$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/W-NsGV7HSFjwaG_lDSAVecFqVfg.roa File: W-NsGV7HSFjwaG_lDSAVecFqVfg.roa (raw, json) Hash identifier: i8wp1POS/MyzxH5ZVp4ZtAM4r7T2UJHvXogt9zRef+w= Subject key identifier: 5B:E3:6C:19:5E:C7:48:58:F0:68:6F:E5:0D:20:15:79:C1:6A:55:F8 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 096B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/W-NsGV7HSFjwaG_lDSAVecFqVfg.roa Signing time: Sun 30 Jun 2024 01:33:37 +0000 ROA not before: Sun 30 Jun 2024 01:33:37 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.66.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2411 (0x96b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:33:37 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=5BE36C195EC74858F0686FE50D201579C16A55F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:52:c6:c5:55:7a:8c:7c:2b:f3:35:6d:dd:19: 31:e9:2d:a9:24:b2:30:b2:7b:ba:4d:dd:52:1b:a4: 08:94:a3:79:ef:35:25:7c:6b:9d:33:e9:15:58:f2: 8f:01:b8:6b:32:b8:0b:1c:31:b2:50:2b:a6:8b:09: 83:d7:e1:bf:aa:e6:3b:73:78:b2:3d:05:85:92:d2: 31:93:65:76:a9:11:91:26:3a:0c:35:ea:a1:0b:e4: 62:79:15:1e:84:3b:1e:fa:66:6f:95:ec:68:40:35: be:c1:62:84:7d:2b:63:86:21:37:e8:1b:81:f4:d4: f6:da:26:47:28:78:3e:e9:4f:bf:d6:9a:5a:7d:96: bf:7e:14:29:6a:e9:73:8d:7c:d1:2f:3c:11:9d:64: 26:45:be:3d:51:d3:08:f3:7c:7c:fb:99:ff:09:62: 33:50:a7:df:6b:2c:4b:17:fd:e0:ed:ba:91:9e:d1: 2a:13:bb:26:49:10:99:29:55:a8:de:f0:c4:97:3d: ac:08:d2:98:1a:35:06:64:4f:64:ae:92:bd:a2:eb: 66:59:38:fa:d6:c6:b9:67:05:00:c2:d4:aa:55:e3: 2e:77:8f:12:a1:cc:11:f3:f7:58:3a:5d:5e:9e:aa: d9:a6:00:f7:f1:83:3f:fc:e2:d0:37:4a:ff:5f:9e: 4d:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:E3:6C:19:5E:C7:48:58:F0:68:6F:E5:0D:20:15:79:C1:6A:55:F8 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/W-NsGV7HSFjwaG_lDSAVecFqVfg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.66.106.0/24 Signature Algorithm: sha256WithRSAEncryption ab:76:c4:60:6f:71:56:36:18:1e:e8:a1:51:f9:15:2e:e0:fe: dc:03:72:00:6f:dc:59:db:c3:61:24:b4:7e:7e:12:6b:23:40: ae:12:00:db:9b:9a:45:43:5e:da:27:14:ee:ad:d4:9e:67:bb: 6a:4f:f7:af:95:5a:af:7c:3a:ba:8b:54:06:80:d6:b0:e6:f2: e9:6c:c3:c7:f2:2e:cb:9c:46:16:5f:a7:66:0d:84:4a:b2:cb: ec:11:bb:7d:31:f5:2e:0c:a9:a5:e5:ce:d5:7a:4c:60:6c:d4: d1:25:73:3d:6f:25:88:c4:6f:f6:ab:0c:72:9d:c4:06:ae:98: 5d:b3:35:df:67:bd:1d:15:8d:4c:27:09:30:9c:91:9a:26:35: 40:81:2f:18:df:9a:8a:f8:b7:2f:dd:bd:43:58:3f:b1:bf:af: 26:0b:f0:77:19:11:6d:69:31:09:3d:87:ed:84:70:64:3a:eb: 0e:ac:b4:3e:17:fa:f9:80:bd:dd:9a:a6:5c:43:7f:09:63:2b: 87:5f:e0:2f:ad:87:c4:3c:9d:c5:24:63:ef:ea:b0:2a:6c:fe: 11:16:c0:47:ac:dd:45:2b:d4:fd:47:ab:b3:88:f1:85:18:16: ec:c8:72:d5:d2:59:64:6a:66:f8:a8:ac:15:af:e4:a1:70:8f: 79:b0:f6:fa -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCWswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTMzMzdaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDVCRTM2QzE5NUVDNzQ4 NThGMDY4NkZFNTBEMjAxNTc5QzE2QTU1RjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIUsbFVXqMfCvzNW3dGTHpLakksjCye7pN3VIbpAiUo3nvNSV8 a50z6RVY8o8BuGsyuAscMbJQK6aLCYPX4b+q5jtzeLI9BYWS0jGTZXapEZEmOgw1 6qEL5GJ5FR6EOx76Zm+V7GhANb7BYoR9K2OGITfoG4H01PbaJkcoeD7pT7/Wmlp9 lr9+FClq6XONfNEvPBGdZCZFvj1R0wjzfHz7mf8JYjNQp99rLEsX/eDtupGe0SoT uyZJEJkpVaje8MSXPawI0pgaNQZkT2Sukr2i62ZZOPrWxrlnBQDC1KpV4y53jxKh zBHz91g6XV6eqtmmAPfxgz/84tA3Sv9fnk0HAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUW+NsGV7HSFjwaG/lDSAVecFqVfgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1ctTnNHVjdIU0Zqd2FHX2xEU0FWZWNGcVZmZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABQmowDQYJKoZIhvcNAQELBQADggEBAKt2xGBvcVY2GB7ooVH5FS7g/twD cgBv3Fnbw2EktH5+EmsjQK4SANubmkVDXtonFO6t1J5nu2pP96+VWq98OrqLVAaA 1rDm8ulsw8fyLsucRhZfp2YNhEqyy+wRu30x9S4MqaXlztV6TGBs1NElcz1vJYjE b/arDHKdxAaumF2zNd9nvR0VjUwnCTCckZomNUCBLxjfmor4ty/dvUNYP7G/ryYL 8HcZEW1pMQk9h+2EcGQ66w6stD4X+vmAvd2aplxDfwljK4df4C+th8Q8ncUkY+/q sCps/hEWwEes3UUr1P1Hq7OI8YUYFuzIctXSWWRqZviorBWv5KFwj3mw9vo= -----END CERTIFICATE-----Generated at Sun Feb 16 22:19:53 2025 by rpki-client