$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/KoDQy0X0uWElnKLnJQBIQj6KYIM.roa File: KoDQy0X0uWElnKLnJQBIQj6KYIM.roa (raw, json) Hash identifier: Wp6NuWqUQmDEfkYLLFkeQoWDvy6OxTvVn/DQZ1WlQt8= Subject key identifier: 2A:80:D0:CB:45:F4:B9:61:25:9C:A2:E7:25:00:48:42:3E:8A:60:83 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0ADD Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KoDQy0X0uWElnKLnJQBIQj6KYIM.roa Signing time: Fri 31 Jan 2025 01:28:26 +0000 ROA not before: Fri 31 Jan 2025 01:28:26 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.97.106.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2781 (0xadd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:28:26 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=2A80D0CB45F4B961259CA2E7250048423E8A6083 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:92:66:c6:c1:c7:00:55:6f:73:a6:67:f5:9b: 45:58:b7:06:2f:48:e3:4e:3a:8d:cb:34:d4:34:9e: 95:6b:83:de:a1:a8:42:03:29:a2:47:82:1a:42:c7: 05:c4:9f:6e:0f:06:97:d5:03:48:dd:d3:ca:4a:22: b7:6a:a7:10:af:7e:9a:8c:9d:05:cb:be:75:8b:94: fc:0a:64:27:85:fe:1d:6b:16:4e:e1:53:b7:12:99: 73:a0:ec:d5:ce:6b:5a:25:43:7a:8a:97:e8:7a:49: a5:69:66:97:50:50:78:17:7e:3a:34:59:c0:40:0d: 96:9b:df:04:ed:6f:0d:b4:45:13:db:cc:04:0d:2e: 6a:7a:9d:75:d5:81:9c:02:ae:2f:90:c1:0d:44:1f: 13:d7:ec:9a:b7:c5:fa:b4:55:65:7f:08:df:09:7a: c4:9a:bc:a5:08:12:35:d8:26:38:c9:d1:2d:86:57: 42:17:42:6e:29:cc:b3:88:51:77:60:4c:f5:55:66: 8d:15:56:9a:56:6b:11:07:9c:18:47:f8:30:36:18: 9b:32:6b:3c:f2:2c:02:43:60:23:a5:c9:a8:a7:a8: 4c:54:88:f5:8f:07:49:08:7d:ec:5e:df:0e:7e:60: f2:1b:2b:48:9b:a2:7c:18:b9:28:1e:02:78:a9:2f: 94:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:80:D0:CB:45:F4:B9:61:25:9C:A2:E7:25:00:48:42:3E:8A:60:83 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KoDQy0X0uWElnKLnJQBIQj6KYIM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.97.106.0/23 Signature Algorithm: sha256WithRSAEncryption e7:be:e1:41:61:99:c5:c4:6a:45:82:e2:ac:7a:48:78:b7:b1: 0a:d8:e3:c8:51:f0:49:58:8c:ca:c3:03:0c:f4:ab:4b:5f:99: 4b:7b:4d:3f:d0:85:6e:e3:a7:24:26:7e:c4:ba:7d:bd:68:be: 21:b8:5c:a9:d7:85:45:24:f1:02:77:aa:20:23:0f:32:06:96: b9:31:2f:ce:cb:54:90:b9:78:77:43:5b:63:04:94:f6:ab:d6: 13:b9:c7:41:98:2d:5a:dd:c9:92:24:c4:ae:ea:7b:c8:f1:a8: f9:6b:2b:2e:c4:c8:87:f5:28:d9:9b:3c:6a:a0:6f:cd:bb:b9: ee:05:c1:a9:cf:b4:c9:17:ae:2a:57:66:4a:e2:ab:3a:60:e0: b8:26:76:c1:59:38:81:e4:b0:e3:69:38:eb:de:15:d5:1f:38: f9:13:46:54:8a:dd:8b:6b:d0:0f:d5:68:9b:88:3f:10:28:b6: 0a:b6:ba:5b:e2:dc:3b:1d:e4:b6:e5:9d:e1:84:01:63:96:11: a3:28:d4:9a:e6:ea:31:33:1f:b9:49:1a:5c:da:83:d8:eb:61: 1c:1f:a7:eb:04:70:15:2f:c3:c7:b3:5a:1b:a3:49:f6:0a:5a: 09:37:23:6e:55:19:96:76:6a:1a:7f:bf:02:a7:bf:7e:5a:24: c0:5f:a9:f6 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCt0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTI4MjZaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDJBODBEMENCNDVGNEI5 NjEyNTlDQTJFNzI1MDA0ODQyM0U4QTYwODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqkmbGwccAVW9zpmf1m0VYtwYvSONOOo3LNNQ0npVrg96hqEID KaJHghpCxwXEn24PBpfVA0jd08pKIrdqpxCvfpqMnQXLvnWLlPwKZCeF/h1rFk7h U7cSmXOg7NXOa1olQ3qKl+h6SaVpZpdQUHgXfjo0WcBADZab3wTtbw20RRPbzAQN Lmp6nXXVgZwCri+QwQ1EHxPX7Jq3xfq0VWV/CN8JesSavKUIEjXYJjjJ0S2GV0IX Qm4pzLOIUXdgTPVVZo0VVppWaxEHnBhH+DA2GJsyazzyLAJDYCOlyainqExUiPWP B0kIfexe3w5+YPIbK0ibonwYuSgeAnipL5TdAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUKoDQy0X0uWElnKLnJQBIQj6KYIMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0tvRFF5MFgwdVdFbG5LTG5KUUJJUWo2S1lJTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYWowDQYJKoZIhvcNAQELBQADggEBAOe+4UFhmcXEakWC4qx6SHi3sQrY 48hR8ElYjMrDAwz0q0tfmUt7TT/QhW7jpyQmfsS6fb1oviG4XKnXhUUk8QJ3qiAj DzIGlrkxL87LVJC5eHdDW2MElPar1hO5x0GYLVrdyZIkxK7qe8jxqPlrKy7EyIf1 KNmbPGqgb827ue4FwanPtMkXripXZkriqzpg4LgmdsFZOIHksONpOOveFdUfOPkT RlSK3Ytr0A/VaJuIPxAotgq2ulvi3Dsd5LblneGEAWOWEaMo1Jrm6jEzH7lJGlza g9jrYRwfp+sEcBUvw8ezWhujSfYKWgk3I25VGZZ2ahp/vwKnv35aJMBfqfY= -----END CERTIFICATE-----Generated at Wed Feb 19 22:31:30 2025 by rpki-client