$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/SIT3vYEGIaZj5DiOBud0b6NPNtk.roa File: SIT3vYEGIaZj5DiOBud0b6NPNtk.roa (raw, json) Hash identifier: lXpTaY2comBTj1x1qD2kRnFTvgzfDy08a7OLEmaSFuU= Subject key identifier: 48:84:F7:BD:81:06:21:A6:63:E4:38:8E:06:E7:74:6F:A3:4F:36:D9 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 082F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/SIT3vYEGIaZj5DiOBud0b6NPNtk.roa Signing time: Tue 30 Apr 2024 02:14:26 +0000 ROA not before: Tue 30 Apr 2024 02:14:26 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.168.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2095 (0x82f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:14:26 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=4884F7BD810621A663E4388E06E7746FA34F36D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b1:db:b4:23:31:9f:b2:ab:b2:f3:f8:20:ec: da:07:dc:12:8a:99:61:a3:71:a6:ba:e1:bf:44:2b: 8b:16:f2:04:6a:de:e6:ef:d7:cf:da:7a:71:60:44: 26:22:cc:ea:06:d8:0c:29:21:c1:d1:75:d1:ae:12: 03:94:41:03:6a:c8:dd:cc:b8:eb:75:db:37:b0:29: 9f:fd:09:da:98:33:90:ab:1e:f2:3f:b4:e0:2f:15: 52:ce:ef:89:90:00:3f:9e:4e:e4:63:21:f9:bc:76: 07:59:56:26:9e:80:f0:57:be:f6:b7:9c:4a:f8:18: ea:b4:b7:e3:56:e8:24:42:e0:a7:fa:01:5e:91:7a: 37:a5:36:17:eb:6d:58:92:6f:08:58:3e:9a:e4:33: c6:35:81:25:94:dd:4f:e3:02:3a:97:c8:fd:e0:e2: 8d:23:c7:12:aa:03:2d:53:18:0e:5d:2a:dd:0c:5d: 89:78:a4:b3:2b:c0:f3:ee:a2:c1:c0:1b:af:01:fe: 35:ad:0c:44:6a:d3:66:21:67:99:5d:1a:52:4d:a6: 19:06:91:03:fa:89:cc:a2:2c:0a:0b:f6:41:9c:71: f3:81:09:4c:3c:44:5d:4f:a6:64:0c:49:b1:eb:28: 97:7e:90:d4:5e:2f:a7:29:d4:f3:02:6b:b3:4e:fb: 18:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:84:F7:BD:81:06:21:A6:63:E4:38:8E:06:E7:74:6F:A3:4F:36:D9 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/SIT3vYEGIaZj5DiOBud0b6NPNtk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.168.0/22 Signature Algorithm: sha256WithRSAEncryption c0:75:e7:57:aa:ef:b1:91:72:cc:f5:ae:5d:73:f4:4e:e6:0e: 7c:79:f5:15:1b:52:7e:42:cf:70:7b:a4:12:1f:82:bc:ea:b1: c5:81:59:87:66:f9:ff:76:3b:f9:b8:53:17:15:21:53:e1:54: 40:59:bb:27:fa:af:11:28:6a:31:e2:3e:94:93:6b:8e:60:be: 31:96:cd:f1:10:12:01:ec:2e:de:e1:5c:af:6a:97:c6:c4:9a: 95:74:56:3a:ee:8f:ef:13:3e:59:ab:79:36:fa:22:e6:3f:21: 00:ef:ad:3c:43:84:89:c1:78:17:ca:42:ab:85:db:68:a6:e8: af:a0:d4:bc:19:01:8d:45:3e:dd:b7:5e:5b:44:0d:c7:ba:20: de:fe:98:08:a0:74:5e:9e:b7:84:0e:cf:b8:74:35:43:51:87: b0:a4:b2:26:99:60:d8:a9:fc:36:da:59:16:c0:a7:6e:11:ce: f7:66:d4:73:2c:50:7f:3a:c1:a4:cc:32:44:da:d6:a9:5f:6c: 86:48:81:50:a6:06:a5:f3:ee:95:9b:7e:93:54:8c:d5:2e:ba: e5:2c:b2:3e:68:df:a1:f2:d2:62:d9:4e:8a:f5:39:72:31:ea: ed:7c:82:3c:30:e9:f9:e2:c2:17:30:95:98:9d:a0:f1:0f:3c: fd:52:1f:da -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCC8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjE0MjZaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDQ4ODRGN0JEODEwNjIx QTY2M0U0Mzg4RTA2RTc3NDZGQTM0RjM2RDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXsdu0IzGfsquy8/gg7NoH3BKKmWGjcaa64b9EK4sW8gRq3ubv 18/aenFgRCYizOoG2AwpIcHRddGuEgOUQQNqyN3MuOt12zewKZ/9CdqYM5CrHvI/ tOAvFVLO74mQAD+eTuRjIfm8dgdZViaegPBXvva3nEr4GOq0t+NW6CRC4Kf6AV6R ejelNhfrbViSbwhYPprkM8Y1gSWU3U/jAjqXyP3g4o0jxxKqAy1TGA5dKt0MXYl4 pLMrwPPuosHAG68B/jWtDERq02YhZ5ldGlJNphkGkQP6icyiLAoL9kGccfOBCUw8 RF1PpmQMSbHrKJd+kNReL6cp1PMCa7NO+xhvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUSIT3vYEGIaZj5DiOBud0b6NPNtkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1NJVDN2WUVHSWFaajVEaU9CdWQwYjZOUE50ay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYqgwDQYJKoZIhvcNAQELBQADggEBAMB151eq77GRcsz1rl1z9E7mDnx5 9RUbUn5Cz3B7pBIfgrzqscWBWYdm+f92O/m4UxcVIVPhVEBZuyf6rxEoajHiPpST a45gvjGWzfEQEgHsLt7hXK9ql8bEmpV0Vjruj+8TPlmreTb6IuY/IQDvrTxDhInB eBfKQquF22im6K+g1LwZAY1FPt23XltEDce6IN7+mAigdF6et4QOz7h0NUNRh7Ck siaZYNip/DbaWRbAp24Rzvdm1HMsUH86waTMMkTa1qlfbIZIgVCmBqXz7pWbfpNU jNUuuuUssj5o36Hy0mLZTor1OXIx6u18gjww6fniwhcwlZidoPEPPP1SH9o= -----END CERTIFICATE-----Generated at Sun Feb 16 22:07:57 2025 by rpki-client