$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/PCJKaxmHigvhxRhKzjdFIEQt7kc.roa File: PCJKaxmHigvhxRhKzjdFIEQt7kc.roa (raw, json) Hash identifier: xhFfrcljZixDqLvA8Tp/RL+SP6aWwlpz4baG7K/7SJg= Subject key identifier: 3C:22:4A:6B:19:87:8A:0B:E1:C5:18:4A:CE:37:45:20:44:2D:EE:47 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0977 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/PCJKaxmHigvhxRhKzjdFIEQt7kc.roa Signing time: Sun 30 Jun 2024 01:33:42 +0000 ROA not before: Sun 30 Jun 2024 01:33:42 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.76.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2423 (0x977) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:33:42 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=3C224A6B19878A0BE1C5184ACE374520442DEE47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8e:4e:b8:45:62:3a:0c:e6:61:4b:80:a2:cb: 87:13:11:29:c7:f8:d4:a4:27:3d:c2:a9:71:7d:98: c0:2c:32:d7:ef:8f:2a:be:6f:2f:0e:e0:4c:38:d8: e0:fb:e2:47:fb:b1:2f:c7:a3:80:e5:7b:6a:f7:fe: e5:4f:3f:9d:a6:1e:db:cc:44:39:70:91:28:c5:db: 4c:ac:b5:0a:f3:84:dc:d9:3a:36:fb:b2:6e:b4:65: c2:7c:e0:83:da:12:23:f8:e8:86:04:24:96:0e:dd: fa:fc:8a:d1:4a:ea:9a:9c:6d:7f:17:ae:8f:29:fa: a9:69:76:cd:78:6d:d5:99:58:86:13:0b:5c:ce:2a: 23:af:22:4c:4b:4c:bb:61:b1:5c:30:b8:22:89:be: 42:71:4b:ee:b4:ef:b4:e5:13:39:8f:8c:f0:51:5f: 11:95:d2:fc:46:f0:02:ca:f0:74:32:b1:84:7b:77: 42:86:ab:4d:0b:bd:94:04:05:7d:0d:1b:95:3d:4e: dd:4f:4c:13:aa:21:b2:bd:32:8a:1b:be:72:d2:be: 40:b1:b1:55:d0:ef:80:25:64:58:f0:e0:0a:21:1a: 27:ed:98:d6:9b:6d:f4:d7:7e:5d:02:93:3d:af:37: 23:a4:d1:af:bf:bf:1b:c0:c1:8b:0b:83:4e:10:6d: 65:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:22:4A:6B:19:87:8A:0B:E1:C5:18:4A:CE:37:45:20:44:2D:EE:47 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/PCJKaxmHigvhxRhKzjdFIEQt7kc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.208.0/20 Signature Algorithm: sha256WithRSAEncryption 25:cf:c7:c8:b7:9d:df:88:2c:10:e0:56:c2:a5:9f:09:af:28: a2:38:85:ff:31:62:99:1b:16:29:4e:be:41:ac:39:73:02:af: 8d:a0:da:b9:41:44:ca:35:35:9a:dd:e1:9a:59:76:f0:34:ce: ea:8d:67:42:d5:b1:31:aa:40:fe:83:6b:03:b2:09:93:07:65: 8f:4a:e2:c6:18:22:df:e1:c2:64:31:4a:05:72:18:1d:81:23: 5d:97:5f:36:71:e4:37:8b:4d:f1:15:2d:37:0a:55:ab:23:a7: b2:1d:58:0e:a0:14:90:7a:c3:db:58:c4:d0:41:be:a2:b3:5f: 46:e3:4c:10:2c:f8:5a:35:b2:8e:6e:52:07:52:91:33:e9:fb: c1:7a:cd:ff:dd:d4:c5:93:51:c0:74:33:85:e9:0b:c3:d3:02: 3f:d7:7e:f2:ae:c0:cb:cd:e7:6f:9b:f8:6b:72:e1:74:1d:0c: 4b:dc:80:5c:ed:ad:80:56:57:60:8a:cb:b0:9f:db:a2:3e:6c: 33:18:e7:c1:cd:20:eb:8b:f5:ce:a1:e0:66:42:d7:20:0a:70: 37:e2:cd:d5:75:f3:a4:7b:2a:19:3c:48:54:fb:a5:f0:b2:3c: 6c:53:12:a3:f4:00:2e:39:c8:4b:68:ee:fc:99:94:c1:14:02: 0e:21:d9:e1 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCXcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTMzNDJaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDNDMjI0QTZCMTk4NzhB MEJFMUM1MTg0QUNFMzc0NTIwNDQyREVFNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCjk64RWI6DOZhS4Ciy4cTESnH+NSkJz3CqXF9mMAsMtfvjyq+ by8O4Ew42OD74kf7sS/Ho4Dle2r3/uVPP52mHtvMRDlwkSjF20ystQrzhNzZOjb7 sm60ZcJ84IPaEiP46IYEJJYO3fr8itFK6pqcbX8Xro8p+qlpds14bdWZWIYTC1zO KiOvIkxLTLthsVwwuCKJvkJxS+6077TlEzmPjPBRXxGV0vxG8ALK8HQysYR7d0KG q00LvZQEBX0NG5U9Tt1PTBOqIbK9MoobvnLSvkCxsVXQ74AlZFjw4AohGiftmNab bfTXfl0Ckz2vNyOk0a+/vxvAwYsLg04QbWWlAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUPCJKaxmHigvhxRhKzjdFIEQt7kcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1BDSktheG1IaWd2aHhSaEt6amRGSUVRdDdrYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQBTNAwDQYJKoZIhvcNAQELBQADggEBACXPx8i3nd+ILBDgVsKlnwmvKKI4 hf8xYpkbFilOvkGsOXMCr42g2rlBRMo1NZrd4ZpZdvA0zuqNZ0LVsTGqQP6DawOy CZMHZY9K4sYYIt/hwmQxSgVyGB2BI12XXzZx5DeLTfEVLTcKVasjp7IdWA6gFJB6 w9tYxNBBvqKzX0bjTBAs+Fo1so5uUgdSkTPp+8F6zf/d1MWTUcB0M4XpC8PTAj/X fvKuwMvN52+b+Gty4XQdDEvcgFztrYBWV2CKy7Cf26I+bDMY58HNIOuL9c6h4GZC 1yAKcDfizdV186R7Khk8SFT7pfCyPGxTEqP0AC45yEto7vyZlMEUAg4h2eE= -----END CERTIFICATE-----Generated at Sun Feb 16 22:20:49 2025 by rpki-client