$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/VMV4gMoIAtWMcsrwT0LLNXphKdI.roa File: VMV4gMoIAtWMcsrwT0LLNXphKdI.roa (raw, json) Hash identifier: EIuxMZgOsoXkaK1DDpj35d8R8q5sgaSnZiX6OBro35E= Subject key identifier: 54:C5:78:80:CA:08:02:D5:8C:72:CA:F0:4F:42:CB:35:7A:61:29:D2 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0733 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/VMV4gMoIAtWMcsrwT0LLNXphKdI.roa Signing time: Tue 30 Apr 2024 01:56:00 +0000 ROA not before: Tue 30 Apr 2024 01:56:00 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 220.159.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 20:25:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1843 (0x733) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:56:00 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=54C57880CA0802D58C72CAF04F42CB357A6129D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:45:16:53:e3:58:33:74:51:dc:2f:13:71:d9: e3:e7:4b:59:df:d9:06:b8:79:b8:e8:4a:8a:98:1e: 64:ac:90:fe:ce:30:b9:a0:90:2e:4b:42:ae:98:e6: 6e:1c:71:72:9b:ce:cb:4b:66:2c:92:8f:00:27:b3: 8d:07:a7:f6:9c:a1:64:ac:e4:67:e6:01:cf:3e:25: 1a:24:b1:08:8b:be:32:fa:10:f9:7d:6d:84:5d:8e: ed:7a:8e:31:a9:64:dd:e6:71:e9:9a:76:96:63:23: 8d:6d:6a:64:20:ec:18:02:35:03:a5:bc:c3:d1:81: 04:ce:54:3b:f5:5c:62:5a:a4:52:0b:2d:7e:ac:cc: 26:31:84:6a:77:44:c3:35:6e:14:00:8d:60:36:12: 8a:f8:2d:d8:f0:0d:e9:f7:46:80:2d:cd:2b:91:db: ad:bb:e6:6b:b0:78:4f:14:4d:d0:8f:16:bb:95:6a: 1f:1b:dd:f4:ba:7d:c8:d6:88:54:8e:41:b9:f3:2c: cf:36:c7:8c:e9:82:37:8a:87:d6:8e:78:b5:7a:40: 3b:24:74:18:11:f3:f1:58:38:7b:50:d7:aa:51:80: bc:75:69:14:0e:43:31:18:97:08:b9:0a:df:e2:10: 1c:70:eb:87:d6:5b:96:9c:e8:fc:e0:64:d7:69:ab: 6b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:C5:78:80:CA:08:02:D5:8C:72:CA:F0:4F:42:CB:35:7A:61:29:D2 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/VMV4gMoIAtWMcsrwT0LLNXphKdI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.238.0/23 Signature Algorithm: sha256WithRSAEncryption a2:42:0b:c3:94:d5:fa:2f:8b:be:34:7f:95:4b:d9:0c:66:7b: b3:4b:f4:55:01:53:d6:2c:19:95:26:8b:4a:a5:18:8b:1b:5b: 2b:e4:1c:7b:69:95:3a:e7:62:58:83:19:cc:83:42:3f:ec:be: b7:09:17:c6:74:bb:c9:47:9f:25:82:95:19:ba:75:4e:59:ef: 53:48:1e:92:e8:e5:ee:9f:98:13:d2:17:08:58:a8:fd:27:80: 10:ef:8c:38:af:25:5c:55:b4:9d:33:17:53:1b:2b:1c:dd:70: 8d:2c:d5:f3:d2:6f:84:84:50:cb:50:78:a0:50:31:54:77:e8: 99:4a:fb:67:7b:ab:67:65:05:48:e4:6c:10:3a:8c:51:3b:27: bb:82:a3:e9:88:0c:b7:af:54:98:34:e5:5c:7e:55:51:0d:23: 87:da:87:85:fe:89:cb:d1:61:8c:4d:21:1e:96:1d:53:7f:ba: c5:cc:8f:e8:7f:09:27:fa:5a:79:a2:bf:6a:81:c4:f1:37:41: b0:04:e1:75:a2:d8:ff:6b:15:cc:20:6e:e3:0e:0b:d4:97:07: 65:b0:81:f0:75:51:1d:b8:11:81:fb:9d:c9:e6:fd:e5:f7:82: 34:79:07:c0:9e:22:54:d9:13:70:73:56:2d:89:be:dd:ca:e5: 74:f3:5b:45 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBzMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTU2MDBaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDU0QzU3ODgwQ0EwODAy RDU4QzcyQ0FGMDRGNDJDQjM1N0E2MTI5RDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXRRZT41gzdFHcLxNx2ePnS1nf2Qa4ebjoSoqYHmSskP7OMLmg kC5LQq6Y5m4ccXKbzstLZiySjwAns40Hp/acoWSs5GfmAc8+JRoksQiLvjL6EPl9 bYRdju16jjGpZN3mcemadpZjI41tamQg7BgCNQOlvMPRgQTOVDv1XGJapFILLX6s zCYxhGp3RMM1bhQAjWA2Eor4LdjwDen3RoAtzSuR26275muweE8UTdCPFruVah8b 3fS6fcjWiFSOQbnzLM82x4zpgjeKh9aOeLV6QDskdBgR8/FYOHtQ16pRgLx1aRQO QzEYlwi5Ct/iEBxw64fWW5ac6PzgZNdpq2vVAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUVMV4gMoIAtWMcsrwT0LLNXphKdIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1ZNVjRnTW9JQXRXTWNzcndUMExMTlhwaEtkSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHcn+4wDQYJKoZIhvcNAQELBQADggEBAKJCC8OU1fovi740f5VL2Qxme7NL 9FUBU9YsGZUmi0qlGIsbWyvkHHtplTrnYliDGcyDQj/svrcJF8Z0u8lHnyWClRm6 dU5Z71NIHpLo5e6fmBPSFwhYqP0ngBDvjDivJVxVtJ0zF1MbKxzdcI0s1fPSb4SE UMtQeKBQMVR36JlK+2d7q2dlBUjkbBA6jFE7J7uCo+mIDLevVJg05Vx+VVENI4fa h4X+icvRYYxNIR6WHVN/usXMj+h/CSf6Wnmiv2qBxPE3QbAE4XWi2P9rFcwgbuMO C9SXB2WwgfB1UR24EYH7ncnm/eX3gjR5B8CeIlTZE3BzVi2Jvt3K5XTzW0U= -----END CERTIFICATE-----Generated at Thu Mar 13 01:48:41 2025 by rpki-client