$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/KHg7M9VHBkgmhO8PHzKjXowPVGU.roa File: KHg7M9VHBkgmhO8PHzKjXowPVGU.roa (raw, json) Hash identifier: Rv2NmCWVf76oEx3wPuYufNhSyuDWaBaK3xBaXC0uQuc= Subject key identifier: 28:78:3B:33:D5:47:06:48:26:84:EF:0F:1F:32:A3:5E:8C:0F:54:65 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0AE6 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KHg7M9VHBkgmhO8PHzKjXowPVGU.roa Signing time: Fri 31 Jan 2025 01:28:29 +0000 ROA not before: Fri 31 Jan 2025 01:28:29 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.0.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2790 (0xae6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:28:29 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=28783B33D54706482684EF0F1F32A35E8C0F5465 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:23:9b:39:79:0d:d8:69:ca:dd:21:68:c6:9f: 22:44:6b:fa:61:d4:f6:e8:11:77:6b:07:9c:6b:69: 8c:9a:ff:d2:95:c5:d2:39:01:1d:ed:de:6b:c7:2a: 1c:47:8d:4a:da:c6:96:ca:6c:f8:09:4a:51:5e:d6: a7:68:02:11:a5:4b:e7:00:d9:42:19:29:33:78:e2: d1:a1:b3:b5:e5:f4:4b:b4:50:64:e4:f3:5b:a1:e1: 53:fb:f7:3f:55:6b:29:ba:1d:29:c0:91:53:5d:13: 31:0d:d8:69:13:e2:43:14:2e:f4:95:50:61:28:67: b2:54:7c:50:04:f9:0c:bd:95:c8:81:04:fa:a3:24: 70:7c:8c:e1:75:3b:23:cf:df:9e:c1:7f:de:45:83: e0:25:c3:d4:21:65:eb:93:01:f1:c1:b9:65:ba:1b: 2c:fb:9a:e8:2f:72:df:6c:5a:d8:18:aa:7a:c7:0f: f0:20:16:b2:dd:34:85:38:92:7a:fc:95:81:bd:67: 12:3e:da:87:2e:b2:e1:ab:a5:99:d2:07:97:42:0b: 54:5d:81:aa:fc:96:56:6a:44:17:29:ef:4b:1d:69: a3:1b:4f:e0:18:f6:23:b6:a1:aa:4e:44:25:7c:ae: 6c:f2:59:f3:91:1f:34:ad:1c:ca:f4:b1:7b:21:54: 19:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:78:3B:33:D5:47:06:48:26:84:EF:0F:1F:32:A3:5E:8C:0F:54:65 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KHg7M9VHBkgmhO8PHzKjXowPVGU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.0.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:b3:5d:61:87:a4:b0:3e:31:50:d7:4f:39:18:52:eb:ef:17: ac:4d:1e:39:9a:bc:32:2e:b2:9d:48:b2:be:13:2e:73:15:2b: 99:54:89:17:33:79:07:ae:03:ee:6d:63:cb:49:1c:79:ef:b6: f4:1b:ae:f6:98:9a:b9:d3:51:6f:7f:19:00:60:dc:ac:51:2b: 3e:d7:5d:93:3d:7a:e5:fc:87:98:32:e9:37:2c:0b:db:44:c9: 3c:52:df:d1:40:35:7c:a6:58:6d:bc:f4:bd:40:e8:78:df:fd: 77:d6:09:f7:6b:44:50:dd:40:45:44:9b:bc:d6:eb:11:0a:7d: e1:b3:14:ef:44:92:29:f6:1f:23:b2:21:f6:b7:16:65:da:1a: 88:b3:74:70:62:0d:da:97:fd:05:01:94:30:24:55:62:00:44: 62:04:0c:0b:16:56:3a:25:c6:50:7f:56:6d:1d:da:97:4c:8c: d5:12:ef:dc:30:a0:a4:51:ff:5e:5d:8a:7e:f5:54:14:7b:9f: 00:08:5f:27:f4:2b:9d:f1:ba:e0:43:9b:f2:b8:7b:66:91:48: 77:eb:23:cc:14:ed:7e:9b:9f:8f:ac:35:b4:2e:1e:f3:f8:15: 29:97:a0:af:78:02:41:26:3e:3a:a1:86:29:73:ca:6f:4b:0b: 61:5a:3a:5e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCuYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTI4MjlaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDI4NzgzQjMzRDU0NzA2 NDgyNjg0RUYwRjFGMzJBMzVFOEMwRjU0NjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4I5s5eQ3YacrdIWjGnyJEa/ph1PboEXdrB5xraYya/9KVxdI5 AR3t3mvHKhxHjUraxpbKbPgJSlFe1qdoAhGlS+cA2UIZKTN44tGhs7Xl9Eu0UGTk 81uh4VP79z9Vaym6HSnAkVNdEzEN2GkT4kMULvSVUGEoZ7JUfFAE+Qy9lciBBPqj JHB8jOF1OyPP357Bf95Fg+Alw9QhZeuTAfHBuWW6Gyz7mugvct9sWtgYqnrHD/Ag FrLdNIU4knr8lYG9ZxI+2ocusuGrpZnSB5dCC1Rdgar8llZqRBcp70sdaaMbT+AY 9iO2oapORCV8rmzyWfORHzStHMr0sXshVBmTAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUKHg7M9VHBkgmhO8PHzKjXowPVGUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0tIZzdNOVZIQmtnbWhPOFBIektqWG93UFZHVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBSwAwDQYJKoZIhvcNAQELBQADggEBAIuzXWGHpLA+MVDXTzkYUuvvF6xN HjmavDIusp1Isr4TLnMVK5lUiRczeQeuA+5tY8tJHHnvtvQbrvaYmrnTUW9/GQBg 3KxRKz7XXZM9euX8h5gy6TcsC9tEyTxS39FANXymWG289L1A6Hjf/XfWCfdrRFDd QEVEm7zW6xEKfeGzFO9Ekin2HyOyIfa3FmXaGoizdHBiDdqX/QUBlDAkVWIARGIE DAsWVjolxlB/Vm0d2pdMjNUS79wwoKRR/15din71VBR7nwAIXyf0K53xuuBDm/K4 e2aRSHfrI8wU7X6bn4+sNbQuHvP4FSmXoK94AkEmPjqhhilzym9LC2FaOl4= -----END CERTIFICATE-----Generated at Wed Feb 19 22:43:24 2025 by rpki-client