$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/QWhSamHTVojtwN6ullinM78SH1A.roa File: QWhSamHTVojtwN6ullinM78SH1A.roa (raw, json) Hash identifier: QGvGKNdlCo6Awy3dEdESw4UgLWgXvOv/msSQtVCcLR4= Subject key identifier: 41:68:52:6A:61:D3:56:88:ED:C0:DE:AE:96:58:A7:33:BF:12:1F:50 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 09F9 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QWhSamHTVojtwN6ullinM78SH1A.roa Signing time: Sun 30 Jun 2024 01:42:28 +0000 ROA not before: Sun 30 Jun 2024 01:42:28 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.76.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2553 (0x9f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:42:28 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=4168526A61D35688EDC0DEAE9658A733BF121F50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:4a:04:fa:c5:14:b3:8c:90:48:90:18:0b:e3: b7:c3:b1:66:0f:51:d6:66:ed:28:48:f7:9d:c2:53: 0b:f8:f4:b7:35:56:84:7b:55:90:5b:dc:6b:b1:00: a8:c0:d1:9a:4e:b8:c6:c7:5a:f0:25:58:cc:46:f0: 55:af:51:44:00:59:17:3a:32:e6:d4:98:00:b3:16: 22:50:a2:82:a8:91:c7:f9:58:b6:1d:17:32:7e:06: b8:7f:71:d7:d1:1a:fb:d1:1b:e8:96:22:48:1e:f9: ee:ac:65:5b:04:ca:7a:d5:bc:d9:e2:38:11:6e:84: 07:1d:48:9e:fd:f4:c9:31:d5:24:b1:9f:76:90:d8: ef:15:e9:e1:69:12:9b:93:47:85:2e:91:5d:b9:75: 24:2c:10:6a:65:64:0e:f5:4c:0c:55:f5:17:83:54: 23:1d:67:2b:6c:0a:ac:d9:f8:d3:87:09:06:c0:ef: 42:dd:d1:c5:5f:f2:79:48:ac:cc:d7:16:d3:1c:a7: a7:79:ac:2a:54:40:bb:3d:12:f3:39:b0:d4:17:f9: 3a:8c:8c:e9:a0:b5:e2:93:12:98:ca:90:b9:cc:38: e2:c2:ea:f3:e9:98:a0:8f:37:6a:9e:af:f1:01:a0: 3e:5f:ff:35:8a:7a:d2:ab:c7:97:90:1b:04:5f:fc: d2:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:68:52:6A:61:D3:56:88:ED:C0:DE:AE:96:58:A7:33:BF:12:1F:50 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QWhSamHTVojtwN6ullinM78SH1A.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.192.0/20 Signature Algorithm: sha256WithRSAEncryption 36:8a:cf:1b:81:0b:d0:a4:19:b5:93:25:95:1f:5b:79:39:21: 49:3a:50:60:c1:e8:5e:db:ad:de:de:3f:79:56:38:d3:f8:5c: 63:d8:3c:9e:95:6a:a3:74:03:d5:31:21:7c:e6:82:81:e9:f8: 3a:f8:9d:b9:3f:77:e9:c6:a2:dd:eb:89:7f:2a:2f:12:27:47: 62:29:33:04:40:01:e3:6d:73:03:a8:4e:3a:3c:a4:ac:b5:2b: 40:4a:ca:35:71:64:4e:70:bb:0e:45:f8:22:c2:81:92:9a:be: bf:31:30:12:6a:db:e0:59:ac:5b:01:a2:ac:55:3b:75:17:12: 1f:58:50:e2:30:61:19:33:bb:34:c5:49:99:74:39:af:58:35: b3:db:be:5d:24:f3:08:e9:c0:06:70:3a:ba:2c:95:16:93:86: 5d:b1:2d:c3:88:7f:b6:73:23:0d:72:d3:bd:69:d8:1f:a8:00: fd:3b:1d:62:1e:a4:42:9a:bf:45:9b:6d:59:d2:ad:69:bb:67: de:96:fd:ce:b1:ec:8d:a2:08:80:49:7a:3f:1a:95:b7:0c:3c: 3d:4d:3a:5d:7f:f8:58:22:4b:f9:9e:0e:b5:72:e2:64:ea:a8: 92:af:20:19:22:5e:94:df:c4:bf:75:a1:56:37:5f:02:b8:ed: 21:67:4e:f9 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCfkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQyMjhaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDQxNjg1MjZBNjFEMzU2 ODhFREMwREVBRTk2NThBNzMzQkYxMjFGNTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnSgT6xRSzjJBIkBgL47fDsWYPUdZm7ShI953CUwv49Lc1VoR7 VZBb3GuxAKjA0ZpOuMbHWvAlWMxG8FWvUUQAWRc6MubUmACzFiJQooKokcf5WLYd FzJ+Brh/cdfRGvvRG+iWIkge+e6sZVsEynrVvNniOBFuhAcdSJ799Mkx1SSxn3aQ 2O8V6eFpEpuTR4UukV25dSQsEGplZA71TAxV9ReDVCMdZytsCqzZ+NOHCQbA70Ld 0cVf8nlIrMzXFtMcp6d5rCpUQLs9EvM5sNQX+TqMjOmgteKTEpjKkLnMOOLC6vPp mKCPN2qer/EBoD5f/zWKetKrx5eQGwRf/NJrAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUQWhSamHTVojtwN6ullinM78SH1AwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1FXaFNhbUhUVm9qdHdONnVsbGluTTc4U0gxQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQBTMAwDQYJKoZIhvcNAQELBQADggEBADaKzxuBC9CkGbWTJZUfW3k5IUk6 UGDB6F7brd7eP3lWONP4XGPYPJ6VaqN0A9UxIXzmgoHp+Dr4nbk/d+nGot3riX8q LxInR2IpMwRAAeNtcwOoTjo8pKy1K0BKyjVxZE5wuw5F+CLCgZKavr8xMBJq2+BZ rFsBoqxVO3UXEh9YUOIwYRkzuzTFSZl0Oa9YNbPbvl0k8wjpwAZwOroslRaThl2x LcOIf7ZzIw1y071p2B+oAP07HWIepEKav0WbbVnSrWm7Z96W/c6x7I2iCIBJej8a lbcMPD1NOl1/+FgiS/meDrVy4mTqqJKvIBkiXpTfxL91oVY3XwK47SFnTvk= -----END CERTIFICATE-----Generated at Sun Feb 16 22:07:31 2025 by rpki-client