$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/VEaDG16aSBK6HR6zDBzdxjo-mvM.roa File: VEaDG16aSBK6HR6zDBzdxjo-mvM.roa (raw, json) Hash identifier: UgaRTMUFBS8wmGcYVp2hgbTRhcLDUlVfP5OOs7RNB3U= Subject key identifier: 54:46:83:1B:5E:9A:48:12:BA:1D:1E:B3:0C:1C:DD:C6:3A:3E:9A:F3 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A16 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/VEaDG16aSBK6HR6zDBzdxjo-mvM.roa Signing time: Sun 30 Jun 2024 01:44:23 +0000 ROA not before: Sun 30 Jun 2024 01:44:23 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 220.159.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2582 (0xa16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:44:23 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=5446831B5E9A4812BA1D1EB30C1CDDC63A3E9AF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9b:a7:be:fb:68:ac:d2:cd:e6:a4:fa:3b:53: 49:d2:f8:9c:77:c5:5f:eb:2c:b8:92:3a:dd:c6:47: 47:7b:f9:4a:70:52:70:06:c7:32:28:fd:84:d3:41: 92:53:0e:41:93:ac:49:89:42:9c:23:16:04:10:df: 3d:c6:bf:98:40:16:a1:cc:69:ae:d6:55:aa:77:11: 2e:5a:a2:7f:69:06:27:0c:c3:64:79:f1:33:84:ed: 1f:f4:5d:51:a7:6d:c6:49:a3:c1:af:f9:db:7d:d4: c8:8c:60:e2:bb:d4:ba:b7:53:c3:8b:0c:8b:1c:df: 1d:b8:9f:b1:0c:f1:02:aa:f8:ba:b2:77:46:50:e7: fe:bb:fe:ca:f0:c7:62:5d:e2:4d:d5:81:28:d0:3f: e3:8e:b7:1c:61:9d:e0:2b:8f:4c:7d:75:1e:3a:74: 4e:2c:c4:d7:ee:49:a5:75:01:45:b1:26:a4:34:21: 34:41:87:89:d4:d4:f9:7d:b4:dd:9a:05:d7:76:5a: 50:e0:0f:44:fd:e7:fc:f9:dd:e1:1f:ec:0d:85:06: 89:1d:72:11:01:fe:83:9d:bd:cc:30:a5:7d:60:f1: 2d:1d:d7:93:9a:6d:4c:b8:65:6a:0d:97:a8:0c:11: 1b:26:f6:1e:9a:2f:74:21:00:51:ad:bb:dd:9e:3d: b0:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:46:83:1B:5E:9A:48:12:BA:1D:1E:B3:0C:1C:DD:C6:3A:3E:9A:F3 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/VEaDG16aSBK6HR6zDBzdxjo-mvM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.64.0/19 Signature Algorithm: sha256WithRSAEncryption 41:5e:7e:6c:54:9c:d4:26:c6:96:58:55:66:0c:66:8e:df:21: 8e:6a:b1:0b:91:76:60:f7:a2:13:0b:ef:3d:c6:0d:49:88:27: dc:cc:4c:5d:e1:cf:25:23:b0:5f:d4:ac:ef:df:47:3d:4f:a0: 3f:32:b0:c6:f3:4b:04:c1:92:51:94:65:d7:ad:28:49:4f:e6: 71:21:1b:c3:a0:cb:93:b2:4a:cd:ea:27:6b:5f:9a:25:9a:f2: 52:73:69:d8:4c:de:e1:dd:4a:83:df:34:d3:5a:18:5a:cb:45: f1:c4:6d:be:cb:5d:a0:79:76:44:c8:b3:28:97:2e:d5:53:ee: 93:49:a8:82:3f:30:15:23:de:b3:70:b5:80:b2:f1:3d:b8:fc: 14:db:68:a9:65:6f:cd:d4:f7:0b:c7:de:cc:8a:4f:37:d9:02: b8:e9:df:53:8c:30:1f:4e:97:ee:36:cc:e9:30:71:b9:74:bb: d0:50:37:7c:9d:59:e2:01:16:c1:f3:a8:59:2c:f6:14:e7:d6: de:16:43:07:42:bf:39:cf:af:24:4b:73:29:33:3c:32:fa:6c: ef:cc:34:a3:af:54:a1:0f:fe:33:52:64:97:e7:72:69:9d:de: 4a:5c:e6:28:47:e1:44:00:40:72:5e:1d:89:aa:17:bb:7c:23: 54:e8:25:a3 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICChYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQ0MjNaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDU0NDY4MzFCNUU5QTQ4 MTJCQTFEMUVCMzBDMUNEREM2M0EzRTlBRjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4m6e++2is0s3mpPo7U0nS+Jx3xV/rLLiSOt3GR0d7+UpwUnAG xzIo/YTTQZJTDkGTrEmJQpwjFgQQ3z3Gv5hAFqHMaa7WVap3ES5aon9pBicMw2R5 8TOE7R/0XVGnbcZJo8Gv+dt91MiMYOK71Lq3U8OLDIsc3x24n7EM8QKq+Lqyd0ZQ 5/67/srwx2Jd4k3VgSjQP+OOtxxhneArj0x9dR46dE4sxNfuSaV1AUWxJqQ0ITRB h4nU1Pl9tN2aBdd2WlDgD0T95/z53eEf7A2FBokdchEB/oOdvcwwpX1g8S0d15Oa bUy4ZWoNl6gMERsm9h6aL3QhAFGtu92ePbCVAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUVEaDG16aSBK6HR6zDBzdxjo+mvMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1ZFYURHMTZhU0JLNkhSNnpEQnpkeGpvLW12TS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXcn0AwDQYJKoZIhvcNAQELBQADggEBAEFefmxUnNQmxpZYVWYMZo7fIY5q sQuRdmD3ohML7z3GDUmIJ9zMTF3hzyUjsF/UrO/fRz1PoD8ysMbzSwTBklGUZdet KElP5nEhG8Ogy5OySs3qJ2tfmiWa8lJzadhM3uHdSoPfNNNaGFrLRfHEbb7LXaB5 dkTIsyiXLtVT7pNJqII/MBUj3rNwtYCy8T24/BTbaKllb83U9wvH3syKTzfZArjp 31OMMB9Ol+42zOkwcbl0u9BQN3ydWeIBFsHzqFks9hTn1t4WQwdCvznPryRLcykz PDL6bO/MNKOvVKEP/jNSZJfncmmd3kpc5ihH4UQAQHJeHYmqF7t8I1ToJaM= -----END CERTIFICATE-----Generated at Sun Feb 16 22:23:58 2025 by rpki-client