$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Y9l0ONwFZoHJKcdfjUPT8yC-brU.roa File: Y9l0ONwFZoHJKcdfjUPT8yC-brU.roa (raw, json) Hash identifier: UB9gN596CdQjMw37c5Uu3zRqAxzfqx667+hCWRGQRVE= Subject key identifier: 63:D9:74:38:DC:05:66:81:C9:29:C7:5F:8D:43:D3:F3:20:BE:6E:B5 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 084A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Y9l0ONwFZoHJKcdfjUPT8yC-brU.roa Signing time: Tue 30 Apr 2024 02:16:25 +0000 ROA not before: Tue 30 Apr 2024 02:16:25 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.104.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2122 (0x84a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:16:25 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=63D97438DC056681C929C75F8D43D3F320BE6EB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:90:88:db:14:ce:bf:b5:6b:26:14:58:f7:c7: 9b:8e:b5:f6:e1:4a:b2:50:29:76:55:2f:b6:fb:d5: ab:a5:25:9d:a2:b1:be:50:fb:86:c8:64:14:43:ef: 6e:14:86:46:13:35:e5:52:62:89:fd:f6:c0:2a:1a: 24:fb:e2:9b:5e:15:e4:dd:21:26:4e:5c:6e:cb:b3: 88:d4:5e:7d:8d:2d:98:00:84:29:ac:95:b1:99:88: 36:a0:14:f0:41:7b:ad:e9:b7:04:89:0e:60:47:d3: 02:24:51:2c:cc:21:49:67:cc:66:0c:43:21:e8:5b: 46:56:2f:54:0c:e9:d9:70:0a:7a:e1:e8:28:a3:c0: 65:03:b0:46:fb:e1:bb:ad:24:4d:35:ff:07:ff:e5: c1:3c:76:81:15:2e:e2:06:84:43:24:c2:38:14:76: b3:ab:a2:59:e2:76:a8:c1:4e:3b:eb:59:be:e5:b4: 09:0e:32:89:68:40:23:b1:19:a8:73:b7:c1:d1:f3: 13:cc:47:be:ce:d5:87:68:84:ec:b4:ef:99:c1:6e: 83:17:58:44:fa:c8:71:cb:81:d2:db:e3:05:56:8b: b1:07:db:e8:68:c4:e3:5e:3d:63:e2:2b:27:42:40: 30:1c:0a:ae:07:93:3d:ae:ed:9b:7f:ce:24:18:7a: bf:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:D9:74:38:DC:05:66:81:C9:29:C7:5F:8D:43:D3:F3:20:BE:6E:B5 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Y9l0ONwFZoHJKcdfjUPT8yC-brU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.104.35.0/24 Signature Algorithm: sha256WithRSAEncryption 58:4a:20:18:01:ca:1b:32:72:e5:57:06:25:43:cd:f1:4e:f6: 94:f1:f4:2e:c2:7f:b6:de:72:75:9e:50:e6:c3:4f:b8:78:25: b1:f6:89:26:f5:2c:fb:1d:45:ab:b6:81:e2:4c:be:ab:06:b3: 1b:31:60:ab:ea:68:57:0f:15:41:29:0b:64:fd:5b:af:35:75: 92:32:be:88:c5:a1:e6:53:04:b5:be:04:e5:88:a7:36:60:dd: d8:3d:50:07:40:7d:d5:72:e4:f3:46:37:4d:36:21:f1:8c:ea: 51:89:8e:15:a5:57:4e:90:96:6b:d2:8f:f7:d3:1d:35:e2:45: d5:57:d1:91:2e:a9:91:af:b8:f9:a1:79:4f:4a:73:ab:64:77: 8d:07:9d:8c:ca:31:6f:d7:b5:46:be:d3:97:5b:99:29:91:67: 3a:e2:89:a8:46:63:d2:74:dc:41:d1:19:3c:ff:3d:da:2c:89: f9:97:fd:10:6c:84:80:a3:24:cd:eb:dd:24:2e:1f:92:23:fd: 1f:83:5e:2b:f0:3f:3a:8c:1e:a9:f3:8f:d4:a8:49:8b:f4:f1: 5b:7b:d0:e2:c8:a6:8d:00:4b:ae:cc:f0:3d:f1:7a:4d:8b:73: f6:cb:e1:7c:25:ad:42:f4:59:36:b3:39:76:03:f1:25:39:22: f9:bf:08:7e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCEowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjE2MjVaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDYzRDk3NDM4REMwNTY2 ODFDOTI5Qzc1RjhENDNEM0YzMjBCRTZFQjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCRkIjbFM6/tWsmFFj3x5uOtfbhSrJQKXZVL7b71aulJZ2isb5Q +4bIZBRD724UhkYTNeVSYon99sAqGiT74pteFeTdISZOXG7Ls4jUXn2NLZgAhCms lbGZiDagFPBBe63ptwSJDmBH0wIkUSzMIUlnzGYMQyHoW0ZWL1QM6dlwCnrh6Cij wGUDsEb74butJE01/wf/5cE8doEVLuIGhEMkwjgUdrOrolnidqjBTjvrWb7ltAkO MoloQCOxGahzt8HR8xPMR77O1YdohOy075nBboMXWET6yHHLgdLb4wVWi7EH2+ho xONePWPiKydCQDAcCq4Hkz2u7Zt/ziQYer9vAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUY9l0ONwFZoHJKcdfjUPT8yC+brUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1k5bDBPTndGWm9ISktjZGZqVVBUOHlDLWJyVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxaCMwDQYJKoZIhvcNAQELBQADggEBAFhKIBgByhsycuVXBiVDzfFO9pTx 9C7Cf7becnWeUObDT7h4JbH2iSb1LPsdRau2geJMvqsGsxsxYKvqaFcPFUEpC2T9 W681dZIyvojFoeZTBLW+BOWIpzZg3dg9UAdAfdVy5PNGN002IfGM6lGJjhWlV06Q lmvSj/fTHTXiRdVX0ZEuqZGvuPmheU9Kc6tkd40HnYzKMW/XtUa+05dbmSmRZzri iahGY9J03EHRGTz/PdosifmX/RBshICjJM3r3SQuH5Ij/R+DXivwPzqMHqnzj9So SYv08Vt70OLIpo0AS67M8D3xek2Lc/bL4XwlrUL0WTazOXYD8SU5Ivm/CH4= -----END CERTIFICATE-----Generated at Sun Feb 16 22:32:45 2025 by rpki-client