$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/JCdw2yRNnV63kajfAyi3490d-ks.roa File: JCdw2yRNnV63kajfAyi3490d-ks.roa (raw, json) Hash identifier: Ya5E3uHGqdUsFHPVYLg79cx5drp5PFzgn7fH4Q6rObo= Subject key identifier: 24:27:70:DB:24:4D:9D:5E:B7:91:A8:DF:03:28:B7:E3:DD:1D:FA:4B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 097A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/JCdw2yRNnV63kajfAyi3490d-ks.roa Signing time: Sun 30 Jun 2024 01:33:43 +0000 ROA not before: Sun 30 Jun 2024 01:33:43 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 220.159.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2426 (0x97a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:33:43 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=242770DB244D9D5EB791A8DF0328B7E3DD1DFA4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c5:42:cf:55:b2:e9:eb:b0:3b:60:6d:16:20: f7:5b:8a:a0:0d:4a:4d:12:0d:23:b9:c0:14:a9:82: 29:9d:a3:d1:27:b6:ed:70:a3:38:ed:ce:be:f9:2a: 71:bc:87:af:aa:34:32:3c:67:24:89:4e:14:d9:e8: 55:59:fa:86:d8:fa:c6:21:91:20:6f:05:36:82:48: 86:0a:df:e9:00:5e:4f:74:1f:d3:1e:78:c6:3d:8f: 67:b5:0e:3d:d9:97:73:56:79:48:2f:f5:a5:17:5f: b7:d9:99:b7:be:a5:09:e2:36:e6:f1:84:73:01:e4: 38:c4:08:1f:e4:a0:f2:49:f1:97:f7:b6:7e:d2:96: 8e:da:a1:34:ac:f5:e5:dc:e2:a7:e7:f6:2a:09:aa: 85:fa:fe:ba:fa:57:05:4e:e6:f8:b8:79:d4:21:cd: 82:8c:7f:e2:0f:6e:f4:39:a1:0b:e5:e2:af:85:b9: 01:2c:ae:27:46:90:5d:9c:d2:13:46:14:9e:23:67: 2b:fb:95:d2:60:ac:38:9c:92:9f:78:9c:96:d8:0c: 02:07:93:04:55:24:ba:09:64:87:bb:67:ea:fc:44: 06:e5:0e:09:3d:67:94:52:40:cf:ad:85:0d:aa:c7: 42:49:66:b8:9b:e5:d6:52:f9:88:0f:34:62:77:f1: 3f:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:27:70:DB:24:4D:9D:5E:B7:91:A8:DF:03:28:B7:E3:DD:1D:FA:4B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/JCdw2yRNnV63kajfAyi3490d-ks.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.128.0/19 Signature Algorithm: sha256WithRSAEncryption 31:70:6c:d2:c0:c6:ee:aa:bb:63:72:eb:c3:9d:b0:69:95:9e: 66:68:f3:3f:a8:cf:f4:7e:f5:c3:d8:ac:b7:9b:76:85:a9:db: 3b:7c:66:2c:c5:e3:2d:4a:61:61:02:17:65:e4:f6:6d:2f:11: 95:1f:ec:db:c8:51:cb:c8:fc:b7:c1:cf:29:ae:e5:26:31:51: 1e:86:11:5f:b1:bd:b2:04:b9:c3:23:f2:5f:f9:d9:36:fe:4a: b9:16:d1:6c:55:d6:7c:1e:08:39:a7:09:0d:fe:d5:3a:c2:01: 44:cc:35:85:12:f3:7b:82:b4:d1:d0:fe:cb:7a:5e:b6:07:6f: a5:f9:6a:b5:3d:12:1b:ac:02:1e:ed:8f:8b:2c:96:ee:6f:e0: ad:88:fb:ab:96:95:05:eb:0e:b2:77:84:ee:e7:42:2d:a3:3c: da:5e:93:eb:af:a3:49:ec:a9:0a:72:96:73:22:36:f4:2a:7b: 3b:40:2f:f6:ad:37:70:11:63:36:d3:e0:55:b1:af:ed:91:ee: fd:96:2d:98:f9:e1:93:3e:0a:59:52:67:e4:d8:11:00:53:52: 69:f3:da:a1:74:62:88:13:3a:5f:45:75:41:d3:ef:77:6f:b5: be:cb:0e:b9:05:fd:af:65:f9:eb:87:06:21:d7:26:86:4f:ae: 14:c1:89:d4 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCXowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTMzNDNaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDI0Mjc3MERCMjQ0RDlE NUVCNzkxQThERjAzMjhCN0UzREQxREZBNEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClxULPVbLp67A7YG0WIPdbiqANSk0SDSO5wBSpgimdo9Entu1w ozjtzr75KnG8h6+qNDI8ZySJThTZ6FVZ+obY+sYhkSBvBTaCSIYK3+kAXk90H9Me eMY9j2e1Dj3Zl3NWeUgv9aUXX7fZmbe+pQniNubxhHMB5DjECB/koPJJ8Zf3tn7S lo7aoTSs9eXc4qfn9ioJqoX6/rr6VwVO5vi4edQhzYKMf+IPbvQ5oQvl4q+FuQEs ridGkF2c0hNGFJ4jZyv7ldJgrDickp94nJbYDAIHkwRVJLoJZIe7Z+r8RAblDgk9 Z5RSQM+thQ2qx0JJZrib5dZS+YgPNGJ38T9zAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUJCdw2yRNnV63kajfAyi3490d+kswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0pDZHcyeVJOblY2M2thamZBeWkzNDkwZC1rcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXcn4AwDQYJKoZIhvcNAQELBQADggEBADFwbNLAxu6qu2Ny68OdsGmVnmZo 8z+oz/R+9cPYrLebdoWp2zt8ZizF4y1KYWECF2Xk9m0vEZUf7NvIUcvI/LfBzymu 5SYxUR6GEV+xvbIEucMj8l/52Tb+SrkW0WxV1nweCDmnCQ3+1TrCAUTMNYUS83uC tNHQ/st6XrYHb6X5arU9EhusAh7tj4sslu5v4K2I+6uWlQXrDrJ3hO7nQi2jPNpe k+uvo0nsqQpylnMiNvQqeztAL/atN3ARYzbT4FWxr+2R7v2WLZj54ZM+CllSZ+TY EQBTUmnz2qF0YogTOl9FdUHT73dvtb7LDrkF/a9l+euHBiHXJoZPrhTBidQ= -----END CERTIFICATE-----Generated at Sun Feb 16 22:21:19 2025 by rpki-client