$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/UDMhYMUAVlciPpFrCBGPEk6BwBg.roa File: UDMhYMUAVlciPpFrCBGPEk6BwBg.roa (raw, json) Hash identifier: dGA3nj7FIN3AcmdQCSv+C0VkLEdkPYNUEpLcr6+tpAo= Subject key identifier: 50:33:21:60:C5:00:56:57:22:3E:91:6B:08:11:8F:12:4E:81:C0:18 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B04 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/UDMhYMUAVlciPpFrCBGPEk6BwBg.roa Signing time: Fri 31 Jan 2025 01:34:20 +0000 ROA not before: Fri 31 Jan 2025 01:34:20 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.97.72.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2820 (0xb04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:34:20 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=50332160C5005657223E916B08118F124E81C018 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3c:2a:20:99:63:d6:ff:56:9e:0a:15:3e:fc: 4d:4b:be:ce:f2:bc:ba:6d:11:5e:3a:33:0f:3e:94: 41:0c:38:9f:3d:6a:a9:ff:d0:e0:3b:73:e7:57:50: ad:f4:e1:d8:36:ef:4e:92:61:54:a6:04:81:50:6f: a4:69:f5:1f:46:2b:24:25:81:bb:57:39:51:f4:f1: 23:f6:35:e3:75:8d:15:b0:e4:69:eb:59:a8:04:75: 7a:59:9d:e2:9e:c2:de:13:bc:40:55:4c:a0:c3:78: 0a:78:7f:67:76:77:06:ff:d3:9b:b8:a2:65:d5:c7: b0:e4:a5:59:e0:86:42:96:a1:2f:7c:22:c5:ec:a8: f9:88:fd:6f:e2:73:c6:3c:a6:38:86:ad:a4:44:90: 21:fd:30:05:87:51:11:3a:32:e4:77:ac:e1:ce:13: ca:2d:e3:18:ad:4f:6d:d6:83:89:09:d0:55:cf:56: b5:ed:bf:4a:02:c3:d5:21:37:4f:7b:b8:a8:d4:54: 37:6f:86:25:03:85:83:98:22:72:ac:c1:e5:d5:7a: 75:50:64:5c:f8:b8:ff:ea:2c:a1:74:7f:57:65:69: 9e:93:33:90:65:1a:5d:11:ac:c1:79:5d:82:1d:8f: af:32:50:90:02:a0:c8:40:bc:23:3a:1d:bb:1e:46: b7:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:33:21:60:C5:00:56:57:22:3E:91:6B:08:11:8F:12:4E:81:C0:18 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/UDMhYMUAVlciPpFrCBGPEk6BwBg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.97.72.0/22 Signature Algorithm: sha256WithRSAEncryption 03:80:87:7d:de:54:d5:8d:ed:25:73:4d:af:a7:5a:ef:6c:86: 5a:af:a1:9e:80:74:c7:f0:39:85:fc:f0:56:18:70:9d:8f:36: 22:49:28:1c:0d:e2:ae:40:9a:4e:d5:51:fa:ae:9d:e1:a4:c2: 23:cc:c8:39:6d:1b:4f:36:d7:a2:d0:9c:31:e2:00:3c:0f:71: 23:4a:b1:72:b9:fe:73:7f:00:62:b0:74:8e:56:db:0d:1f:ea: 0d:02:d0:9d:0a:ee:01:9a:6b:9d:d0:e1:01:ee:ec:0b:a4:26: 32:b5:97:98:57:42:53:70:74:d6:67:8d:01:d7:42:e0:34:22: ba:68:89:ab:94:29:96:59:40:03:03:85:41:6d:c3:e8:32:6a: 15:b0:d2:b2:b4:3a:af:d0:6d:ea:d7:32:4b:8b:64:80:6d:2b: b4:62:b4:ad:af:08:30:69:73:ae:2f:2b:37:9a:96:fe:cd:32: 1b:69:2c:39:5e:5e:b4:9d:78:2c:54:b5:42:f9:1b:a2:b7:55: ef:6b:1c:83:83:98:cd:e0:af:ab:ce:5d:59:74:24:36:a9:ba: ed:f2:4e:16:0c:1e:a8:8d:bb:cb:f0:cf:6e:85:bd:0e:78:e1: ad:b9:fb:ba:29:47:a3:08:9e:76:0e:11:e4:55:bb:5b:2d:be: 53:c6:d2:1b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCwQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTM0MjBaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDUwMzMyMTYwQzUwMDU2 NTcyMjNFOTE2QjA4MTE4RjEyNEU4MUMwMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDPCogmWPW/1aeChU+/E1Lvs7yvLptEV46Mw8+lEEMOJ89aqn/ 0OA7c+dXUK304dg2706SYVSmBIFQb6Rp9R9GKyQlgbtXOVH08SP2NeN1jRWw5Gnr WagEdXpZneKewt4TvEBVTKDDeAp4f2d2dwb/05u4omXVx7DkpVnghkKWoS98IsXs qPmI/W/ic8Y8pjiGraREkCH9MAWHURE6MuR3rOHOE8ot4xitT23Wg4kJ0FXPVrXt v0oCw9UhN097uKjUVDdvhiUDhYOYInKsweXVenVQZFz4uP/qLKF0f1dlaZ6TM5Bl Gl0RrMF5XYIdj68yUJACoMhAvCM6HbseRrfbAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUUDMhYMUAVlciPpFrCBGPEk6BwBgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1VETWhZTVVBVmxjaVBwRnJDQkdQRWs2QndCZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYUgwDQYJKoZIhvcNAQELBQADggEBAAOAh33eVNWN7SVzTa+nWu9shlqv oZ6AdMfwOYX88FYYcJ2PNiJJKBwN4q5Amk7VUfquneGkwiPMyDltG08216LQnDHi ADwPcSNKsXK5/nN/AGKwdI5W2w0f6g0C0J0K7gGaa53Q4QHu7AukJjK1l5hXQlNw dNZnjQHXQuA0IrpoiauUKZZZQAMDhUFtw+gyahWw0rK0Oq/QberXMkuLZIBtK7Ri tK2vCDBpc64vKzealv7NMhtpLDleXrSdeCxUtUL5G6K3Ve9rHIODmM3gr6vOXVl0 JDapuu3yThYMHqiNu8vwz26FvQ544a25+7opR6MInnYOEeRVu1stvlPG0hs= -----END CERTIFICATE-----Generated at Wed Feb 19 22:32:40 2025 by rpki-client