$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/J3RehRb0YvTO_5C-eEmxqynH8Xo.roa File: J3RehRb0YvTO_5C-eEmxqynH8Xo.roa (raw, json) Hash identifier: Es1EohfRbuD7WudK+kQeEI/3fgN+CiwMQv2/DLTjaDE= Subject key identifier: 27:74:5E:85:16:F4:62:F4:CE:FF:90:BE:78:49:B1:AB:29:C7:F1:7A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0832 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/J3RehRb0YvTO_5C-eEmxqynH8Xo.roa Signing time: Tue 30 Apr 2024 02:14:27 +0000 ROA not before: Tue 30 Apr 2024 02:14:27 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.75.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2098 (0x832) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:14:27 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=27745E8516F462F4CEFF90BE7849B1AB29C7F17A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f2:57:59:48:81:3d:11:97:b5:49:87:32:73: 34:4f:a1:b7:e4:98:d4:bf:fd:72:32:31:df:89:83: 42:e2:d2:26:30:77:b9:c2:6c:77:66:ac:94:39:44: aa:18:c7:13:32:c8:9f:ff:a6:a5:6e:db:6f:6f:a0: 22:22:42:bf:9b:43:32:b4:17:50:54:52:76:cd:61: b7:4f:1f:6d:02:a2:2f:24:c2:68:25:ce:67:15:76: d9:2d:55:28:41:e9:28:02:03:f6:0b:e7:a3:76:db: 99:d9:f4:07:ef:75:56:2e:89:2c:50:a9:1f:27:61: 32:a9:78:3d:30:5c:5b:80:0a:27:68:b6:fc:4e:1e: 76:34:01:58:03:fd:a5:61:48:7f:a5:46:f8:b4:25: 6e:df:0d:56:64:83:1e:73:b6:d8:01:49:62:ad:be: 50:7d:39:c6:af:6c:5e:4f:72:0d:b6:20:0e:8e:6e: 9a:cc:96:fe:e9:57:4c:75:b8:43:b5:9a:99:3c:80: 32:3e:94:49:64:49:40:28:7b:a6:de:52:c3:d7:78: f1:d2:aa:9b:91:45:f6:9f:3d:1d:a0:c2:0a:d4:31: c6:21:39:40:38:38:1d:4d:29:a9:77:5b:1f:64:5e: d2:f2:b5:73:56:db:78:83:e5:55:b8:fc:65:1b:e7: 01:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:74:5E:85:16:F4:62:F4:CE:FF:90:BE:78:49:B1:AB:29:C7:F1:7A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/J3RehRb0YvTO_5C-eEmxqynH8Xo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.238.0/23 Signature Algorithm: sha256WithRSAEncryption 6a:e2:db:f6:06:c5:a5:db:45:ea:4b:31:30:2d:24:2d:f5:e3: 43:b8:51:3e:0f:d8:7f:10:13:39:0c:3f:07:0a:f7:d9:f3:8e: ca:46:be:2a:a8:04:3e:c1:8f:a9:67:b4:98:c4:25:7b:de:2f: 2f:38:d9:5e:2e:ac:58:2e:c4:aa:33:7e:b3:c2:aa:83:e7:e1: 4f:8f:3f:08:cc:ce:8d:8d:0f:f3:9e:c3:dd:16:d6:1b:fe:ab: 5f:89:0b:da:35:f7:2c:e4:f1:90:94:a7:25:5d:77:2e:b9:a1: 0b:9d:fc:4b:7d:e8:7f:2a:22:18:e8:9e:08:b4:75:3e:22:61: 90:82:d4:1e:91:d6:6d:b3:81:d7:91:0b:cc:58:ba:d3:88:cd: 4f:0d:51:fc:32:5f:a5:1d:1f:3f:c4:48:01:13:b7:b3:14:ab: bf:aa:28:01:14:d8:ee:a4:d9:9c:63:86:c5:6c:b4:a7:bb:d6: 8a:de:cd:81:cf:b3:22:78:58:c9:6b:c2:87:f8:79:06:4b:74: fc:d3:4f:21:ea:79:80:e4:dc:be:f1:ca:50:e1:70:c3:cc:12: 7f:76:94:94:6a:72:f7:35:82:81:52:a6:f7:df:27:dc:02:46: 1e:40:76:0d:34:c6:c4:7e:6e:b2:6a:3f:61:df:6c:25:93:d9: 7b:11:c7:26 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCDIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjE0MjdaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDI3NzQ1RTg1MTZGNDYy RjRDRUZGOTBCRTc4NDlCMUFCMjlDN0YxN0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDF8ldZSIE9EZe1SYcyczRPobfkmNS//XIyMd+Jg0Li0iYwd7nC bHdmrJQ5RKoYxxMyyJ//pqVu229voCIiQr+bQzK0F1BUUnbNYbdPH20Coi8kwmgl zmcVdtktVShB6SgCA/YL56N225nZ9AfvdVYuiSxQqR8nYTKpeD0wXFuACidotvxO HnY0AVgD/aVhSH+lRvi0JW7fDVZkgx5zttgBSWKtvlB9OcavbF5Pcg22IA6ObprM lv7pV0x1uEO1mpk8gDI+lElkSUAoe6beUsPXePHSqpuRRfafPR2gwgrUMcYhOUA4 OB1NKal3Wx9kXtLytXNW23iD5VW4/GUb5wHjAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUJ3RehRb0YvTO/5C+eEmxqynH8XowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0ozUmVoUmIwWXZUT181Qy1lRW14cXluSDhYby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBS+4wDQYJKoZIhvcNAQELBQADggEBAGri2/YGxaXbRepLMTAtJC3140O4 UT4P2H8QEzkMPwcK99nzjspGviqoBD7Bj6lntJjEJXveLy842V4urFguxKozfrPC qoPn4U+PPwjMzo2ND/Oew90W1hv+q1+JC9o19yzk8ZCUpyVddy65oQud/Et96H8q Ihjongi0dT4iYZCC1B6R1m2zgdeRC8xYutOIzU8NUfwyX6UdHz/ESAETt7MUq7+q KAEU2O6k2ZxjhsVstKe71orezYHPsyJ4WMlrwof4eQZLdPzTTyHqeYDk3L7xylDh cMPMEn92lJRqcvc1goFSpvffJ9wCRh5Adg00xsR+brJqP2HfbCWT2XsRxyY= -----END CERTIFICATE-----Generated at Sun Feb 16 22:13:36 2025 by rpki-client