$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Z86n9FsDxI8P2jNg5NFDmv0NKbQ.roa File: Z86n9FsDxI8P2jNg5NFDmv0NKbQ.roa (raw, json) Hash identifier: +rFayhPl5NdIryu9UQzgxfBMPN9PxKnmKZhLkbURatw= Subject key identifier: 67:CE:A7:F4:5B:03:C4:8F:0F:DA:33:60:E4:D1:43:9A:FD:0D:29:B4 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0648 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Z86n9FsDxI8P2jNg5NFDmv0NKbQ.roa Signing time: Tue 30 Apr 2024 01:31:31 +0000 ROA not before: Tue 30 Apr 2024 01:31:31 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1608 (0x648) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:31:31 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=67CEA7F45B03C48F0FDA3360E4D1439AFD0D29B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:31:22:37:d8:2b:88:15:2d:7c:c6:13:6a:98: 84:1c:30:68:94:24:24:38:9c:da:00:8d:cd:bf:4e: e8:e2:16:3e:c2:81:8e:2c:41:fd:a3:76:38:59:a7: 8a:54:4f:de:ef:0c:9f:dd:2c:10:3d:d4:ee:6f:ce: f3:f9:58:b9:63:99:21:3c:2b:36:ef:9e:c3:47:c8: c2:b8:68:9c:8f:fc:bf:9c:1f:df:70:97:92:0c:9d: bd:95:01:cc:59:dc:b3:69:1e:fb:2a:eb:72:b6:6b: 84:27:e7:81:c4:7b:f3:ee:a5:c0:6b:1b:dc:ec:b1: 80:a3:22:dd:71:9a:1f:fb:da:77:c0:ab:ae:86:0d: fd:40:72:d8:5b:46:a8:ce:39:55:d9:09:16:16:a9: 75:70:5e:23:3b:d2:db:d9:8a:72:93:2a:42:0d:23: 1c:89:c4:78:55:82:bc:97:5c:32:37:64:7f:99:9b: 67:71:d3:c2:be:0c:0c:72:cd:43:5f:90:2d:1e:eb: f0:ad:f9:4b:24:09:2a:26:58:5e:7a:70:6b:73:52: 59:6d:b7:ab:04:7e:0e:8b:a0:eb:93:f0:c5:2c:75: 91:63:35:a4:ba:85:53:f3:f0:d3:90:e4:6f:a7:94: 65:3e:ca:03:ee:58:fd:0a:33:3c:23:fb:58:1e:2f: 2e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:CE:A7:F4:5B:03:C4:8F:0F:DA:33:60:E4:D1:43:9A:FD:0D:29:B4 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Z86n9FsDxI8P2jNg5NFDmv0NKbQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.52.0/22 Signature Algorithm: sha256WithRSAEncryption 22:5f:85:31:2a:d9:07:dc:f5:62:0e:a5:a3:95:9e:02:b0:10: e5:52:85:11:d3:f8:87:da:8c:4e:5b:c0:2f:9a:da:1d:1d:a3: d0:0c:b2:b3:98:8b:e2:29:4a:e0:77:95:48:9b:d6:17:25:f3: d7:8b:1c:6f:35:82:eb:c4:45:ce:ee:c9:f1:ff:a1:21:b6:9c: 08:45:f1:56:34:6e:3c:06:cc:81:0f:a7:21:b0:50:86:0c:c4: 34:5a:a0:55:2f:f5:f4:e1:e6:5c:85:6f:12:e6:4b:88:0b:e2: 3b:26:77:4b:ed:cd:68:30:62:f8:65:6a:b6:97:dc:68:f8:34: 49:43:4d:19:b0:69:cb:d9:e1:6b:6c:1b:72:d3:0d:7f:9a:21: 98:79:16:87:a7:1e:95:ab:64:65:56:7e:e4:f6:47:15:21:46: a0:46:ca:b9:ab:81:7c:a9:e6:f8:88:03:cd:32:dc:ea:8b:8f: d7:63:f3:a7:17:be:c9:9b:3a:85:a2:4c:52:93:7a:58:fb:26: 01:b5:69:4a:75:3f:6b:01:b3:c6:d0:a1:d1:0c:3a:3b:ed:97: d5:e5:c0:ed:86:80:b9:b3:87:dd:f0:30:af:c6:ff:48:a3:51: 16:e8:89:c5:b2:49:2b:76:f0:6d:7a:b0:ec:b9:d4:af:8a:05: 60:77:71:6e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBkgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTMxMzFaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDY3Q0VBN0Y0NUIwM0M0 OEYwRkRBMzM2MEU0RDE0MzlBRkQwRDI5QjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkMSI32CuIFS18xhNqmIQcMGiUJCQ4nNoAjc2/TujiFj7CgY4s Qf2jdjhZp4pUT97vDJ/dLBA91O5vzvP5WLljmSE8KzbvnsNHyMK4aJyP/L+cH99w l5IMnb2VAcxZ3LNpHvsq63K2a4Qn54HEe/PupcBrG9zssYCjIt1xmh/72nfAq66G Df1ActhbRqjOOVXZCRYWqXVwXiM70tvZinKTKkINIxyJxHhVgryXXDI3ZH+Zm2dx 08K+DAxyzUNfkC0e6/Ct+UskCSomWF56cGtzUlltt6sEfg6LoOuT8MUsdZFjNaS6 hVPz8NOQ5G+nlGU+ygPuWP0KMzwj+1geLy7HAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUZ86n9FsDxI8P2jNg5NFDmv0NKbQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1o4Nm45RnNEeEk4UDJqTmc1TkZEbXYwTktiUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYjQwDQYJKoZIhvcNAQELBQADggEBACJfhTEq2Qfc9WIOpaOVngKwEOVS hRHT+IfajE5bwC+a2h0do9AMsrOYi+IpSuB3lUib1hcl89eLHG81guvERc7uyfH/ oSG2nAhF8VY0bjwGzIEPpyGwUIYMxDRaoFUv9fTh5lyFbxLmS4gL4jsmd0vtzWgw YvhlaraX3Gj4NElDTRmwacvZ4WtsG3LTDX+aIZh5FoenHpWrZGVWfuT2RxUhRqBG yrmrgXyp5viIA80y3OqLj9dj86cXvsmbOoWiTFKTelj7JgG1aUp1P2sBs8bQodEM Ojvtl9XlwO2GgLmzh93wMK/G/0ijURboicWySSt28G16sOy51K+KBWB3cW4= -----END CERTIFICATE-----Generated at Sun Feb 16 22:07:09 2025 by rpki-client