$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/P7oBAnYcCxUO7NfGDB3StTT6HhY.roa File: P7oBAnYcCxUO7NfGDB3StTT6HhY.roa (raw, json) Hash identifier: ZMBelIXcA7huvKsEVp4Wm1Oc/+GAcXT4S6iSyas5hCU= Subject key identifier: 3F:BA:01:02:76:1C:0B:15:0E:EC:D7:C6:0C:1D:D2:B5:34:FA:1E:16 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0AF5 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/P7oBAnYcCxUO7NfGDB3StTT6HhY.roa Signing time: Fri 31 Jan 2025 01:28:35 +0000 ROA not before: Fri 31 Jan 2025 01:28:35 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2805 (0xaf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:28:35 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=3FBA0102761C0B150EECD7C60C1DD2B534FA1E16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:e2:7c:4a:6f:b0:fe:1d:83:f4:ef:9b:52:16: 05:bc:72:3e:12:52:51:ab:ad:58:cc:ba:84:0e:fc: 7e:70:f2:47:e6:8e:bf:81:66:db:80:b3:b1:f4:4a: 52:91:f1:c5:18:7e:6f:da:56:7f:60:fa:dd:bd:9a: e2:0b:c2:e7:60:90:e7:37:54:ef:4e:df:4a:43:b4: ba:05:eb:4f:82:34:5c:57:55:4c:c1:c0:42:c3:17: 66:76:a9:e9:86:d6:9d:d0:b0:b1:b1:96:94:e3:14: d2:14:37:3b:93:48:cb:68:d7:2b:cd:8c:d1:3a:0f: 1b:56:f5:7c:70:34:6f:1a:03:65:6e:e4:e0:c8:0e: e5:6a:fc:7a:01:b7:55:49:18:ba:c0:79:62:7c:83: a7:9f:e8:db:07:be:96:69:cf:6e:a0:b7:d0:7f:24: d2:24:55:09:d1:31:5d:dd:a0:94:41:c6:93:12:c3: 36:97:41:cd:3c:50:c5:29:2a:98:52:0d:05:0c:11: e3:21:8a:db:70:85:55:cf:fb:f8:c7:d4:f6:27:23: ff:b5:ee:a2:8a:ce:51:e6:0b:74:f6:43:77:21:21: d8:8a:23:bb:4a:2c:3a:b5:67:5b:44:ca:e7:34:e3: 47:52:cf:28:b4:6e:fb:1e:1e:ee:d1:ab:1c:3d:0a: 09:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:BA:01:02:76:1C:0B:15:0E:EC:D7:C6:0C:1D:D2:B5:34:FA:1E:16 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/P7oBAnYcCxUO7NfGDB3StTT6HhY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.16.0/21 Signature Algorithm: sha256WithRSAEncryption 23:8f:d0:99:9c:92:b2:1f:8b:95:1e:16:14:a0:82:e8:d1:63: 9d:51:98:b1:41:30:a9:b1:92:df:05:5f:e2:89:51:24:2b:a4: f2:12:31:f1:e5:e2:7d:fa:e4:a0:4d:3f:5d:47:70:23:54:27: 28:51:f4:72:28:67:6e:eb:8f:d7:3a:34:3e:90:19:ac:6d:49: 57:a3:8c:0f:24:f3:f5:71:0e:a9:f9:4a:ec:f5:e6:0d:87:94: 66:6e:1a:42:b1:e2:ec:92:ab:7d:11:a9:26:9f:eb:a5:1e:ed: 98:a2:53:d3:b1:f3:35:b6:11:2d:10:78:c6:4c:5c:5e:44:b4: 8f:f4:3f:45:0e:10:fd:82:62:a4:08:a5:6f:89:4d:79:ec:e2: 3f:de:51:60:fd:dc:1f:57:4d:13:54:e6:a7:4d:16:1d:7c:80: ec:07:d5:aa:72:c5:9b:2e:1b:1b:3e:8c:7e:0e:f3:6e:c9:ee: eb:9c:9c:fa:51:db:2b:db:05:a6:f1:5c:19:ef:31:4f:97:a3: 21:57:e3:62:bb:47:9f:39:f2:fc:d6:39:04:94:61:83:1f:d3: e8:45:c4:bb:20:6b:c2:ad:f2:aa:40:ab:b2:36:b1:1c:83:0a: 42:5c:26:73:17:38:bf:6b:70:38:3a:7c:bf:54:bf:e5:dd:87: 38:a8:7c:b0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCvUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTI4MzVaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDNGQkEwMTAyNzYxQzBC MTUwRUVDRDdDNjBDMUREMkI1MzRGQTFFMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDl4nxKb7D+HYP075tSFgW8cj4SUlGrrVjMuoQO/H5w8kfmjr+B ZtuAs7H0SlKR8cUYfm/aVn9g+t29muILwudgkOc3VO9O30pDtLoF60+CNFxXVUzB wELDF2Z2qemG1p3QsLGxlpTjFNIUNzuTSMto1yvNjNE6DxtW9XxwNG8aA2Vu5ODI DuVq/HoBt1VJGLrAeWJ8g6ef6NsHvpZpz26gt9B/JNIkVQnRMV3doJRBxpMSwzaX Qc08UMUpKphSDQUMEeMhittwhVXP+/jH1PYnI/+17qKKzlHmC3T2Q3chIdiKI7tK LDq1Z1tEyuc040dSzyi0bvseHu7Rqxw9CgnzAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUP7oBAnYcCxUO7NfGDB3StTT6HhYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1A3b0JBblljQ3hVTzdOZkdEQjNTdFRUNkhoWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBSxAwDQYJKoZIhvcNAQELBQADggEBACOP0JmckrIfi5UeFhSggujRY51R mLFBMKmxkt8FX+KJUSQrpPISMfHl4n365KBNP11HcCNUJyhR9HIoZ27rj9c6ND6Q GaxtSVejjA8k8/VxDqn5Suz15g2HlGZuGkKx4uySq30RqSaf66Ue7ZiiU9Ox8zW2 ES0QeMZMXF5EtI/0P0UOEP2CYqQIpW+JTXns4j/eUWD93B9XTRNU5qdNFh18gOwH 1apyxZsuGxs+jH4O827J7uucnPpR2yvbBabxXBnvMU+XoyFX42K7R5858vzWOQSU YYMf0+hFxLsga8Kt8qpAq7I2sRyDCkJcJnMXOL9rcDg6fL9Uv+XdhziofLA= -----END CERTIFICATE-----Generated at Wed Feb 19 22:41:35 2025 by rpki-client