$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/aFJD5BjI1OFEvy81O4F-oepIAEw.roa File: aFJD5BjI1OFEvy81O4F-oepIAEw.roa (raw, json) Hash identifier: PMr0f8FgkEIDylv+SuvjKeKDY6ODKghwAlAlEkm6YaQ= Subject key identifier: 68:52:43:E4:18:C8:D4:E1:44:BF:2F:35:3B:81:7E:A1:EA:48:00:4C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 087A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aFJD5BjI1OFEvy81O4F-oepIAEw.roa Signing time: Tue 30 Apr 2024 02:18:36 +0000 ROA not before: Tue 30 Apr 2024 02:18:36 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.80.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2170 (0x87a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:18:36 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=685243E418C8D4E144BF2F353B817EA1EA48004C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:13:ff:a4:28:11:a3:d9:ad:45:5e:4f:5c:f0: ec:de:a1:6f:16:f4:e6:ba:a9:5b:0d:91:ef:a2:65: 43:0f:8d:88:a0:6c:7d:b5:0a:33:32:2a:f4:71:50: 66:73:91:ff:10:d4:a3:d7:88:05:aa:3a:b5:ed:45: b1:b8:89:81:bb:11:2a:f6:b0:6b:90:28:c4:49:46: d4:bc:9f:5e:9f:dd:14:b1:3c:b0:1c:27:29:0f:bb: df:1c:f6:c7:18:14:10:c2:fe:23:34:2c:8a:e0:c5: 1c:37:c5:3d:10:b4:85:d9:50:d0:9b:14:d3:72:6c: a2:f5:2d:9b:8f:80:cc:c3:e2:be:51:ef:98:b7:52: bc:a7:ac:1a:ec:13:61:d5:8a:d6:c6:0c:24:2f:d8: 45:a0:99:73:a4:3f:e6:4a:a8:01:04:9d:c6:bc:03: e7:b5:a2:e0:4b:40:ae:1d:04:7b:90:3d:77:ad:67: ae:c1:88:02:1c:5a:f7:a5:24:88:c1:7a:55:38:ed: 9e:72:69:55:e2:6d:e9:93:cc:a2:4c:96:f7:54:28: 08:55:2c:56:50:a9:3f:c1:cd:87:aa:d0:1e:cd:80: 94:c4:be:99:b1:d1:8f:1a:ad:c8:8f:88:18:3d:46: 35:e4:60:0d:fd:f8:07:a1:8c:3e:24:9c:ea:e6:d2: e4:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:52:43:E4:18:C8:D4:E1:44:BF:2F:35:3B:81:7E:A1:EA:48:00:4C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aFJD5BjI1OFEvy81O4F-oepIAEw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.80.0/22 Signature Algorithm: sha256WithRSAEncryption c6:5a:20:30:a2:bc:4d:f6:a3:eb:d4:25:b7:47:c0:78:8a:5e: 49:9a:9d:91:5f:c5:2d:22:6d:f8:0f:02:99:c1:7c:81:c7:07: 4b:b9:b5:13:a8:4d:c9:5e:a8:c4:52:48:8f:43:12:da:7a:eb: 1c:95:88:f5:aa:4a:b7:bb:21:cc:e2:33:70:e7:77:d1:0f:33: d8:dc:c0:3d:ad:54:02:fe:35:d2:b5:47:e1:fd:77:35:b3:ea: 09:89:1d:02:df:77:f5:51:38:bd:64:13:bf:ab:3f:d7:cf:94: 5d:aa:8e:42:bd:d5:f2:ef:f4:05:b9:53:84:a9:1d:ec:9b:51: fa:c3:29:4b:f9:ec:e8:4b:1b:69:5f:2e:54:e8:1d:a6:8c:ac: a2:4d:c8:8e:7e:9d:5d:47:e7:d6:dc:f5:27:ab:17:cf:aa:04: 6b:9a:86:06:cb:e2:23:1a:b0:15:d4:a8:50:7c:df:aa:6f:a7: 6e:67:c0:29:1b:a8:3a:eb:b2:31:64:da:e5:a5:bb:48:1d:82: ed:aa:6e:d0:2e:56:d9:f3:3b:31:64:59:03:02:dc:12:89:24: fe:bd:2c:5e:33:23:d9:be:1a:e7:4d:c1:3a:5e:6a:fa:c6:14: e6:23:67:c9:6a:32:2b:22:c4:33:86:6d:e2:04:d4:82:2e:35: 05:10:0b:99 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCHowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjE4MzZaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDY4NTI0M0U0MThDOEQ0 RTE0NEJGMkYzNTNCODE3RUExRUE0ODAwNEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3E/+kKBGj2a1FXk9c8OzeoW8W9Oa6qVsNke+iZUMPjYigbH21 CjMyKvRxUGZzkf8Q1KPXiAWqOrXtRbG4iYG7ESr2sGuQKMRJRtS8n16f3RSxPLAc JykPu98c9scYFBDC/iM0LIrgxRw3xT0QtIXZUNCbFNNybKL1LZuPgMzD4r5R75i3 UrynrBrsE2HVitbGDCQv2EWgmXOkP+ZKqAEEnca8A+e1ouBLQK4dBHuQPXetZ67B iAIcWvelJIjBelU47Z5yaVXibemTzKJMlvdUKAhVLFZQqT/BzYeq0B7NgJTEvpmx 0Y8arciPiBg9RjXkYA39+AehjD4knOrm0uTTAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUaFJD5BjI1OFEvy81O4F+oepIAEwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2FGSkQ1QmpJMU9GRXZ5ODFPNEYtb2VwSUFFdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYlAwDQYJKoZIhvcNAQELBQADggEBAMZaIDCivE32o+vUJbdHwHiKXkma nZFfxS0ibfgPApnBfIHHB0u5tROoTcleqMRSSI9DEtp66xyViPWqSre7IcziM3Dn d9EPM9jcwD2tVAL+NdK1R+H9dzWz6gmJHQLfd/VROL1kE7+rP9fPlF2qjkK91fLv 9AW5U4SpHeybUfrDKUv57OhLG2lfLlToHaaMrKJNyI5+nV1H59bc9SerF8+qBGua hgbL4iMasBXUqFB836pvp25nwCkbqDrrsjFk2uWlu0gdgu2qbtAuVtnzOzFkWQMC 3BKJJP69LF4zI9m+GudNwTpeavrGFOYjZ8lqMisixDOGbeIE1IIuNQUQC5k= -----END CERTIFICATE-----Generated at Sun Feb 16 22:23:02 2025 by rpki-client