$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Q79CUHb0OwoCUG3b5vyvLvjtqKI.roa File: Q79CUHb0OwoCUG3b5vyvLvjtqKI.roa (raw, json) Hash identifier: YWCt5nYCkBWKRs3CLPmBXnIHCPl5ARiXL/KWvwq6EdY= Subject key identifier: 43:BF:42:50:76:F4:3B:0A:02:50:6D:DB:E6:FC:AF:2E:F8:ED:A8:A2 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B1C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Q79CUHb0OwoCUG3b5vyvLvjtqKI.roa Signing time: Fri 31 Jan 2025 01:37:56 +0000 ROA not before: Fri 31 Jan 2025 01:37:56 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2844 (0xb1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:37:56 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=43BF425076F43B0A02506DDBE6FCAF2EF8EDA8A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:2f:47:67:74:a9:5d:4a:dc:ee:55:f3:f1:6b: 1d:f4:f7:8f:15:40:71:40:c5:c2:1c:a1:51:29:a4: 6f:17:0e:4e:5f:22:1d:16:5b:d8:5f:db:9e:52:50: 14:cf:a4:be:31:b4:92:a6:9c:72:ee:4d:39:e1:66: 5a:90:df:b9:07:79:a7:b2:bc:cd:a2:ac:ab:f1:f5: 88:4f:a9:51:2e:46:e7:0d:72:30:34:06:ad:14:bf: 1e:8d:fc:4d:48:99:f8:cd:13:84:8a:be:eb:ad:7b: 49:2e:41:19:58:76:1b:d6:3c:92:1c:3b:df:5f:44: 7a:97:e6:b4:51:e6:13:a6:92:dc:ed:b2:01:f2:ce: b3:c4:87:83:ff:b3:56:bf:20:77:6d:86:61:2e:ec: 8b:c6:72:5e:95:83:10:30:28:de:0a:62:9a:19:22: e4:d8:28:8c:0e:8a:fa:41:e4:ef:b7:e8:3e:ad:9b: a1:38:bb:cf:b2:41:8b:c1:84:57:4e:95:08:2b:8e: 37:3a:e7:93:6a:ab:0f:c0:ef:73:ad:c7:65:49:95: b2:2c:9c:04:e1:cb:ca:6f:88:10:a4:a5:37:d3:6b: 7f:ad:6b:1e:1c:c4:8d:31:30:d7:e2:a9:af:60:37: 23:e5:9a:ba:8c:1d:01:d8:43:e8:1c:e1:e3:a1:bd: 0f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:BF:42:50:76:F4:3B:0A:02:50:6D:DB:E6:FC:AF:2E:F8:ED:A8:A2 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Q79CUHb0OwoCUG3b5vyvLvjtqKI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.14.0/24 Signature Algorithm: sha256WithRSAEncryption 58:0e:c9:ac:09:1a:da:f3:fb:d9:43:3f:18:e4:84:73:0c:70: d0:20:af:92:d5:86:af:64:4c:4d:e6:e4:54:c8:6b:3a:1e:00: 87:f8:1f:98:80:55:db:83:a7:0e:67:e6:f8:e6:63:e3:56:f4: ab:04:ef:4f:21:b5:47:34:dd:f0:5d:14:e3:c8:15:e0:18:b2: f6:93:d8:02:74:af:4b:01:08:90:44:e8:d5:fc:ce:38:d6:42: e9:e1:95:16:7e:99:96:d4:44:c2:4b:3a:9e:6c:5a:e1:05:cc: 2e:19:c5:13:6c:22:90:d7:7f:8e:71:86:d7:54:ab:6a:63:94: 46:d1:00:e3:14:13:b6:8c:e1:50:e9:e0:8c:c9:08:fe:c8:67: 2d:09:9b:54:8a:52:e8:12:bf:5e:2f:aa:ae:65:de:ea:65:25: 52:63:93:09:b8:75:6d:6d:7a:84:fc:95:39:6d:80:72:4d:d1: 56:cd:25:55:f5:f9:7c:c7:0c:1b:78:db:2b:1c:ee:15:96:0e: 1c:07:6e:5f:63:81:19:99:0a:43:43:df:b2:ce:98:46:d1:d0: e3:2e:20:87:4c:14:48:25:97:c9:3f:10:b4:13:64:5c:d1:9d: db:02:11:8a:00:e8:65:5b:cf:50:73:1c:4b:75:c1:fb:f3:60: 25:7e:f3:56 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCxwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTM3NTZaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDQzQkY0MjUwNzZGNDNC MEEwMjUwNkREQkU2RkNBRjJFRjhFREE4QTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgL0dndKldStzuVfPxax30948VQHFAxcIcoVEppG8XDk5fIh0W W9hf255SUBTPpL4xtJKmnHLuTTnhZlqQ37kHeaeyvM2irKvx9YhPqVEuRucNcjA0 Bq0Uvx6N/E1ImfjNE4SKvuute0kuQRlYdhvWPJIcO99fRHqX5rRR5hOmktztsgHy zrPEh4P/s1a/IHdthmEu7IvGcl6VgxAwKN4KYpoZIuTYKIwOivpB5O+36D6tm6E4 u8+yQYvBhFdOlQgrjjc655Nqqw/A73Otx2VJlbIsnAThy8pviBCkpTfTa3+tax4c xI0xMNfiqa9gNyPlmrqMHQHYQ+gc4eOhvQ8ZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUQ79CUHb0OwoCUG3b5vyvLvjtqKIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1E3OUNVSGIwT3dvQ1VHM2I1dnl2THZqdHFLSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABSw4wDQYJKoZIhvcNAQELBQADggEBAFgOyawJGtrz+9lDPxjkhHMMcNAg r5LVhq9kTE3m5FTIazoeAIf4H5iAVduDpw5n5vjmY+NW9KsE708htUc03fBdFOPI FeAYsvaT2AJ0r0sBCJBE6NX8zjjWQunhlRZ+mZbURMJLOp5sWuEFzC4ZxRNsIpDX f45xhtdUq2pjlEbRAOMUE7aM4VDp4IzJCP7IZy0Jm1SKUugSv14vqq5l3uplJVJj kwm4dW1teoT8lTltgHJN0VbNJVX1+XzHDBt42ysc7hWWDhwHbl9jgRmZCkND37LO mEbR0OMuIIdMFEgll8k/ELQTZFzRndsCEYoA6GVbz1BzHEt1wfvzYCV+81Y= -----END CERTIFICATE-----Generated at Wed Feb 19 22:37:39 2025 by rpki-client