$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/NTZK6-kNRM3gtj0QajsYBO9j3MU.roa File: NTZK6-kNRM3gtj0QajsYBO9j3MU.roa (raw, json) Hash identifier: TMTamzClpOizGQuG0V7jKiFGNOKLRZhnMsjtXJx27Us= Subject key identifier: 35:36:4A:EB:E9:0D:44:CD:E0:B6:3D:10:6A:3B:18:04:EF:63:DC:C5 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 06FE Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NTZK6-kNRM3gtj0QajsYBO9j3MU.roa Signing time: Tue 30 Apr 2024 01:52:50 +0000 ROA not before: Tue 30 Apr 2024 01:52:50 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.34.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1790 (0x6fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:52:50 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=35364AEBE90D44CDE0B63D106A3B1804EF63DCC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:91:9d:1b:51:11:29:af:d7:ae:5c:dd:5e:25: f0:84:c3:d0:d7:7d:35:0d:66:d8:9a:36:e7:22:04: 31:5a:ea:37:da:33:31:89:96:36:8d:e8:7b:4d:4d: 0d:28:5b:a5:52:16:41:92:24:53:5d:0d:63:13:66: c0:b6:d6:5c:a5:83:59:2d:ca:bb:33:46:d9:9d:1f: e7:6b:a9:d0:f7:3e:c5:06:b7:9a:62:c8:aa:5d:62: 58:f1:7e:a2:fb:ea:29:23:f8:a0:4a:c8:a5:4a:90: ee:b9:2c:4c:6d:62:a1:88:c4:cd:86:d3:ac:8a:ea: 68:0c:6d:6e:6b:93:b4:2c:37:22:e8:ae:53:b4:6d: 5a:43:13:6b:a6:7e:eb:ef:09:a8:1d:5e:81:37:b0: 95:68:60:36:ae:f6:4f:07:6d:66:57:cd:40:fc:3e: 8e:6f:51:84:b7:c7:35:a0:88:63:c5:e6:4d:39:d0: 01:0f:9c:5f:ed:eb:d7:68:f5:46:24:75:d9:76:ad: de:2e:cc:10:b0:19:cc:bb:bc:ff:cf:63:ac:f5:ac: 5b:c5:ab:92:b9:e1:7d:ff:b0:03:15:cd:03:3c:4a: 27:f1:6f:23:d1:5f:48:07:10:f3:c0:e8:f4:61:20: af:fa:23:2f:ed:da:94:0a:e6:63:cd:03:a5:2f:39: c0:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:36:4A:EB:E9:0D:44:CD:E0:B6:3D:10:6A:3B:18:04:EF:63:DC:C5 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NTZK6-kNRM3gtj0QajsYBO9j3MU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.34.0/23 Signature Algorithm: sha256WithRSAEncryption d5:67:ad:03:8d:b1:15:82:5e:6c:8c:51:77:18:88:2d:fb:41: 0f:08:e6:f7:73:80:26:4e:6a:a9:b4:c6:b7:50:d0:75:11:52: cc:5b:1b:6d:e0:4a:43:f8:d2:a7:01:d2:59:56:50:53:39:38: 4b:13:98:f4:36:0f:83:a7:34:c4:a5:c0:b8:ee:ee:ca:34:08: d3:58:37:9a:45:fd:8e:e9:44:1a:ad:67:46:84:13:31:42:f6: e6:82:85:e4:f2:88:e1:fc:2c:4f:66:90:5b:c6:15:d4:fc:6b: a2:62:d7:4e:34:d1:ed:a3:24:d6:84:5d:7b:b9:dd:33:5c:5d: b2:d7:84:59:36:68:24:5a:d0:df:61:16:6b:1f:55:1d:de:02: 86:54:a8:ae:93:72:f5:38:b2:7d:18:d9:70:a5:47:9c:0c:3f: ce:34:d7:2f:2d:e3:7d:91:80:61:79:40:cf:01:fa:1c:68:9d: 10:c5:3b:59:7b:25:07:48:f1:cd:51:a4:1c:2c:cd:9d:6f:72: e6:f6:68:33:a5:78:e6:0c:bf:2f:fe:a8:ae:36:ca:c3:2d:62: 80:d8:4c:68:ce:12:83:a0:a4:67:ac:37:70:e4:46:bf:13:e6: 50:6e:42:dd:c5:b4:9b:7e:50:38:1d:31:cc:fa:84:c9:89:d8: 70:49:7d:9d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBv4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTUyNTBaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDM1MzY0QUVCRTkwRDQ0 Q0RFMEI2M0QxMDZBM0IxODA0RUY2M0RDQzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4kZ0bUREpr9euXN1eJfCEw9DXfTUNZtiaNuciBDFa6jfaMzGJ ljaN6HtNTQ0oW6VSFkGSJFNdDWMTZsC21lylg1ktyrszRtmdH+drqdD3PsUGt5pi yKpdYljxfqL76ikj+KBKyKVKkO65LExtYqGIxM2G06yK6mgMbW5rk7QsNyLorlO0 bVpDE2umfuvvCagdXoE3sJVoYDau9k8HbWZXzUD8Po5vUYS3xzWgiGPF5k050AEP nF/t69do9UYkddl2rd4uzBCwGcy7vP/PY6z1rFvFq5K54X3/sAMVzQM8SifxbyPR X0gHEPPA6PRhIK/6Iy/t2pQK5mPNA6UvOcCjAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUNTZK6+kNRM3gtj0QajsYBO9j3MUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L05UWks2LWtOUk0zZ3RqMFFhanNZQk85ajNNVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYCIwDQYJKoZIhvcNAQELBQADggEBANVnrQONsRWCXmyMUXcYiC37QQ8I 5vdzgCZOaqm0xrdQ0HURUsxbG23gSkP40qcB0llWUFM5OEsTmPQ2D4OnNMSlwLju 7so0CNNYN5pF/Y7pRBqtZ0aEEzFC9uaCheTyiOH8LE9mkFvGFdT8a6Ji10400e2j JNaEXXu53TNcXbLXhFk2aCRa0N9hFmsfVR3eAoZUqK6TcvU4sn0Y2XClR5wMP840 1y8t432RgGF5QM8B+hxonRDFO1l7JQdI8c1RpBwszZ1vcub2aDOleOYMvy/+qK42 ysMtYoDYTGjOEoOgpGesN3DkRr8T5lBuQt3FtJt+UDgdMcz6hMmJ2HBJfZ0= -----END CERTIFICATE-----Generated at Sun Feb 16 22:10:55 2025 by rpki-client