$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/QoaHhSwmVNCLdUyOCzG2X80BsRM.roa File: QoaHhSwmVNCLdUyOCzG2X80BsRM.roa (raw, json) Hash identifier: KHW/yrSsduwOGXjlg6m7CAAOgFqv/ATaHkx7hkKweoo= Subject key identifier: 42:86:87:85:2C:26:54:D0:8B:75:4C:8E:0B:31:B6:5F:CD:01:B1:13 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0724 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QoaHhSwmVNCLdUyOCzG2X80BsRM.roa Signing time: Tue 30 Apr 2024 01:55:52 +0000 ROA not before: Tue 30 Apr 2024 01:55:52 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.75.240.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1828 (0x724) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:55:52 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=428687852C2654D08B754C8E0B31B65FCD01B113 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a3:a9:5d:9e:b0:bb:73:75:da:d6:64:d2:39: 02:c7:2e:c0:70:2a:28:23:5e:da:a4:8d:f4:d2:3f: 18:b7:1a:88:20:ec:15:ba:4e:56:b4:41:0a:ef:fa: 85:7f:7c:3f:f1:b3:a3:b3:d9:0a:6c:98:7a:bd:02: 3f:28:95:40:57:f5:0d:bb:53:ab:21:7d:ff:10:c3: dc:e1:1f:e1:91:15:bb:af:2d:cc:17:5d:65:e4:e4: 53:d1:c9:8c:c9:4e:a7:32:af:ba:f0:a1:f1:40:e8: 98:6a:56:92:dd:cc:68:9f:fd:21:68:1f:85:ec:21: 0d:28:f0:d5:a1:4b:f7:da:c7:89:d1:54:41:c1:f9: 4e:cb:6c:9e:65:d9:f5:e9:4d:d3:82:7c:62:2c:f4: b9:9b:7f:1d:8b:b9:ab:c0:77:7b:43:51:34:6a:92: 26:31:0a:06:f3:d6:8e:d0:a6:04:00:8f:7a:4f:45: c7:2b:05:04:5f:bf:fb:b8:02:53:8d:03:99:c1:2d: 30:de:6e:8d:6e:7e:09:8f:ff:70:64:c0:cd:bd:e7: 60:7b:11:0b:d3:07:8a:09:e3:9e:cf:e6:43:e0:38: 01:6a:7d:7b:46:d4:f8:4f:8e:4f:ed:e8:40:1b:0b: f1:cc:68:2a:b1:1e:19:70:58:33:70:9a:f8:a9:fb: a5:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:86:87:85:2C:26:54:D0:8B:75:4C:8E:0B:31:B6:5F:CD:01:B1:13 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QoaHhSwmVNCLdUyOCzG2X80BsRM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.240.0/23 Signature Algorithm: sha256WithRSAEncryption 32:3f:a6:19:c3:c6:3e:5f:05:e9:ac:af:14:92:76:9b:6b:76: 87:21:d3:ef:5f:13:95:9b:f7:50:48:ad:95:d9:95:a9:86:0e: 19:32:15:65:ef:0b:7c:8f:25:ec:bc:18:94:99:7e:58:3a:d4: 21:50:46:1f:59:0e:d4:d7:8f:41:e0:2a:97:69:9b:0f:f3:67: c7:13:54:ad:13:a5:3b:9c:38:73:54:3a:4d:ba:0c:4e:ff:8e: 74:90:fa:42:0b:0e:43:5d:c2:65:be:4d:6b:a4:49:3c:fe:15: 91:f8:53:af:27:06:ae:8d:60:a6:19:15:9e:ec:bd:6d:66:ad: 54:b8:29:33:4e:e6:92:aa:3f:d7:58:c9:23:fb:d7:a6:f2:86: 4b:4c:98:4c:88:c2:13:f5:47:d6:dd:32:f0:08:3f:ac:68:fb: 7a:c8:e4:26:91:31:14:78:cb:b1:24:03:4e:32:e6:d2:70:5e: 91:a2:ce:a1:90:7f:da:e6:ca:ab:84:d3:84:74:ad:e2:e2:ce: f1:97:ce:8e:24:5f:cd:9f:b8:f2:c8:df:0d:9e:9f:1f:a4:6b: 4c:82:cf:b3:78:95:e7:1a:f3:e7:71:fe:93:e5:2c:bd:7c:a7: 66:f0:f7:8c:60:05:a1:e8:03:cc:9b:9f:e4:22:8b:29:fc:ed: f2:72:92:49 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICByQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTU1NTJaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDQyODY4Nzg1MkMyNjU0 RDA4Qjc1NEM4RTBCMzFCNjVGQ0QwMUIxMTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDco6ldnrC7c3Xa1mTSOQLHLsBwKigjXtqkjfTSPxi3Gogg7BW6 Tla0QQrv+oV/fD/xs6Oz2QpsmHq9Aj8olUBX9Q27U6shff8Qw9zhH+GRFbuvLcwX XWXk5FPRyYzJTqcyr7rwofFA6JhqVpLdzGif/SFoH4XsIQ0o8NWhS/fax4nRVEHB +U7LbJ5l2fXpTdOCfGIs9Lmbfx2LuavAd3tDUTRqkiYxCgbz1o7QpgQAj3pPRccr BQRfv/u4AlONA5nBLTDebo1ufgmP/3BkwM2952B7EQvTB4oJ457P5kPgOAFqfXtG 1PhPjk/t6EAbC/HMaCqxHhlwWDNwmvip+6VxAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUQoaHhSwmVNCLdUyOCzG2X80BsRMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1FvYUhoU3dtVk5DTGRVeU9DekcyWDgwQnNSTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBS/AwDQYJKoZIhvcNAQELBQADggEBADI/phnDxj5fBemsrxSSdptrdoch 0+9fE5Wb91BIrZXZlamGDhkyFWXvC3yPJey8GJSZflg61CFQRh9ZDtTXj0HgKpdp mw/zZ8cTVK0TpTucOHNUOk26DE7/jnSQ+kILDkNdwmW+TWukSTz+FZH4U68nBq6N YKYZFZ7svW1mrVS4KTNO5pKqP9dYySP716byhktMmEyIwhP1R9bdMvAIP6xo+3rI 5CaRMRR4y7EkA04y5tJwXpGizqGQf9rmyquE04R0reLizvGXzo4kX82fuPLI3w2e nx+ka0yCz7N4leca8+dx/pPlLL18p2bw94xgBaHoA8ybn+Qiiyn87fJykkk= -----END CERTIFICATE-----Generated at Sun Feb 16 22:32:29 2025 by rpki-client