$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/IdlAiYTeE8rm55ftESBv7RIHBRw.roa File: IdlAiYTeE8rm55ftESBv7RIHBRw.roa (raw, json) Hash identifier: iyo1SItNFOtttyrGNZ5AOFGtVAInCjbtTzL+VPvaeCI= Subject key identifier: 21:D9:40:89:84:DE:13:CA:E6:E7:97:ED:11:20:6F:ED:12:07:05:1C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0667 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/IdlAiYTeE8rm55ftESBv7RIHBRw.roa Signing time: Tue 30 Apr 2024 01:34:53 +0000 ROA not before: Tue 30 Apr 2024 01:34:53 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 220.210.64.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1639 (0x667) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:34:53 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=21D9408984DE13CAE6E797ED11206FED1207051C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3d:09:45:e2:2e:fc:a6:e2:de:9e:78:3c:ba: df:99:dc:b3:58:77:7c:ea:69:59:30:f5:3e:d1:64: 62:aa:fb:d7:1c:2b:a3:c1:10:12:26:39:e1:7c:0a: 3d:b5:d0:3a:d2:b8:7d:d3:46:d0:3f:c7:56:13:fb: 94:8e:22:3f:ce:5d:38:a5:e4:24:e6:69:e4:8b:6c: 1f:26:18:5a:67:42:09:05:18:6c:24:fd:b3:d3:9a: 3d:8a:e0:ae:74:ef:3d:34:2a:0a:fe:5b:df:fb:fc: f7:dc:1e:f0:8f:96:a3:5a:c8:02:51:fb:cd:93:d2: db:4a:19:36:25:7f:66:54:e3:67:1f:87:d5:28:77: 2e:71:cf:e5:fc:96:bc:0c:22:f4:7a:ef:86:57:62: 56:25:da:f3:ea:b4:65:f9:61:67:f7:aa:37:65:a8: a6:18:a9:fe:f4:66:56:8c:65:10:a8:2e:5e:5b:99: 76:b9:fe:b2:5e:4d:11:3e:29:d7:29:37:6d:54:44: 67:11:43:7e:31:10:c5:6e:4f:be:85:13:ba:02:f5: 47:36:8e:5e:33:8e:f9:f9:ab:4b:11:e6:8d:b7:b9: f8:7f:16:3c:74:80:f4:eb:4c:74:cb:36:1d:6b:6a: 4a:0a:8e:50:94:c8:8a:c4:e3:14:91:c8:7e:39:8e: 68:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:D9:40:89:84:DE:13:CA:E6:E7:97:ED:11:20:6F:ED:12:07:05:1C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/IdlAiYTeE8rm55ftESBv7RIHBRw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.64.0/22 Signature Algorithm: sha256WithRSAEncryption da:d0:2e:1f:90:5e:33:d3:7d:3c:c3:dd:82:af:ad:1c:f7:b0: 80:5c:bc:3b:bd:4b:01:4f:cf:b8:b2:68:8a:49:1b:33:27:20: e4:3e:e4:4d:42:26:fb:61:d3:ff:19:04:c9:a0:83:7d:32:2d: ed:76:43:92:74:a9:fd:66:a6:07:a1:31:b2:fb:9f:f6:95:c8: bd:6a:b5:73:a7:02:d5:3a:88:c5:43:d4:83:ff:04:c9:c7:68: 44:30:30:67:93:7c:65:1e:32:ae:85:95:d2:97:c9:d7:de:7e: 5f:20:b0:3b:d5:f7:02:47:6d:e7:49:99:43:af:54:79:ba:b3: 0a:15:c5:7d:6b:e4:91:d7:76:30:96:f8:db:ed:57:6a:54:1b: dd:4e:de:41:10:70:10:b8:cf:0f:7b:bd:8b:8c:84:1e:b1:07: df:98:45:cc:03:13:50:f7:12:09:f9:21:90:91:54:a3:46:5b: d0:41:ee:0d:d7:87:2e:8c:2f:90:af:52:31:fe:b1:8a:b5:20: 85:df:fb:3c:ce:fc:7f:ec:31:0b:2c:0a:75:8b:2d:7a:f6:9d: a2:31:d8:22:22:eb:5f:da:56:33:d5:b4:60:20:3f:42:ee:0d: 6c:84:ea:2b:85:b1:8d:83:8c:e8:00:7a:24:f4:17:22:6d:cc: db:1a:b4:89 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBmcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTM0NTNaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDIxRDk0MDg5ODRERTEz Q0FFNkU3OTdFRDExMjA2RkVEMTIwNzA1MUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtPQlF4i78puLenng8ut+Z3LNYd3zqaVkw9T7RZGKq+9ccK6PB EBImOeF8Cj210DrSuH3TRtA/x1YT+5SOIj/OXTil5CTmaeSLbB8mGFpnQgkFGGwk /bPTmj2K4K507z00Kgr+W9/7/PfcHvCPlqNayAJR+82T0ttKGTYlf2ZU42cfh9Uo dy5xz+X8lrwMIvR674ZXYlYl2vPqtGX5YWf3qjdlqKYYqf70ZlaMZRCoLl5bmXa5 /rJeTRE+KdcpN21URGcRQ34xEMVuT76FE7oC9Uc2jl4zjvn5q0sR5o23ufh/Fjx0 gPTrTHTLNh1rakoKjlCUyIrE4xSRyH45jmivAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUIdlAiYTeE8rm55ftESBv7RIHBRwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0lkbEFpWVRlRThybTU1ZnRFU0J2N1JJSEJSdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALc0kAwDQYJKoZIhvcNAQELBQADggEBANrQLh+QXjPTfTzD3YKvrRz3sIBc vDu9SwFPz7iyaIpJGzMnIOQ+5E1CJvth0/8ZBMmgg30yLe12Q5J0qf1mpgehMbL7 n/aVyL1qtXOnAtU6iMVD1IP/BMnHaEQwMGeTfGUeMq6FldKXydfefl8gsDvV9wJH bedJmUOvVHm6swoVxX1r5JHXdjCW+NvtV2pUG91O3kEQcBC4zw97vYuMhB6xB9+Y RcwDE1D3Egn5IZCRVKNGW9BB7g3Xhy6ML5CvUjH+sYq1IIXf+zzO/H/sMQssCnWL LXr2naIx2CIi61/aVjPVtGAgP0LuDWyE6iuFsY2DjOgAeiT0FyJtzNsatIk= -----END CERTIFICATE-----Generated at Sun Feb 16 22:11:23 2025 by rpki-client