$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/JkvepgnRRp9hWMYpHzohftVR7TQ.roa File: JkvepgnRRp9hWMYpHzohftVR7TQ.roa (raw, json) Hash identifier: p/TtNhVZv6oDrTeshtO5dXvjeZ7mX3X5FCXoRWcBCP8= Subject key identifier: 26:4B:DE:A6:09:D1:46:9F:61:58:C6:29:1F:3A:21:7E:D5:51:ED:34 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 08BC Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/JkvepgnRRp9hWMYpHzohftVR7TQ.roa Signing time: Tue 30 Apr 2024 02:22:44 +0000 ROA not before: Tue 30 Apr 2024 02:22:44 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2236 (0x8bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:22:44 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=264BDEA609D1469F6158C6291F3A217ED551ED34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:86:92:08:d3:e4:0a:22:b3:fc:e4:e0:f0:7c: b0:79:11:30:1c:b5:89:de:5c:81:ae:ff:f5:0f:9b: 00:20:af:6e:0f:41:e0:d4:73:b8:56:f7:cc:ae:8a: 35:59:5e:a7:b2:d3:2d:64:fd:55:a9:8d:58:90:5a: 46:d3:fa:e0:e0:2f:02:40:98:72:08:fe:e2:97:2d: 4f:63:75:04:1b:0e:f7:9a:52:de:b0:e5:de:d0:c9: 69:1f:74:8f:a4:25:a8:81:81:b5:e5:14:09:90:bd: 4c:4b:b7:0f:9e:de:8e:0d:d7:2d:9c:96:ff:da:64: 11:82:47:5d:cb:a5:a6:aa:96:d9:1a:77:d3:e7:a5: f5:17:f8:d7:2e:f5:34:7d:91:a0:ea:94:ad:6f:e3: 20:a4:f5:b7:79:ad:fb:fd:9d:76:44:b9:54:56:fd: d6:4b:57:8c:86:c5:b6:1e:e2:cb:12:40:30:f6:ee: f9:8b:43:ec:09:7d:bb:c0:ae:c2:e9:a9:b8:e7:ef: 93:8e:31:c5:da:37:7e:ed:fa:54:65:83:66:9d:5e: d4:f5:92:01:5b:0f:d1:86:e2:0e:06:96:d7:8d:37: 6d:0f:e0:a3:12:65:f5:b2:80:72:11:3b:ed:b6:5f: cd:b7:d8:59:ae:60:9a:51:2c:34:31:15:86:a4:0a: 90:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:4B:DE:A6:09:D1:46:9F:61:58:C6:29:1F:3A:21:7E:D5:51:ED:34 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/JkvepgnRRp9hWMYpHzohftVR7TQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.89.0/24 Signature Algorithm: sha256WithRSAEncryption 53:ba:0f:5d:f8:ac:a0:06:c2:62:b4:01:dd:0b:f9:b8:7b:98: 80:7e:01:ea:d9:6b:f1:24:d9:24:dc:f9:fb:3d:6c:ef:92:9d: 5d:83:36:76:4f:1b:fa:2f:b5:45:d8:ef:b8:7e:34:22:17:f6: bd:0f:d8:ec:5f:c4:7a:e3:cc:79:e1:33:82:30:da:13:fa:2f: 8f:11:29:08:7d:ad:6f:be:08:c8:30:cf:31:fb:14:70:56:ff: d3:1d:97:27:97:b6:1a:52:55:cf:be:e2:3a:ee:97:76:a5:fb: 82:8b:c0:66:43:38:24:d2:ce:14:04:da:4c:77:01:f5:37:08: 2c:2f:4c:58:36:f3:47:31:03:0c:6e:12:74:91:e1:83:84:9a: 99:13:6c:b7:c8:30:67:f8:a5:fb:80:20:d7:97:04:af:4f:d7: 23:37:40:b7:a2:0b:16:18:a3:4a:94:5e:ac:d1:84:c5:27:f1: 24:11:eb:db:fe:4f:a1:ad:4d:33:fc:f7:dc:8f:b4:18:be:e0: 8a:e0:48:11:f6:24:e0:5b:75:66:fd:96:34:5a:9c:19:77:e7: 1f:b0:c7:67:90:4f:f0:fc:39:fb:32:3f:3c:3a:23:02:c9:1b: 8f:dd:82:b7:c7:4a:4b:60:6e:f0:ff:b8:d2:f2:ab:d4:ce:2e: 7a:33:08:f1 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCLwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjIyNDRaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDI2NEJERUE2MDlEMTQ2 OUY2MTU4QzYyOTFGM0EyMTdFRDU1MUVEMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDchpII0+QKIrP85ODwfLB5ETActYneXIGu//UPmwAgr24PQeDU c7hW98yuijVZXqey0y1k/VWpjViQWkbT+uDgLwJAmHII/uKXLU9jdQQbDveaUt6w 5d7QyWkfdI+kJaiBgbXlFAmQvUxLtw+e3o4N1y2clv/aZBGCR13Lpaaqltkad9Pn pfUX+Ncu9TR9kaDqlK1v4yCk9bd5rfv9nXZEuVRW/dZLV4yGxbYe4ssSQDD27vmL Q+wJfbvArsLpqbjn75OOMcXaN37t+lRlg2adXtT1kgFbD9GG4g4GlteNN20P4KMS ZfWygHIRO+22X8232FmuYJpRLDQxFYakCpA9AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUJkvepgnRRp9hWMYpHzohftVR7TQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0prdmVwZ25SUnA5aFdNWXBIem9oZnRWUjdUUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABT1kwDQYJKoZIhvcNAQELBQADggEBAFO6D134rKAGwmK0Ad0L+bh7mIB+ AerZa/Ek2STc+fs9bO+SnV2DNnZPG/ovtUXY77h+NCIX9r0P2OxfxHrjzHnhM4Iw 2hP6L48RKQh9rW++CMgwzzH7FHBW/9MdlyeXthpSVc++4jrul3al+4KLwGZDOCTS zhQE2kx3AfU3CCwvTFg280cxAwxuEnSR4YOEmpkTbLfIMGf4pfuAINeXBK9P1yM3 QLeiCxYYo0qUXqzRhMUn8SQR69v+T6GtTTP899yPtBi+4IrgSBH2JOBbdWb9ljRa nBl35x+wx2eQT/D8OfsyPzw6IwLJG4/dgrfHSktgbvD/uNLyq9TOLnozCPE= -----END CERTIFICATE-----Generated at Sun Feb 16 22:32:53 2025 by rpki-client