$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/SUk5B__c0y3TXc8iMdgDYRISue0.roa File: SUk5B__c0y3TXc8iMdgDYRISue0.roa (raw, json) Hash identifier: Cno8O38o5AEg/Jsp+5z1CHRJHFxxm5+LfqEQb7Hhxi0= Subject key identifier: 49:49:39:07:FF:DC:D3:2D:D3:5D:CF:22:31:D8:03:61:12:12:B9:ED Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0843 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/SUk5B__c0y3TXc8iMdgDYRISue0.roa Signing time: Tue 30 Apr 2024 02:16:22 +0000 ROA not before: Tue 30 Apr 2024 02:16:22 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 20:25:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2115 (0x843) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:16:22 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=49493907FFDCD32DD35DCF2231D803611212B9ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:63:10:61:96:51:84:18:b4:e4:50:00:1f:85: 3f:ac:9c:f6:44:01:00:f2:f8:7b:f8:25:c3:77:0f: 49:ca:de:21:c3:3f:cf:e3:fe:9c:41:5d:9a:9a:c9: 1a:dc:77:5c:70:08:8e:b8:8a:92:8b:7e:6a:43:1f: 61:ed:8a:52:23:0e:81:cf:ee:dd:2f:76:7b:9f:91: 83:02:fa:37:d9:fe:b0:dd:95:18:79:86:2b:92:1f: 91:5f:50:a5:a3:bc:44:74:17:ab:fa:1c:99:b0:7d: dd:00:d5:e4:05:66:29:93:64:75:94:dc:47:f7:33: 4b:e9:42:90:ed:f6:b4:26:71:f7:be:83:3c:61:d7: b3:18:96:bb:33:bd:08:66:60:89:62:ff:73:ae:bb: 35:81:c1:74:94:a9:7c:75:ce:24:f5:e9:10:ca:53: 41:d7:9e:26:28:c6:3f:65:2a:ce:de:33:f1:4b:75: 9a:b9:3f:6b:b5:44:42:c0:d0:aa:14:91:95:a8:89: 88:de:0a:00:c4:93:58:5f:0f:54:6a:00:72:a6:3a: 76:5f:ad:90:60:15:fb:37:d0:77:39:52:46:a8:02: 46:05:96:19:ca:6d:fa:e6:20:7a:58:10:f9:6a:4c: 93:b4:3f:28:c6:02:9a:7a:21:f1:21:bf:98:a0:55: ca:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:49:39:07:FF:DC:D3:2D:D3:5D:CF:22:31:D8:03:61:12:12:B9:ED X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/SUk5B__c0y3TXc8iMdgDYRISue0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.20.0/24 Signature Algorithm: sha256WithRSAEncryption 10:8c:e6:04:29:ac:47:97:2d:ee:87:35:28:15:1d:18:aa:ab: 5d:d7:77:4a:91:70:0a:05:0d:d4:08:d1:04:d3:60:c3:ac:b3: e4:95:35:5d:a4:13:9b:30:82:93:bb:df:e4:81:da:06:a8:1f: 5e:8e:9d:35:65:6f:aa:38:5c:52:d0:6b:ae:c5:bb:a5:9b:ac: ba:bc:88:e6:89:a7:d3:75:00:58:c3:fb:69:79:ec:14:3e:fa: a4:bd:b5:ce:84:e2:63:4e:5b:62:61:e4:ee:f9:bc:4d:fd:de: ae:b5:19:c5:e3:7f:e6:e1:f2:eb:ba:dc:06:7e:0e:d3:f5:c4: b7:a4:50:67:1d:4f:95:ca:10:de:a1:f9:15:11:91:93:80:bc: e8:24:36:5a:47:d4:61:07:b5:25:4c:70:0c:65:af:08:e3:9b: 76:96:2d:25:8f:a5:d7:f1:78:4c:5c:6b:f3:44:b9:1a:3b:5c: 73:3a:85:f9:72:f5:e9:c5:1d:2a:d3:2b:3f:d9:21:6a:b0:b9: f1:49:ed:1b:d7:30:d3:20:52:37:16:15:49:9f:e6:96:b4:94: 3d:36:39:06:7d:fb:b3:8b:05:65:f6:32:7a:21:65:23:fb:d1: a3:2f:b2:6e:83:d0:47:f6:d8:00:80:69:67:d7:9a:ab:21:61: fd:07:4d:b0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCEMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjE2MjJaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDQ5NDkzOTA3RkZEQ0Qz MkREMzVEQ0YyMjMxRDgwMzYxMTIxMkI5RUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKYxBhllGEGLTkUAAfhT+snPZEAQDy+Hv4JcN3D0nK3iHDP8/j /pxBXZqayRrcd1xwCI64ipKLfmpDH2HtilIjDoHP7t0vdnufkYMC+jfZ/rDdlRh5 hiuSH5FfUKWjvER0F6v6HJmwfd0A1eQFZimTZHWU3Ef3M0vpQpDt9rQmcfe+gzxh 17MYlrszvQhmYIli/3OuuzWBwXSUqXx1ziT16RDKU0HXniYoxj9lKs7eM/FLdZq5 P2u1RELA0KoUkZWoiYjeCgDEk1hfD1RqAHKmOnZfrZBgFfs30Hc5UkaoAkYFlhnK bfrmIHpYEPlqTJO0PyjGApp6IfEhv5igVcrzAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUSUk5B//c0y3TXc8iMdgDYRISue0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1NVazVCX19jMHkzVFhjOGlNZGdEWVJJU3VlMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABTxQwDQYJKoZIhvcNAQELBQADggEBABCM5gQprEeXLe6HNSgVHRiqq13X d0qRcAoFDdQI0QTTYMOss+SVNV2kE5swgpO73+SB2gaoH16OnTVlb6o4XFLQa67F u6WbrLq8iOaJp9N1AFjD+2l57BQ++qS9tc6E4mNOW2Jh5O75vE393q61GcXjf+bh 8uu63AZ+DtP1xLekUGcdT5XKEN6h+RURkZOAvOgkNlpH1GEHtSVMcAxlrwjjm3aW LSWPpdfxeExca/NEuRo7XHM6hfly9enFHSrTKz/ZIWqwufFJ7RvXMNMgUjcWFUmf 5pa0lD02OQZ9+7OLBWX2MnohZSP70aMvsm6D0Ef22ACAaWfXmqshYf0HTbA= -----END CERTIFICATE-----Generated at Thu Mar 13 01:48:46 2025 by rpki-client