mzTaXAnpSHI= -----END CERTIFICATE-----Generated at Sun Feb 16 22:06:19 2025 by rpki-client