$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/as03_ZlYVau1AWdjAjaSpAxfln0.roa File: as03_ZlYVau1AWdjAjaSpAxfln0.roa (raw, json) Hash identifier: tjqgZ/L5oxDPo83bhlXuBBs3+GagJIysyp1DMhaRQFo= Subject key identifier: 6A:CD:37:FD:99:58:55:AB:B5:01:67:63:02:36:92:A4:0C:5F:96:7D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B25 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/as03_ZlYVau1AWdjAjaSpAxfln0.roa Signing time: Fri 31 Jan 2025 01:38:00 +0000 ROA not before: Fri 31 Jan 2025 01:38:00 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.73.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2853 (0xb25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:38:00 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=6ACD37FD995855ABB5016763023692A40C5F967D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:55:55:be:21:83:31:b7:bf:a9:0c:37:93:3c: 70:97:23:d7:6c:fc:a0:93:d4:b2:60:99:9c:51:16: 43:99:30:11:de:37:a5:f7:85:1f:6a:b2:3f:44:28: db:b6:ae:11:dc:1f:74:d9:95:45:ee:2b:b7:ee:f4: 94:05:77:ac:69:39:77:7b:0f:2e:80:1c:cf:7a:18: 68:77:65:b4:43:4e:2d:1f:15:4c:12:e1:4b:54:d7: 21:0e:c4:f1:b1:50:42:4c:42:ef:76:43:1f:3b:ef: 8f:61:e8:7f:f5:b4:1a:c5:d8:27:12:9c:1f:d1:d4: c0:cb:56:c6:83:5c:45:b7:99:69:a1:61:00:cb:1a: 59:68:d8:a1:f1:66:93:a3:b2:27:e1:86:e4:bf:96: 2c:43:7e:26:18:e3:33:1b:36:c0:b2:9e:8a:91:96: 81:88:8d:c4:80:f9:52:95:56:5a:d8:f1:72:b7:1b: eb:aa:44:39:ab:6b:d4:f3:3c:c4:27:46:e4:e0:57: 80:ef:4b:60:40:58:ce:58:fd:04:d7:34:c5:a3:0f: c1:32:ff:bb:43:53:df:eb:e2:b5:e4:af:a0:26:83: 73:d3:1c:bd:5a:2c:6e:72:31:69:e0:30:0b:96:97: fe:29:16:95:73:b0:3e:b1:5d:70:2b:83:72:5b:60: 3c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:CD:37:FD:99:58:55:AB:B5:01:67:63:02:36:92:A4:0C:5F:96:7D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/as03_ZlYVau1AWdjAjaSpAxfln0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.73.226.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:77:18:83:bb:13:ee:81:7d:c8:10:4b:58:83:67:6c:ab:a1: 4c:05:7d:e0:58:2e:f0:fb:2f:43:27:58:39:bb:9e:60:e1:71: ef:72:05:97:fa:c3:24:a6:1b:86:07:11:5f:d1:b5:e6:8b:a2: 4b:50:73:65:a8:b4:7e:94:6e:3d:2c:58:86:a7:3b:33:1d:60: 8b:a7:fb:da:f7:e0:fa:b4:53:bc:88:f0:b9:98:5c:a9:dc:98: b2:90:20:c8:cc:70:da:6a:e5:d5:94:b7:8e:db:2f:9c:46:a2: 8e:a4:1f:42:1b:49:88:5f:60:5a:2a:9f:5e:74:e7:e1:03:34: 32:fc:fd:64:0c:fd:dc:04:fd:7b:61:5e:e0:5e:9b:4b:67:c0: 3a:18:32:1d:23:e8:c7:34:93:3a:19:90:e5:03:a5:a8:cd:34: f8:e7:5b:1d:20:76:fa:c6:20:d6:32:ff:eb:4b:d4:d4:3a:bd: 2b:98:3e:5a:1d:91:d1:b6:c2:1d:4c:53:4b:be:32:8c:ef:b7: bc:3b:c9:4c:8c:18:8b:6b:50:ed:88:eb:ff:cc:aa:fb:ea:bc: 49:f8:9b:e1:8f:d8:90:4b:00:9d:21:15:ce:af:ba:6f:cc:1c: 59:79:ba:60:ca:c9:90:b9:0e:eb:2c:b6:3d:ee:d2:52:ff:4e: 9c:1c:1e:40 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCyUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTM4MDBaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDZBQ0QzN0ZEOTk1ODU1 QUJCNTAxNjc2MzAyMzY5MkE0MEM1Rjk2N0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0VVW+IYMxt7+pDDeTPHCXI9ds/KCT1LJgmZxRFkOZMBHeN6X3 hR9qsj9EKNu2rhHcH3TZlUXuK7fu9JQFd6xpOXd7Dy6AHM96GGh3ZbRDTi0fFUwS 4UtU1yEOxPGxUEJMQu92Qx87749h6H/1tBrF2CcSnB/R1MDLVsaDXEW3mWmhYQDL Gllo2KHxZpOjsifhhuS/lixDfiYY4zMbNsCynoqRloGIjcSA+VKVVlrY8XK3G+uq RDmra9TzPMQnRuTgV4DvS2BAWM5Y/QTXNMWjD8Ey/7tDU9/r4rXkr6Amg3PTHL1a LG5yMWngMAuWl/4pFpVzsD6xXXArg3JbYDxJAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUas03/ZlYVau1AWdjAjaSpAxfln0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2FzMDNfWmxZVmF1MUFXZGpBamFTcEF4ZmxuMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABSeIwDQYJKoZIhvcNAQELBQADggEBAFp3GIO7E+6BfcgQS1iDZ2yroUwF feBYLvD7L0MnWDm7nmDhce9yBZf6wySmG4YHEV/RteaLoktQc2WotH6Ubj0sWIan OzMdYIun+9r34Pq0U7yI8LmYXKncmLKQIMjMcNpq5dWUt47bL5xGoo6kH0IbSYhf YFoqn1505+EDNDL8/WQM/dwE/XthXuBem0tnwDoYMh0j6Mc0kzoZkOUDpajNNPjn Wx0gdvrGINYy/+tL1NQ6vSuYPlodkdG2wh1MU0u+Mozvt7w7yUyMGItrUO2I6//M qvvqvEn4m+GP2JBLAJ0hFc6vum/MHFl5umDKyZC5Dusstj3u0lL/TpwcHkA= -----END CERTIFICATE-----Generated at Wed Feb 19 22:33:10 2025 by rpki-client