$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/PJMHDJVADBr9CPmzSGlsIZqBkSI.roa File: PJMHDJVADBr9CPmzSGlsIZqBkSI.roa (raw, json) Hash identifier: lac+gJ0YFq1kWzZeqLwgaEVAwUVSemdbcQkUg0yKblk= Subject key identifier: 3C:93:07:0C:95:40:0C:1A:FD:08:F9:B3:48:69:6C:21:9A:81:91:22 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B08 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/PJMHDJVADBr9CPmzSGlsIZqBkSI.roa Signing time: Fri 31 Jan 2025 01:34:22 +0000 ROA not before: Fri 31 Jan 2025 01:34:22 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.72.6.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2824 (0xb08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:34:22 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=3C93070C95400C1AFD08F9B348696C219A819122 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:45:a9:1d:30:ac:47:ab:9c:ff:b7:cf:79:5a: 03:68:d0:9d:48:4b:d9:4b:88:7a:24:c4:25:85:cf: 77:03:b0:f6:1b:62:5b:93:d7:00:f4:66:7b:a2:ed: 82:f2:41:c4:5d:81:3a:7a:30:e8:43:51:87:90:05: a2:28:f7:43:c4:04:61:c0:20:9e:8e:fd:6e:c6:0c: 3f:d8:68:06:36:78:a4:df:c3:d5:b2:45:63:e8:26: 26:93:e9:b0:b1:f0:9f:1d:f5:a3:20:19:57:d3:ba: b7:d1:5e:2c:00:e1:d9:b5:28:f1:49:7c:47:70:97: 2b:a6:10:13:5c:1d:a2:94:b3:a1:c0:63:dc:56:c0: 82:00:6e:fd:4d:10:2a:83:ae:17:c4:6f:c6:ae:92: 02:a5:f1:45:0e:53:90:01:aa:35:7b:95:7d:f6:35: 9a:9f:0c:e5:8a:83:ec:6e:34:db:a4:65:92:4e:39: 77:5e:55:cc:8b:aa:59:2e:56:14:76:d0:b3:ce:85: d9:32:e9:96:4e:c9:a8:1f:77:e1:e9:c3:ce:c2:c9: 77:6b:be:5b:ab:de:d2:56:51:0d:c1:5f:f1:00:77: 30:a9:b3:b2:ac:13:50:9e:f6:71:40:78:42:a7:1f: e0:ef:45:54:17:e3:cb:70:ce:36:03:5b:ad:77:6b: a6:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:93:07:0C:95:40:0C:1A:FD:08:F9:B3:48:69:6C:21:9A:81:91:22 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/PJMHDJVADBr9CPmzSGlsIZqBkSI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.6.0/23 Signature Algorithm: sha256WithRSAEncryption 62:77:f4:e7:b9:ec:e7:6a:e9:55:87:4f:41:21:71:05:d7:4a: 9b:35:87:0d:93:9e:10:a1:7f:95:db:37:6c:5e:17:1a:6d:b5: 48:71:12:9f:20:71:43:22:eb:1f:55:c4:8b:95:0f:69:17:80: 6f:57:9d:44:ae:34:97:d4:7e:47:09:f8:a0:aa:95:07:81:53: ec:18:38:19:06:b8:6c:44:24:f2:26:de:6b:97:5f:47:dd:39: b6:94:43:73:ad:93:45:7f:9f:a1:5a:b4:a8:1c:c1:fb:04:94: 05:de:0f:c9:71:b1:c5:d6:7b:c0:6c:b5:6b:b6:8e:53:ed:ff: 40:8a:76:ac:ac:1c:9a:98:6a:9f:45:9d:2f:ee:14:db:3d:14: af:82:2e:b3:b8:ee:aa:00:7a:d6:ad:ef:53:10:6e:b1:92:11: 64:26:df:2f:d7:c0:48:ee:85:92:d3:09:a1:cb:b3:9b:8c:43: b7:9e:b8:6f:ef:39:ec:81:a6:8b:74:a7:34:90:1e:10:b5:57: ab:f9:b7:24:44:5f:e4:0f:d5:23:4c:91:33:df:ce:67:9b:09: 60:d6:fa:3a:3d:e5:ae:b3:7e:61:4e:b2:0a:1a:45:4c:a1:5d: 7c:d2:b5:20:bc:a3:ff:2f:a0:0f:6a:99:11:5d:0a:ac:67:cf: 33:d9:92:65 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCwgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTM0MjJaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDNDOTMwNzBDOTU0MDBD MUFGRDA4RjlCMzQ4Njk2QzIxOUE4MTkxMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0RakdMKxHq5z/t895WgNo0J1IS9lLiHokxCWFz3cDsPYbYluT 1wD0Znui7YLyQcRdgTp6MOhDUYeQBaIo90PEBGHAIJ6O/W7GDD/YaAY2eKTfw9Wy RWPoJiaT6bCx8J8d9aMgGVfTurfRXiwA4dm1KPFJfEdwlyumEBNcHaKUs6HAY9xW wIIAbv1NECqDrhfEb8aukgKl8UUOU5ABqjV7lX32NZqfDOWKg+xuNNukZZJOOXde VcyLqlkuVhR20LPOhdky6ZZOyagfd+Hpw87CyXdrvlur3tJWUQ3BX/EAdzCps7Ks E1Ce9nFAeEKnH+DvRVQX48twzjYDW613a6bbAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUPJMHDJVADBr9CPmzSGlsIZqBkSIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1BKTUhESlZBREJyOUNQbXpTR2xzSVpxQmtTSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBSAYwDQYJKoZIhvcNAQELBQADggEBAGJ39Oe57Odq6VWHT0EhcQXXSps1 hw2TnhChf5XbN2xeFxpttUhxEp8gcUMi6x9VxIuVD2kXgG9XnUSuNJfUfkcJ+KCq lQeBU+wYOBkGuGxEJPIm3muXX0fdObaUQ3Otk0V/n6FatKgcwfsElAXeD8lxscXW e8BstWu2jlPt/0CKdqysHJqYap9FnS/uFNs9FK+CLrO47qoAetat71MQbrGSEWQm 3y/XwEjuhZLTCaHLs5uMQ7eeuG/vOeyBpot0pzSQHhC1V6v5tyREX+QP1SNMkTPf zmebCWDW+jo95a6zfmFOsgoaRUyhXXzStSC8o/8voA9qmRFdCqxnzzPZkmU= -----END CERTIFICATE-----Generated at Wed Feb 19 22:44:27 2025 by rpki-client