$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/LdzTfY-3X6OSyCMCtrdvNJ3SzSo.roa File: LdzTfY-3X6OSyCMCtrdvNJ3SzSo.roa (raw, json) Hash identifier: uXjJu3xKLc9Iq9ApZpPAWl6ydnDKDAaHAT22b3WSh7o= Subject key identifier: 2D:DC:D3:7D:8F:B7:5F:A3:92:C8:23:02:B6:B7:6F:34:9D:D2:CD:2A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 07E5 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LdzTfY-3X6OSyCMCtrdvNJ3SzSo.roa Signing time: Tue 30 Apr 2024 02:10:32 +0000 ROA not before: Tue 30 Apr 2024 02:10:32 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 220.210.20.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2021 (0x7e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:10:32 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=2DDCD37D8FB75FA392C82302B6B76F349DD2CD2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b1:4e:0b:41:7f:6f:e1:c7:b3:46:c8:f0:61: 0d:7b:d1:0c:6a:d4:43:34:bd:e3:c6:7d:71:b9:8f: 96:e0:d1:d5:6e:1f:e5:17:5a:b6:19:d2:66:5f:c9: 98:d8:67:64:74:d2:21:a4:88:2d:05:ce:4e:34:66: ea:de:a7:5c:e2:e6:45:b7:06:67:2a:6d:23:4b:72: b0:db:3c:2d:c8:45:b0:e6:37:18:ed:b2:ce:ee:e7: 52:48:09:23:2a:26:f1:ad:28:ec:65:31:49:87:a2: 50:5c:08:85:8e:af:02:e1:35:cc:ff:00:8a:df:46: 1b:17:7d:c2:64:71:48:47:7e:56:3a:e0:a4:fb:3d: 56:92:4f:fd:df:a6:7e:90:5d:a3:3c:a4:5c:60:79: ab:6a:b6:a6:e8:4a:b5:c7:0b:ff:28:10:04:58:1f: 4d:44:6f:eb:77:17:2d:a5:51:9e:d6:41:cd:43:73: b7:cc:f4:73:35:f8:c3:9a:48:76:88:a9:9c:49:3b: 3a:15:40:3f:15:99:35:da:ad:44:5f:7f:36:b7:fc: d1:76:c3:67:f1:64:63:37:1b:dc:7f:4c:0a:80:fd: 86:1a:c7:df:47:1e:e6:11:6d:32:3f:e0:46:eb:8a: fa:b1:14:00:ab:76:cf:18:8f:14:35:ca:94:51:4c: ea:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:DC:D3:7D:8F:B7:5F:A3:92:C8:23:02:B6:B7:6F:34:9D:D2:CD:2A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LdzTfY-3X6OSyCMCtrdvNJ3SzSo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.20.0/23 Signature Algorithm: sha256WithRSAEncryption 04:84:2b:a3:a7:08:96:34:f3:1f:7c:ef:b7:03:5e:87:38:a9: da:7c:c6:25:bc:ef:13:ce:aa:d5:d6:ab:6f:64:ff:f6:dc:93: 38:f2:df:44:a1:7e:ea:a5:88:83:f7:c4:59:1a:3c:76:bd:ba: 93:f9:c8:9a:be:e6:f9:03:b3:71:a9:6d:41:9b:35:1d:d0:a3: 62:c6:6c:f9:80:e5:dc:30:57:1e:7d:4b:d7:b6:d9:11:2c:19: 8a:de:ff:32:a3:3a:63:b9:85:a4:ff:f0:3a:2c:68:06:4b:e3: 42:03:71:e7:1c:e1:05:9a:43:5f:bf:43:de:36:d5:0d:11:85: d6:b4:89:43:c6:d9:68:0f:f9:66:71:43:e6:92:1a:04:46:56: bd:79:a6:d8:bc:9e:ed:43:58:90:6a:d3:f3:2b:5c:62:2e:84: 05:9c:6e:80:f4:87:0f:97:69:1e:4c:05:bf:78:e7:bd:66:c3: b8:34:80:13:99:e6:9a:b1:f5:10:84:ec:27:cb:3c:eb:8e:97: 82:6a:87:fd:fa:ef:19:95:35:a4:71:94:b9:fc:20:a3:cd:1a: ac:1a:6b:e4:b9:2c:c8:6d:e9:8d:7d:b4:1e:37:2a:96:c8:e8: 70:8e:32:ea:3b:6f:5a:7a:34:a3:d5:92:1c:3c:8e:ed:d6:4c: 31:f8:08:cb -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB+UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjEwMzJaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDJERENEMzdEOEZCNzVG QTM5MkM4MjMwMkI2Qjc2RjM0OUREMkNEMkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJsU4LQX9v4cezRsjwYQ170Qxq1EM0vePGfXG5j5bg0dVuH+UX WrYZ0mZfyZjYZ2R00iGkiC0Fzk40Zurep1zi5kW3BmcqbSNLcrDbPC3IRbDmNxjt ss7u51JICSMqJvGtKOxlMUmHolBcCIWOrwLhNcz/AIrfRhsXfcJkcUhHflY64KT7 PVaST/3fpn6QXaM8pFxgeatqtqboSrXHC/8oEARYH01Eb+t3Fy2lUZ7WQc1Dc7fM 9HM1+MOaSHaIqZxJOzoVQD8VmTXarURffza3/NF2w2fxZGM3G9x/TAqA/YYax99H HuYRbTI/4EbrivqxFACrds8YjxQ1ypRRTOozAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQULdzTfY+3X6OSyCMCtrdvNJ3SzSowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0xkelRmWS0zWDZPU3lDTUN0cmR2TkozU3pTby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHc0hQwDQYJKoZIhvcNAQELBQADggEBAASEK6OnCJY08x9877cDXoc4qdp8 xiW87xPOqtXWq29k//bckzjy30ShfuqliIP3xFkaPHa9upP5yJq+5vkDs3GpbUGb NR3Qo2LGbPmA5dwwVx59S9e22REsGYre/zKjOmO5haT/8DosaAZL40IDcecc4QWa Q1+/Q9421Q0Rhda0iUPG2WgP+WZxQ+aSGgRGVr15pti8nu1DWJBq0/MrXGIuhAWc boD0hw+XaR5MBb94571mw7g0gBOZ5pqx9RCE7CfLPOuOl4Jqh/367xmVNaRxlLn8 IKPNGqwaa+S5LMht6Y19tB43KpbI6HCOMuo7b1p6NKPVkhw8ju3WTDH4CMs= -----END CERTIFICATE-----Generated at Sun Feb 16 22:31:55 2025 by rpki-client