$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/T9hW7SYSzdKKDsNsWrjLOcEZyO4.roa File: T9hW7SYSzdKKDsNsWrjLOcEZyO4.roa (raw, json) Hash identifier: DNEkX05aRKfaRNYxRirxv+nN9yB/XhEleMMkunz/9xo= Subject key identifier: 4F:D8:56:ED:26:12:CD:D2:8A:0E:C3:6C:5A:B8:CB:39:C1:19:C8:EE Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 094E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/T9hW7SYSzdKKDsNsWrjLOcEZyO4.roa Signing time: Sun 30 Jun 2024 01:29:35 +0000 ROA not before: Sun 30 Jun 2024 01:29:35 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 220.210.88.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2382 (0x94e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:29:35 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=4FD856ED2612CDD28A0EC36C5AB8CB39C119C8EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:54:8f:26:02:d6:73:af:1f:5d:aa:a6:02:9a: 29:54:be:67:b3:e9:7b:83:9f:4a:47:d3:dc:dd:c2: f7:4c:ec:9d:ac:46:d3:d9:a5:fb:e2:46:89:60:a1: f3:9c:e0:4d:71:6d:8e:85:39:69:6c:c1:56:c7:f9: a0:c4:7e:d7:c4:3d:5b:2f:f3:02:06:42:91:b3:62: 07:e1:ce:e3:4f:5c:73:f5:c5:7b:69:81:0c:f8:2d: 62:95:43:ce:61:15:ae:ca:59:e2:9d:80:ce:f4:d0: 46:2c:4e:e6:87:93:59:1a:e5:11:2b:f3:f7:be:bb: b0:4d:0b:6e:87:29:c3:2a:cd:a8:bb:77:50:5b:82: 8b:2c:98:e5:aa:75:3f:fb:20:83:b0:e5:b2:0a:bc: 82:29:75:d9:78:2f:f4:47:f3:0b:3f:4c:85:24:f0: 07:01:ec:fd:88:a9:c7:07:e8:a3:5b:da:fe:4a:2c: b6:93:b4:5a:1f:07:df:e8:78:3a:ae:0e:ac:9a:1c: c2:64:3c:d7:17:fc:0d:9c:da:13:c8:a6:52:f1:21: 15:1a:7a:3c:e6:c6:22:8c:1d:f5:63:25:0c:3d:4f: 60:8b:8d:d2:cb:4c:dd:3d:4d:d0:80:5c:07:84:9b: d7:7e:64:e5:c3:73:db:72:5a:52:a2:cb:39:9e:6a: 7c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:D8:56:ED:26:12:CD:D2:8A:0E:C3:6C:5A:B8:CB:39:C1:19:C8:EE X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/T9hW7SYSzdKKDsNsWrjLOcEZyO4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.88.0/22 Signature Algorithm: sha256WithRSAEncryption 6e:3e:ae:a7:e1:a2:29:09:bc:8b:e3:8d:c6:b3:58:0a:35:02: 6b:d8:a6:50:c1:47:d4:f1:79:87:d6:97:54:51:12:b3:81:9a: 76:ff:c5:b0:ff:58:a6:b8:ff:0f:52:38:42:89:2d:76:c7:ff: 4f:46:06:fc:f7:94:e7:cd:fa:63:39:44:b9:65:79:df:83:4a: b2:a0:51:2c:b5:44:03:c0:ca:60:a7:1b:ea:27:59:4f:66:ed: 83:3e:59:e1:bf:ae:21:33:a5:f0:fd:a7:c8:ab:bd:13:b2:00: e3:6e:0e:38:3a:94:ab:7b:13:54:f5:dd:68:b8:26:84:4d:14: 5c:9e:57:48:6f:4b:d0:8a:de:f6:70:ea:00:18:fa:a9:1e:c0: 8a:f6:88:92:b0:ad:d7:bf:b5:38:6a:d0:38:e8:0b:e7:85:d0: b4:bc:77:d8:bc:64:b5:40:4c:46:b1:ef:03:f5:da:e6:d9:7e: 37:37:79:02:59:50:ed:26:21:c2:6d:cc:c5:59:3a:82:4e:84: 5d:56:e2:11:45:6b:d3:5e:04:31:74:1c:01:56:a8:1d:f7:cd: 7e:97:a3:68:92:77:20:c3:58:14:29:cd:5b:06:4a:b5:2b:9a: 52:9c:b9:6c:80:27:d7:13:82:65:cd:e9:4c:96:37:39:35:7e: 81:c9:a4:f9 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCU4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTI5MzVaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDRGRDg1NkVEMjYxMkNE RDI4QTBFQzM2QzVBQjhDQjM5QzExOUM4RUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvVI8mAtZzrx9dqqYCmilUvmez6XuDn0pH09zdwvdM7J2sRtPZ pfviRolgofOc4E1xbY6FOWlswVbH+aDEftfEPVsv8wIGQpGzYgfhzuNPXHP1xXtp gQz4LWKVQ85hFa7KWeKdgM700EYsTuaHk1ka5REr8/e+u7BNC26HKcMqzai7d1Bb gossmOWqdT/7IIOw5bIKvIIpddl4L/RH8ws/TIUk8AcB7P2IqccH6KNb2v5KLLaT tFofB9/oeDquDqyaHMJkPNcX/A2c2hPIplLxIRUaejzmxiKMHfVjJQw9T2CLjdLL TN09TdCAXAeEm9d+ZOXDc9tyWlKiyzmeanzFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUT9hW7SYSzdKKDsNsWrjLOcEZyO4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1Q5aFc3U1lTemRLS0RzTnNXcmpMT2NFWnlPNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALc0lgwDQYJKoZIhvcNAQELBQADggEBAG4+rqfhoikJvIvjjcazWAo1AmvY plDBR9TxeYfWl1RRErOBmnb/xbD/WKa4/w9SOEKJLXbH/09GBvz3lOfN+mM5RLll ed+DSrKgUSy1RAPAymCnG+onWU9m7YM+WeG/riEzpfD9p8irvROyAONuDjg6lKt7 E1T13Wi4JoRNFFyeV0hvS9CK3vZw6gAY+qkewIr2iJKwrde/tThq0DjoC+eF0LS8 d9i8ZLVATEax7wP12ubZfjc3eQJZUO0mIcJtzMVZOoJOhF1W4hFFa9NeBDF0HAFW qB33zX6Xo2iSdyDDWBQpzVsGSrUrmlKcuWyAJ9cTgmXN6UyWNzk1foHJpPk= -----END CERTIFICATE-----Generated at Sun Feb 16 22:32:56 2025 by rpki-client