$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/UXz5IsiB4LCAiwfIbaoJD1QBaVM.roa File: UXz5IsiB4LCAiwfIbaoJD1QBaVM.roa (raw, json) Hash identifier: Ov+glOTNBKdspuWT0RQPAOJO2E/NEaP6V6Eao0KD9Yg= Subject key identifier: 51:7C:F9:22:C8:81:E0:B0:80:8B:07:C8:6D:AA:09:0F:54:01:69:53 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0753 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/UXz5IsiB4LCAiwfIbaoJD1QBaVM.roa Signing time: Tue 30 Apr 2024 01:58:57 +0000 ROA not before: Tue 30 Apr 2024 01:58:57 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.105.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1875 (0x753) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:58:57 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=517CF922C881E0B0808B07C86DAA090F54016953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3b:80:d5:88:12:a3:8d:3e:74:8b:e7:f9:4b: 58:d5:05:12:c3:35:28:9e:b7:b0:5a:3b:8b:d3:35: 9b:a1:56:ad:b2:8c:81:6e:f9:e2:d8:9b:36:51:7b: 45:a2:67:eb:8a:65:a3:ae:2d:6d:04:f3:b5:d6:89: 04:be:66:c4:6d:f5:18:ba:f2:48:f7:2e:3d:45:6f: f4:0a:5a:7e:1c:03:ea:cd:4b:b1:a2:7d:46:2f:de: c4:ff:ad:55:27:80:44:c2:b7:5d:8d:23:ed:46:49: 47:e9:ef:d8:65:bd:c3:94:36:15:19:db:3b:a6:c5: 34:89:5b:c8:15:0d:b5:64:48:67:51:73:0c:87:07: 6b:8e:55:9d:06:bc:29:5d:dd:e4:c3:ed:1d:84:d3: 7e:d3:de:c1:02:96:3b:56:9d:ed:cd:35:38:60:b5: 07:21:29:c4:a5:18:5a:65:14:12:2d:69:54:88:0d: aa:df:fc:a5:1e:51:f7:e5:f7:1d:24:16:4e:6a:db: 5d:d8:c0:7d:2f:52:78:86:b0:ac:97:b3:21:53:74: ca:29:4f:8b:e4:a5:5f:42:af:91:e2:d7:0c:dc:0c: 77:f1:8f:21:7f:a4:a1:f1:07:fe:03:3a:d9:a4:f9: e7:a9:22:d6:89:cb:4b:c0:d2:be:76:35:d0:8a:52: ae:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:7C:F9:22:C8:81:E0:B0:80:8B:07:C8:6D:AA:09:0F:54:01:69:53 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/UXz5IsiB4LCAiwfIbaoJD1QBaVM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.105.11.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:9f:db:32:6a:3b:17:e4:47:74:04:44:47:d6:f2:f5:bf:18: 15:73:97:62:d0:93:d4:b2:5d:ae:87:59:04:9f:62:1b:85:f5: 3e:4e:c9:6c:54:a7:d2:8e:e8:d8:bc:5d:cf:82:43:c8:1f:bf: c5:d2:be:04:a3:88:06:34:a6:f8:1d:16:f7:a6:9a:be:00:33: 78:8a:5c:f9:b7:e6:78:72:4a:fc:39:f2:e1:4d:46:d9:6d:c1: 47:02:b1:d2:93:ec:4f:32:cc:39:88:90:62:8a:67:2a:d3:dc: 57:fd:97:f8:f2:9e:75:85:7b:3d:f8:f0:31:ad:a4:12:47:04: b1:ec:95:06:95:1f:5b:65:0a:fc:43:ad:3a:4d:93:d0:2b:c9: b1:e1:e4:21:46:93:b7:4f:8e:98:2a:59:c9:1c:62:f9:2c:03: f1:b5:a1:ae:5d:6e:e2:ff:f7:07:75:6e:56:7b:0d:5d:8a:59: 6d:d5:93:9f:5e:e9:e9:42:20:df:ae:77:61:4e:e1:1a:02:04: 28:4f:f3:64:fb:24:00:65:b8:41:0f:33:7b:0f:e8:84:00:cc: a2:72:96:5d:ab:54:2b:f6:ff:6e:00:28:74:88:7e:0b:d8:84: e5:49:20:a2:da:2a:78:0c:67:3b:67:87:1e:e2:fa:69:33:f7: d7:3e:23:be -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB1MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTU4NTdaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDUxN0NGOTIyQzg4MUUw QjA4MDhCMDdDODZEQUEwOTBGNTQwMTY5NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDO4DViBKjjT50i+f5S1jVBRLDNSiet7BaO4vTNZuhVq2yjIFu +eLYmzZRe0WiZ+uKZaOuLW0E87XWiQS+ZsRt9Ri68kj3Lj1Fb/QKWn4cA+rNS7Gi fUYv3sT/rVUngETCt12NI+1GSUfp79hlvcOUNhUZ2zumxTSJW8gVDbVkSGdRcwyH B2uOVZ0GvCld3eTD7R2E037T3sECljtWne3NNThgtQchKcSlGFplFBItaVSIDarf /KUeUffl9x0kFk5q213YwH0vUniGsKyXsyFTdMopT4vkpV9Cr5Hi1wzcDHfxjyF/ pKHxB/4DOtmk+eepItaJy0vA0r52NdCKUq4rAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUUXz5IsiB4LCAiwfIbaoJD1QBaVMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1VYejVJc2lCNExDQWl3ZkliYW9KRDFRQmFWTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxaQswDQYJKoZIhvcNAQELBQADggEBAEyf2zJqOxfkR3QEREfW8vW/GBVz l2LQk9SyXa6HWQSfYhuF9T5OyWxUp9KO6Ni8Xc+CQ8gfv8XSvgSjiAY0pvgdFvem mr4AM3iKXPm35nhySvw58uFNRtltwUcCsdKT7E8yzDmIkGKKZyrT3Ff9l/jynnWF ez348DGtpBJHBLHslQaVH1tlCvxDrTpNk9ArybHh5CFGk7dPjpgqWckcYvksA/G1 oa5dbuL/9wd1blZ7DV2KWW3Vk59e6elCIN+ud2FO4RoCBChP82T7JABluEEPM3sP 6IQAzKJyll2rVCv2/24AKHSIfgvYhOVJIKLaKngMZztnhx7i+mkz99c+I74= -----END CERTIFICATE-----Generated at Sun Feb 16 22:33:50 2025 by rpki-client