$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/NYEeNlIDPiZnwlAxb3mqIrzR9zQ.roa File: NYEeNlIDPiZnwlAxb3mqIrzR9zQ.roa (raw, json) Hash identifier: jI8XpJ3Bp6iQkNe12Y23zpyCIBlTjndptkgKgXLD6wI= Subject key identifier: 35:81:1E:36:52:03:3E:26:67:C2:50:31:6F:79:AA:22:BC:D1:F7:34 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 080E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NYEeNlIDPiZnwlAxb3mqIrzR9zQ.roa Signing time: Tue 30 Apr 2024 02:12:26 +0000 ROA not before: Tue 30 Apr 2024 02:12:26 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.105.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2062 (0x80e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:12:26 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=35811E3652033E2667C250316F79AA22BCD1F734 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ce:28:43:37:20:e6:12:61:c8:3c:8f:43:56: 94:a6:8f:2a:57:6e:83:24:09:1c:ac:9a:f9:1b:db: ed:40:5d:b5:21:dc:b0:d8:da:1b:1f:b2:1d:4d:f9: 07:a9:20:28:f8:93:79:8a:6f:7a:23:1e:e5:d1:4b: 09:82:41:a4:15:ec:31:05:6c:33:94:21:0a:6e:c1: e0:1d:7a:dd:3b:c9:b6:d7:d4:3d:3d:37:18:5a:59: 2f:7a:c1:fa:7e:7f:84:e4:1b:ea:45:dc:88:f3:1b: 16:8a:19:cc:02:cd:dd:ba:a6:24:c6:99:22:5a:b2: bd:b7:24:bd:32:fb:e3:b2:ce:a7:bc:74:c0:4d:4d: af:30:f5:59:39:96:05:82:85:3d:e4:2d:78:66:0d: ce:34:95:99:4c:a7:f7:59:6d:b5:0b:db:bc:0b:bb: 40:a4:a2:a3:ef:3d:c9:c7:4c:35:c5:78:ec:4d:e8: 26:69:b0:67:23:41:c9:b6:57:dd:06:eb:e2:f8:ca: 34:50:77:37:5a:9b:7d:30:57:de:d4:6b:da:aa:21: 23:e2:43:23:89:7f:ec:95:40:c2:81:d6:7c:55:56: 90:08:eb:cc:a3:6e:84:1d:e3:9b:17:13:ea:50:95: cb:2b:71:20:db:cf:88:d3:c5:3d:d3:47:ed:03:07: cb:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:81:1E:36:52:03:3E:26:67:C2:50:31:6F:79:AA:22:BC:D1:F7:34 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NYEeNlIDPiZnwlAxb3mqIrzR9zQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.105.73.0/24 Signature Algorithm: sha256WithRSAEncryption 42:cb:26:2a:35:ae:06:f5:23:19:ac:fd:ef:57:90:eb:69:88: cc:bb:8c:4e:90:6e:7a:62:bb:96:8c:cf:36:c4:25:be:50:ff: b3:47:1e:09:62:2b:39:f3:0c:f4:98:10:82:d1:89:70:1b:5d: fa:b9:79:37:ca:7d:5b:6c:00:65:2c:f2:a6:5d:f8:c3:66:aa: 9c:77:cd:ae:c6:3f:d0:ca:2f:8a:81:7e:09:5b:05:4a:ec:d4: 47:28:86:90:cf:73:ee:76:dd:b4:22:12:7d:15:84:57:9f:15: f6:92:14:9a:97:74:19:06:ad:79:20:d2:67:65:89:62:a3:27: 9e:20:7a:33:ef:e7:20:88:c7:a4:63:dd:64:0e:85:85:9a:2c: 11:70:7c:64:56:e6:59:7a:2c:38:5d:ca:9c:27:40:ff:ee:57: e4:42:4a:0d:19:67:b4:b5:13:89:b0:d8:8e:c7:96:a4:17:a0: 4b:03:17:14:ce:9c:77:2c:7b:c9:1f:a6:a7:e3:35:3d:7f:96: 97:24:4c:98:0e:44:b3:40:48:3f:f4:9b:a9:e4:9e:5a:2a:5a: 5b:d6:e6:ea:ba:93:2b:ca:3f:2d:b2:1a:3d:cf:dc:6c:ea:76: 7b:b5:3b:57:25:08:c7:d4:05:1e:c7:52:3a:30:af:e8:fa:84: 3e:b8:b6:a4 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCA4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjEyMjZaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDM1ODExRTM2NTIwMzNF MjY2N0MyNTAzMTZGNzlBQTIyQkNEMUY3MzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDzihDNyDmEmHIPI9DVpSmjypXboMkCRysmvkb2+1AXbUh3LDY 2hsfsh1N+QepICj4k3mKb3ojHuXRSwmCQaQV7DEFbDOUIQpuweAdet07ybbX1D09 NxhaWS96wfp+f4TkG+pF3IjzGxaKGcwCzd26piTGmSJasr23JL0y++Oyzqe8dMBN Ta8w9Vk5lgWChT3kLXhmDc40lZlMp/dZbbUL27wLu0CkoqPvPcnHTDXFeOxN6CZp sGcjQcm2V90G6+L4yjRQdzdam30wV97Ua9qqISPiQyOJf+yVQMKB1nxVVpAI68yj boQd45sXE+pQlcsrcSDbz4jTxT3TR+0DB8vxAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUNYEeNlIDPiZnwlAxb3mqIrzR9zQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L05ZRWVObElEUGlabndsQXhiM21xSXJ6Ujl6US5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxaUkwDQYJKoZIhvcNAQELBQADggEBAELLJio1rgb1Ixms/e9XkOtpiMy7 jE6Qbnpiu5aMzzbEJb5Q/7NHHgliKznzDPSYEILRiXAbXfq5eTfKfVtsAGUs8qZd +MNmqpx3za7GP9DKL4qBfglbBUrs1EcohpDPc+523bQiEn0VhFefFfaSFJqXdBkG rXkg0mdliWKjJ54gejPv5yCIx6Rj3WQOhYWaLBFwfGRW5ll6LDhdypwnQP/uV+RC Sg0ZZ7S1E4mw2I7HlqQXoEsDFxTOnHcse8kfpqfjNT1/lpckTJgORLNASD/0m6nk nloqWlvW5uq6kyvKPy2yGj3P3Gzqdnu1O1clCMfUBR7HUjowr+j6hD64tqQ= -----END CERTIFICATE-----Generated at Sun Feb 16 22:32:49 2025 by rpki-client