$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Rz5bv9RVOq3imhU0NUPDUj3XQDo.roa File: Rz5bv9RVOq3imhU0NUPDUj3XQDo.roa (raw, json) Hash identifier: uARRbQmgx/+WWN80CxtDto2xq1SwBEVvwcSzI0AR6/o= Subject key identifier: 47:3E:5B:BF:D4:55:3A:AD:E2:9A:15:34:35:43:C3:52:3D:D7:40:3A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 08FD Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Rz5bv9RVOq3imhU0NUPDUj3XQDo.roa Signing time: Tue 30 Apr 2024 02:26:38 +0000 ROA not before: Tue 30 Apr 2024 02:26:38 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 110.161.204.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2301 (0x8fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:26:38 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=473E5BBFD4553AADE29A15343543C3523DD7403A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:60:0f:e8:2d:e2:ba:4c:0d:67:06:de:69:51: 2f:46:1a:a4:81:b2:a2:c8:f0:09:e4:f4:76:d6:04: 25:cc:43:86:8e:1b:61:84:6c:7f:49:57:00:f9:42: 9e:87:2b:46:55:49:77:18:6c:7b:2b:f9:06:2f:a7: f3:2c:2a:39:d2:50:bd:8d:50:cd:8e:9c:c7:3f:65: 27:70:cf:ce:e8:51:ba:f9:3a:98:d4:ff:fe:26:e1: 15:02:3f:ff:2c:9e:fb:93:e0:44:32:bb:15:3d:86: 63:79:6e:81:13:7b:1e:40:90:ab:5c:b9:9b:2e:d1: 8b:6f:82:8e:48:dc:49:8d:54:fb:88:0e:e4:a4:d8: ce:6a:31:3f:e8:85:8f:2c:34:a6:79:d0:52:60:4f: ef:fe:73:87:2e:f9:55:63:3e:ed:6b:f1:3c:94:4e: 83:0d:7f:b9:72:eb:47:da:62:10:5a:89:17:d1:5e: e0:ad:95:63:d2:7c:36:e3:e8:d6:98:6a:80:5f:c0: 44:72:ae:05:1e:81:ae:c0:fb:89:45:4a:89:f7:78: 0e:1c:ec:93:f0:7e:35:4d:8d:c6:7e:49:45:da:b0: 7e:26:68:c8:a6:97:2f:89:4c:0d:47:7e:f9:14:a1: 8a:59:cf:4c:a1:dc:74:49:f3:a2:36:c0:e7:01:c0: 88:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:3E:5B:BF:D4:55:3A:AD:E2:9A:15:34:35:43:C3:52:3D:D7:40:3A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Rz5bv9RVOq3imhU0NUPDUj3XQDo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.161.204.0/22 Signature Algorithm: sha256WithRSAEncryption c4:18:59:98:57:04:a7:ae:c8:c4:5c:a4:f3:e5:0d:8b:0a:a6: 29:a8:c1:3d:4a:7c:12:7e:61:00:61:b3:39:1f:75:14:1d:fb: a8:a3:29:5c:a7:f0:ea:88:2c:a0:95:28:31:11:da:22:a1:4e: 81:08:29:fc:32:44:c9:8b:e9:a5:f0:40:10:a7:90:2d:6c:51: 8a:bb:00:c4:6b:a3:ca:37:e4:a4:8f:89:04:c1:9f:05:13:13: b8:b2:78:a7:b4:f8:c3:42:75:ea:6c:3a:c9:72:4f:f6:d2:5f: 04:28:6b:86:72:bb:53:d1:a3:f9:d1:7b:9f:e3:e6:de:5c:bd: 28:97:4d:12:89:b3:8b:c4:af:fa:0b:24:4d:b8:bb:79:2f:32: b0:c8:fc:61:92:cf:f3:3e:c7:7e:02:39:71:3e:65:0a:48:f6: 73:11:20:31:70:e7:62:d2:7a:fc:9e:07:f4:d5:50:12:cb:c9: 50:cd:c3:37:97:8f:a3:2c:ca:d9:29:43:d9:dd:7d:1d:89:dc: f9:c7:42:9f:ef:ef:5e:a9:f2:b3:fb:ca:a9:ed:2e:05:9e:11: b1:fd:f1:b8:0f:a3:46:66:92:24:4b:e4:03:90:26:96:a0:7b: d4:d6:3e:e1:39:e4:62:b8:fb:db:d4:ec:0f:65:ae:94:cb:66: ed:81:25:fb -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCP0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjI2MzhaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDQ3M0U1QkJGRDQ1NTNB QURFMjlBMTUzNDM1NDNDMzUyM0RENzQwM0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzYA/oLeK6TA1nBt5pUS9GGqSBsqLI8Ank9HbWBCXMQ4aOG2GE bH9JVwD5Qp6HK0ZVSXcYbHsr+QYvp/MsKjnSUL2NUM2OnMc/ZSdwz87oUbr5OpjU //4m4RUCP/8snvuT4EQyuxU9hmN5boETex5AkKtcuZsu0Ytvgo5I3EmNVPuIDuSk 2M5qMT/ohY8sNKZ50FJgT+/+c4cu+VVjPu1r8TyUToMNf7ly60faYhBaiRfRXuCt lWPSfDbj6NaYaoBfwERyrgUega7A+4lFSon3eA4c7JPwfjVNjcZ+SUXasH4maMim ly+JTA1HfvkUoYpZz0yh3HRJ86I2wOcBwIjFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQURz5bv9RVOq3imhU0NUPDUj3XQDowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1J6NWJ2OVJWT3EzaW1oVTBOVVBEVWozWFFEby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJuocwwDQYJKoZIhvcNAQELBQADggEBAMQYWZhXBKeuyMRcpPPlDYsKpimo wT1KfBJ+YQBhszkfdRQd+6ijKVyn8OqILKCVKDER2iKhToEIKfwyRMmL6aXwQBCn kC1sUYq7AMRro8o35KSPiQTBnwUTE7iyeKe0+MNCdepsOslyT/bSXwQoa4Zyu1PR o/nRe5/j5t5cvSiXTRKJs4vEr/oLJE24u3kvMrDI/GGSz/M+x34COXE+ZQpI9nMR IDFw52LSevyeB/TVUBLLyVDNwzeXj6MsytkpQ9ndfR2J3PnHQp/v716p8rP7yqnt LgWeEbH98bgPo0ZmkiRL5AOQJpage9TWPuE55GK4+9vU7A9lrpTLZu2BJfs= -----END CERTIFICATE-----Generated at Sun Feb 16 22:29:42 2025 by rpki-client