$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/QpfIecAv20VV_kWN-AxVdUMDWVQ.roa File: QpfIecAv20VV_kWN-AxVdUMDWVQ.roa (raw, json) Hash identifier: AhzkjZkrSHzmdPqWKG0M1EOton/5+7lpSxpQ3zy+qDk= Subject key identifier: 42:97:C8:79:C0:2F:DB:45:55:FE:45:8D:F8:0C:55:75:43:03:59:54 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0911 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QpfIecAv20VV_kWN-AxVdUMDWVQ.roa Signing time: Tue 30 Apr 2024 02:28:44 +0000 ROA not before: Tue 30 Apr 2024 02:28:44 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.26.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2321 (0x911) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:28:44 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=4297C879C02FDB4555FE458DF80C557543035954 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:81:8c:db:38:6f:f1:5e:19:31:cd:3b:3d:a6: 33:98:ee:f5:43:09:e8:a6:ee:f8:e6:52:f2:ce:9e: 10:0a:0a:3f:18:f2:af:ba:92:ac:4c:ae:67:a0:b6: b3:ea:70:ab:06:31:17:67:f9:a8:9c:41:64:0c:67: 26:4d:5c:f9:9b:4c:cb:ea:6f:1a:a6:4e:04:e9:06: 4b:9c:97:db:88:61:cb:66:6b:a0:39:a6:fb:49:26: b2:f1:8e:39:92:a6:8f:ec:9e:68:f8:ff:a7:ea:a4: 5e:db:15:01:e5:de:1a:a1:ce:66:bf:58:08:5f:7d: 24:71:5d:50:c7:00:28:35:67:ac:e9:a0:17:77:9f: 7a:99:d9:af:c0:ec:32:ce:bc:8c:94:93:18:90:22: 93:aa:25:be:81:ff:b5:33:cf:b8:05:56:7e:25:72: cb:20:f6:c0:f0:e3:10:04:c2:05:40:d1:35:34:07: 94:0a:23:07:65:28:7e:07:7e:f4:06:41:8c:6d:34: c4:ee:ad:fb:bb:a0:e3:8e:b6:be:29:f6:5a:60:79: 22:0d:64:0b:9d:e1:eb:99:50:15:0e:8d:73:e9:49: 49:2c:4f:d8:39:90:29:51:a0:99:bd:7d:89:97:d4: ea:e1:98:3f:5b:27:81:e6:d7:40:e9:f3:72:83:72: 8c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:97:C8:79:C0:2F:DB:45:55:FE:45:8D:F8:0C:55:75:43:03:59:54 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QpfIecAv20VV_kWN-AxVdUMDWVQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.26.0/23 Signature Algorithm: sha256WithRSAEncryption c4:5b:84:af:54:36:43:80:cd:0a:af:fb:c7:e1:c0:8d:32:77: 80:ae:60:65:11:5b:56:93:46:d1:38:bf:86:bc:4b:3a:96:65: 31:87:35:36:be:81:c9:45:fb:84:8f:c2:cd:6f:71:2d:a6:c0: 1e:cc:97:46:0f:df:37:70:af:a4:2b:e4:e0:04:04:94:55:77: 33:6d:dd:f9:2b:04:e8:ae:90:09:4a:2e:11:60:5d:36:33:f0: 8a:e0:0f:3d:a9:6d:40:05:f2:25:38:ae:06:d5:42:ce:4b:f7: e1:cf:2d:3d:c8:e7:af:d1:c5:cb:6b:53:49:4f:cb:fb:57:e2: 23:2e:04:4c:be:4a:2e:e9:c9:37:77:0c:80:ff:73:41:f0:15: 6c:c9:b3:2a:71:22:a9:95:34:02:fd:12:06:1a:66:0c:75:26: 12:71:01:f1:99:fb:84:58:93:98:ce:fa:70:74:ba:cb:93:58: e6:d2:26:ed:fe:73:4b:26:ad:d7:bb:73:01:16:87:90:af:61: b9:a9:52:1c:02:79:ab:6b:00:02:89:81:2a:32:bb:17:93:5f: 2c:a3:36:f7:9c:b8:41:60:cc:ba:d9:da:1d:88:64:2a:e3:ad: a8:d8:eb:0a:c4:79:38:6c:7b:f6:c5:a6:f4:60:e1:c2:0c:6e: 90:e2:79:48 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCREwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjI4NDRaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDQyOTdDODc5QzAyRkRC NDU1NUZFNDU4REY4MEM1NTc1NDMwMzU5NTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrgYzbOG/xXhkxzTs9pjOY7vVDCeim7vjmUvLOnhAKCj8Y8q+6 kqxMrmegtrPqcKsGMRdn+aicQWQMZyZNXPmbTMvqbxqmTgTpBkucl9uIYctma6A5 pvtJJrLxjjmSpo/snmj4/6fqpF7bFQHl3hqhzma/WAhffSRxXVDHACg1Z6zpoBd3 n3qZ2a/A7DLOvIyUkxiQIpOqJb6B/7Uzz7gFVn4lcssg9sDw4xAEwgVA0TU0B5QK IwdlKH4HfvQGQYxtNMTurfu7oOOOtr4p9lpgeSINZAud4euZUBUOjXPpSUksT9g5 kClRoJm9fYmX1OrhmD9bJ4Hm10Dp83KDcox9AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUQpfIecAv20VV/kWN+AxVdUMDWVQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1FwZkllY0F2MjBWVl9rV04tQXhWZFVNRFdWUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYBowDQYJKoZIhvcNAQELBQADggEBAMRbhK9UNkOAzQqv+8fhwI0yd4Cu YGURW1aTRtE4v4a8SzqWZTGHNTa+gclF+4SPws1vcS2mwB7Ml0YP3zdwr6Qr5OAE BJRVdzNt3fkrBOiukAlKLhFgXTYz8IrgDz2pbUAF8iU4rgbVQs5L9+HPLT3I56/R xctrU0lPy/tX4iMuBEy+Si7pyTd3DID/c0HwFWzJsypxIqmVNAL9EgYaZgx1JhJx AfGZ+4RYk5jO+nB0usuTWObSJu3+c0smrde7cwEWh5CvYbmpUhwCeatrAAKJgSoy uxeTXyyjNvecuEFgzLrZ2h2IZCrjrajY6wrEeThse/bFpvRg4cIMbpDieUg= -----END CERTIFICATE-----Generated at Sun Feb 16 22:11:24 2025 by rpki-client