$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/RrA6zvu04fYK1cpBOeaIlzRaVmg.roa File: RrA6zvu04fYK1cpBOeaIlzRaVmg.roa (raw, json) Hash identifier: YfF1bmQYsfMFOwasaNVMshi2vI8y2NU8+SEwbKmK/zE= Subject key identifier: 46:B0:3A:CE:FB:B4:E1:F6:0A:D5:CA:41:39:E6:88:97:34:5A:56:68 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B09 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/RrA6zvu04fYK1cpBOeaIlzRaVmg.roa Signing time: Fri 31 Jan 2025 01:34:22 +0000 ROA not before: Fri 31 Jan 2025 01:34:22 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.97.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2825 (0xb09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:34:22 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=46B03ACEFBB4E1F60AD5CA4139E68897345A5668 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:31:9f:5f:f9:ae:b7:ea:f0:bd:30:06:da:9d: cf:d6:b6:d3:ea:1a:27:69:e5:45:46:b5:3a:12:33: e9:6b:de:ba:c4:ac:42:66:91:78:b6:37:49:6e:6c: 89:ed:e0:6f:f3:8f:71:51:5a:85:d2:cf:df:bc:62: 23:4b:82:97:1b:3e:0c:79:11:b0:7e:d8:e6:15:54: 67:c2:8e:a1:02:f5:40:a1:29:40:4d:d7:96:64:6a: 94:6c:0b:cc:ba:76:43:54:05:52:f8:e0:bb:78:9d: ba:11:46:9e:b6:49:f2:53:c6:04:0b:37:ad:17:ef: 40:08:a2:db:f4:2b:69:78:12:2a:7f:df:5d:a3:a9: 8e:55:66:a3:b1:f5:dc:f6:f9:7e:47:31:ac:f9:ff: 64:54:66:80:28:0b:c5:23:9b:ab:77:4e:03:29:fe: c4:2f:7a:2b:24:4b:3b:48:9c:c2:0d:b3:cd:b2:81: 02:d6:0e:5d:e5:9a:f3:65:43:9f:e7:98:2c:55:c2: 74:1f:83:85:36:25:25:b9:e1:14:f7:e5:f3:97:e5: 76:3b:f3:01:d8:4d:de:84:04:28:57:de:2b:16:b7: 84:34:e0:92:2c:18:ab:8f:dd:20:0f:c5:25:94:10: 85:7d:d6:4e:61:ec:51:e7:25:0c:77:0d:e4:06:30: 40:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:B0:3A:CE:FB:B4:E1:F6:0A:D5:CA:41:39:E6:88:97:34:5A:56:68 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/RrA6zvu04fYK1cpBOeaIlzRaVmg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.97.108.0/24 Signature Algorithm: sha256WithRSAEncryption 76:4e:1e:55:e1:f8:6a:15:a8:db:d7:1e:02:ed:ee:06:c9:f7: 7c:04:02:5d:23:c9:ad:32:60:ec:03:04:14:28:97:b3:06:06: 85:1c:74:28:c1:3d:6f:7d:c1:9e:bb:1a:a6:45:f4:c3:72:f8: 93:f8:7f:f2:ec:9c:65:04:c4:5e:60:49:08:8c:12:ec:65:10: bc:38:f4:05:cf:21:e7:31:2a:5d:d0:34:67:31:22:cc:01:5e: 4b:ca:36:83:31:9d:f1:1e:22:55:84:6f:7b:09:59:7a:f5:8b: 57:f0:e3:90:2b:46:03:61:8d:22:ff:2a:b7:1a:d7:32:e3:c4: 51:d9:ea:a3:b6:89:04:a2:06:17:42:c3:fa:f9:77:00:7b:4c: 35:bd:79:36:41:4f:2d:9e:06:2c:3a:26:8b:3d:52:04:d8:f8: bf:78:ed:d4:18:48:dc:57:07:ce:a6:68:a9:6a:82:49:46:69: ff:52:4a:f9:a9:0b:14:d6:ee:37:b3:84:f8:27:0f:38:f8:64: ae:5e:75:23:ce:81:c9:ee:8d:4e:db:0b:53:58:10:a5:f5:e3: d4:b6:dd:ba:c0:9c:e1:4c:10:5a:e1:6d:6b:3f:97:f8:e2:bb: 0a:ed:5e:ba:ad:75:eb:9c:9a:b4:0f:e0:2c:4c:04:2e:60:5f: 9a:30:8a:d8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCwkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTM0MjJaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDQ2QjAzQUNFRkJCNEUx RjYwQUQ1Q0E0MTM5RTY4ODk3MzQ1QTU2NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFMZ9f+a636vC9MAbanc/WttPqGidp5UVGtToSM+lr3rrErEJm kXi2N0lubInt4G/zj3FRWoXSz9+8YiNLgpcbPgx5EbB+2OYVVGfCjqEC9UChKUBN 15ZkapRsC8y6dkNUBVL44Lt4nboRRp62SfJTxgQLN60X70AIotv0K2l4Eip/312j qY5VZqOx9dz2+X5HMaz5/2RUZoAoC8Ujm6t3TgMp/sQveiskSztInMINs82ygQLW Dl3lmvNlQ5/nmCxVwnQfg4U2JSW54RT35fOX5XY78wHYTd6EBChX3isWt4Q04JIs GKuP3SAPxSWUEIV91k5h7FHnJQx3DeQGMEClAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQURrA6zvu04fYK1cpBOeaIlzRaVmgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1JyQTZ6dnUwNGZZSzFjcEJPZWFJbHpSYVZtZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxYWwwDQYJKoZIhvcNAQELBQADggEBAHZOHlXh+GoVqNvXHgLt7gbJ93wE Al0jya0yYOwDBBQol7MGBoUcdCjBPW99wZ67GqZF9MNy+JP4f/LsnGUExF5gSQiM EuxlELw49AXPIecxKl3QNGcxIswBXkvKNoMxnfEeIlWEb3sJWXr1i1fw45ArRgNh jSL/Krca1zLjxFHZ6qO2iQSiBhdCw/r5dwB7TDW9eTZBTy2eBiw6Jos9UgTY+L94 7dQYSNxXB86maKlqgklGaf9SSvmpCxTW7jezhPgnDzj4ZK5edSPOgcnujU7bC1NY EKX149S23brAnOFMEFrhbWs/l/jiuwrtXrqtdeucmrQP4CxMBC5gX5owitg= -----END CERTIFICATE-----Generated at Wed Feb 19 22:31:58 2025 by rpki-client