$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/QDVSuCSbbzEcDmooL0SX3FmbDbA.roa File: QDVSuCSbbzEcDmooL0SX3FmbDbA.roa (raw, json) Hash identifier: rWlvaQfC4aas6IKNZUbTohRKV3B5cJ17Iae82Xk+WnA= Subject key identifier: 40:35:52:B8:24:9B:6F:31:1C:0E:6A:28:2F:44:97:DC:59:9B:0D:B0 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0696 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QDVSuCSbbzEcDmooL0SX3FmbDbA.roa Signing time: Tue 30 Apr 2024 01:43:09 +0000 ROA not before: Tue 30 Apr 2024 01:43:09 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.48.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1686 (0x696) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:43:09 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=403552B8249B6F311C0E6A282F4497DC599B0DB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:63:f8:a2:b0:31:04:ba:00:1b:d0:4c:33:e9: ce:fb:8a:6c:33:d0:c4:57:d8:25:96:73:90:61:ad: b9:c5:e7:dd:8d:99:e1:a9:1d:8c:a0:e9:5b:be:44: e2:b9:a4:63:d9:4d:4b:66:6e:ba:b5:4c:f4:d3:20: 11:d7:9d:a2:ec:76:05:ca:24:42:35:ba:f1:a1:41: 18:42:24:2e:75:95:c2:a4:68:36:71:09:15:62:48: d4:d4:eb:0f:e3:2f:46:e7:ad:36:17:d2:e4:a6:69: 2b:11:30:26:78:24:e8:ae:18:dd:b1:dd:39:c9:92: 6f:07:58:ba:3f:e1:a5:59:5d:dd:89:75:c5:bc:e6: ae:49:da:1f:ec:0a:7d:3c:69:1b:b8:dd:95:f5:d0: f7:9f:b4:f0:65:47:e4:1e:35:5c:1d:d8:9a:bb:06: 83:2b:77:d7:9e:33:d2:47:6a:d2:de:12:68:f2:80: 8b:7c:49:3b:32:47:04:f8:fe:e1:53:19:15:24:82: 8a:08:04:6e:76:cc:0d:9a:f5:d5:fa:50:ae:63:de: e7:8f:cb:05:63:90:08:83:eb:28:0f:02:49:62:e3: 15:aa:88:68:5e:91:7b:c4:79:6f:45:37:61:0d:14: 9e:58:5f:35:b1:77:7e:05:bb:25:7e:52:76:c4:96: 3a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:35:52:B8:24:9B:6F:31:1C:0E:6A:28:2F:44:97:DC:59:9B:0D:B0 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QDVSuCSbbzEcDmooL0SX3FmbDbA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.48.0/23 Signature Algorithm: sha256WithRSAEncryption 6b:0e:53:d7:68:df:fc:ef:e7:4b:31:ef:92:49:f4:16:62:37: ae:eb:58:09:24:7f:c9:99:50:b8:bb:b2:49:1a:b2:cb:1b:50: 7f:23:ac:af:77:50:eb:bc:f4:e8:4d:2f:fc:99:cf:f4:f6:58: 14:18:64:69:17:e3:04:01:4a:38:3c:33:6b:d6:0d:ee:7e:08: 54:e2:e4:7f:03:db:81:31:7e:cc:40:f7:0d:f1:b2:59:91:b4: 10:d6:d3:6e:e4:1f:47:7a:fa:ec:07:02:1e:1c:d7:03:c2:ca: 63:27:e2:08:3a:4e:22:d6:9e:58:93:42:7c:cf:77:85:d3:8f: ea:24:9b:cd:dd:68:00:d3:e0:2e:fe:9f:d2:b2:e4:0e:54:11: 2a:05:ec:2a:12:69:a9:bc:47:80:9e:5c:a0:c7:76:45:71:87: 54:8f:eb:ff:a9:d9:7b:30:79:fd:90:59:77:56:65:3b:ef:26: 8f:2f:f5:d1:20:c4:72:e2:57:dd:3e:c4:e8:c5:e0:76:8d:82: 60:5c:ab:97:a9:78:f0:da:ba:51:20:f9:f4:15:a4:7b:5a:c6: 96:f6:46:e9:23:75:b3:b6:4f:60:2e:85:f0:47:30:44:80:08: a1:4d:48:04:4c:9a:55:c5:b8:36:73:53:e9:44:ed:5a:45:a0: a1:81:00:71 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBpYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTQzMDlaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDQwMzU1MkI4MjQ5QjZG MzExQzBFNkEyODJGNDQ5N0RDNTk5QjBEQjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyY/iisDEEugAb0Ewz6c77imwz0MRX2CWWc5BhrbnF592NmeGp HYyg6Vu+ROK5pGPZTUtmbrq1TPTTIBHXnaLsdgXKJEI1uvGhQRhCJC51lcKkaDZx CRViSNTU6w/jL0bnrTYX0uSmaSsRMCZ4JOiuGN2x3TnJkm8HWLo/4aVZXd2JdcW8 5q5J2h/sCn08aRu43ZX10PeftPBlR+QeNVwd2Jq7BoMrd9eeM9JHatLeEmjygIt8 STsyRwT4/uFTGRUkgooIBG52zA2a9dX6UK5j3uePywVjkAiD6ygPAkli4xWqiGhe kXvEeW9FN2ENFJ5YXzWxd34FuyV+UnbEljrvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUQDVSuCSbbzEcDmooL0SX3FmbDbAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1FEVlN1Q1NiYnpFY0Rtb29MMFNYM0ZtYkRiQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYjAwDQYJKoZIhvcNAQELBQADggEBAGsOU9do3/zv50sx75JJ9BZiN67r WAkkf8mZULi7skkasssbUH8jrK93UOu89OhNL/yZz/T2WBQYZGkX4wQBSjg8M2vW De5+CFTi5H8D24ExfsxA9w3xslmRtBDW027kH0d6+uwHAh4c1wPCymMn4gg6TiLW nliTQnzPd4XTj+okm83daADT4C7+n9Ky5A5UESoF7CoSaam8R4CeXKDHdkVxh1SP 6/+p2Xswef2QWXdWZTvvJo8v9dEgxHLiV90+xOjF4HaNgmBcq5epePDaulEg+fQV pHtaxpb2RukjdbO2T2AuhfBHMESACKFNSARMmlXFuDZzU+lE7VpFoKGBAHE= -----END CERTIFICATE-----Generated at Sun Feb 16 22:17:58 2025 by rpki-client