$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/YZx8ZQ8FiHqcugOPJnudZK1ULr4.roa File: YZx8ZQ8FiHqcugOPJnudZK1ULr4.roa (raw, json) Hash identifier: VjLhOPCyFTb4HdUqysymSpttkCDzsjxNQyznaitTSB0= Subject key identifier: 61:9C:7C:65:0F:05:88:7A:9C:BA:03:8F:26:7B:9D:64:AD:54:2E:BE Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 088D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YZx8ZQ8FiHqcugOPJnudZK1ULr4.roa Signing time: Tue 30 Apr 2024 02:20:35 +0000 ROA not before: Tue 30 Apr 2024 02:20:35 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.72.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2189 (0x88d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:20:35 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=619C7C650F05887A9CBA038F267B9D64AD542EBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:63:8e:fc:e6:28:81:78:5c:7a:f9:90:6d:19: 06:14:dd:8d:2b:46:97:10:ec:cb:5e:bf:4a:14:27: 81:ff:29:e7:30:68:1f:bb:ab:ff:c3:b7:e5:c1:ce: 48:c8:b7:e0:94:8b:48:5a:30:e6:f0:c7:3c:e3:a5: 34:ab:c5:5a:16:06:d6:3a:29:6b:2c:f8:0f:0f:80: 31:12:f2:b9:8e:ce:41:8e:af:af:08:24:6d:a5:99: 46:de:9a:37:12:f3:d1:97:18:32:7f:ca:b7:ef:68: a9:d5:8b:ac:0a:b2:45:f5:c0:61:2d:57:1c:09:7a: b4:5d:82:3d:bc:da:ad:bf:9f:26:00:96:54:bc:01: b2:96:ec:54:e0:aa:dc:0c:32:d4:8a:d7:63:7a:24: 77:25:f0:fb:25:1e:21:f2:f8:eb:78:a0:de:bc:79: 18:d8:ff:92:38:e8:b6:b1:d1:aa:5a:88:16:53:89: 4e:b8:71:8b:c0:ff:c4:9c:95:25:40:04:8c:16:b9: 19:cf:8b:f9:07:7e:2d:24:94:e9:42:79:bf:f4:e0: 33:f8:ca:4c:0b:e6:fa:80:d5:59:98:bd:bf:bc:85: 35:39:e6:8d:b3:7c:33:4a:f8:55:2c:dd:21:f8:97: 05:6b:f1:d4:35:cb:61:49:94:20:f7:6d:ae:92:69: 5c:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:9C:7C:65:0F:05:88:7A:9C:BA:03:8F:26:7B:9D:64:AD:54:2E:BE X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YZx8ZQ8FiHqcugOPJnudZK1ULr4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.72.0/23 Signature Algorithm: sha256WithRSAEncryption c4:ab:d4:9b:89:9e:9e:94:75:12:d7:c4:27:55:88:39:bc:9a: 6c:12:c3:39:e3:32:23:de:d1:67:b6:c7:c7:64:21:8c:ee:89: 18:3b:71:17:4c:a3:0c:4d:28:23:20:14:6c:1d:a3:8b:67:7d: 09:67:f4:17:fc:65:e7:9e:60:31:83:e1:d5:fb:03:fb:35:76: a3:f0:04:8c:c6:f0:e0:cb:00:0e:2e:f4:8e:e3:09:47:02:71: 38:b3:16:82:5e:f5:2e:aa:9d:6a:24:9c:c3:26:17:ae:6e:54: a7:e3:f9:37:5f:6e:a2:91:88:c4:5d:57:a8:1b:20:55:af:48: a1:a0:88:86:b6:89:82:78:ae:ff:3a:81:8e:c5:ba:39:58:12: 8e:51:ea:c8:ef:16:5e:0e:af:99:c5:3b:b9:7b:0b:b4:89:35: 61:03:c0:9f:a4:23:3a:2a:a6:c6:9a:57:5b:cc:27:af:c7:55: 29:b2:7f:29:f2:ba:9e:3d:06:67:d8:df:66:bc:2f:a0:fd:d0: a9:23:45:79:0e:f8:47:ce:e5:6b:2d:74:19:70:09:7a:4c:0e: 9a:11:9e:47:09:b0:13:4b:09:5f:bf:66:47:ff:9f:d9:ed:23: 3b:cf:4a:97:77:97:f0:23:37:89:d4:d5:0f:56:73:cc:71:2c: d3:cd:eb:c9 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCI0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjIwMzVaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDYxOUM3QzY1MEYwNTg4 N0E5Q0JBMDM4RjI2N0I5RDY0QUQ1NDJFQkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdY4785iiBeFx6+ZBtGQYU3Y0rRpcQ7Mtev0oUJ4H/KecwaB+7 q//Dt+XBzkjIt+CUi0haMObwxzzjpTSrxVoWBtY6KWss+A8PgDES8rmOzkGOr68I JG2lmUbemjcS89GXGDJ/yrfvaKnVi6wKskX1wGEtVxwJerRdgj282q2/nyYAllS8 AbKW7FTgqtwMMtSK12N6JHcl8PslHiHy+Ot4oN68eRjY/5I46Lax0apaiBZTiU64 cYvA/8SclSVABIwWuRnPi/kHfi0klOlCeb/04DP4ykwL5vqA1VmYvb+8hTU55o2z fDNK+FUs3SH4lwVr8dQ1y2FJlCD3ba6SaVw/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUYZx8ZQ8FiHqcugOPJnudZK1ULr4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1laeDhaUThGaUhxY3VnT1BKbnVkWksxVUxyNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYkgwDQYJKoZIhvcNAQELBQADggEBAMSr1JuJnp6UdRLXxCdViDm8mmwS wznjMiPe0We2x8dkIYzuiRg7cRdMowxNKCMgFGwdo4tnfQln9Bf8ZeeeYDGD4dX7 A/s1dqPwBIzG8ODLAA4u9I7jCUcCcTizFoJe9S6qnWoknMMmF65uVKfj+TdfbqKR iMRdV6gbIFWvSKGgiIa2iYJ4rv86gY7FujlYEo5R6sjvFl4Or5nFO7l7C7SJNWED wJ+kIzoqpsaaV1vMJ6/HVSmyfynyup49BmfY32a8L6D90KkjRXkO+EfO5WstdBlw CXpMDpoRnkcJsBNLCV+/Zkf/n9ntIzvPSpd3l/AjN4nU1Q9Wc8xxLNPN68k= -----END CERTIFICATE-----Generated at Sun Feb 16 22:32:19 2025 by rpki-client