$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/bSEiI1-mKFnqaJvBs0lqMMLP6Ow.roa File: bSEiI1-mKFnqaJvBs0lqMMLP6Ow.roa (raw, json) Hash identifier: fvq9RAtaGaHuoPc1scANYxwt8krRFeOx299kVU9hPQQ= Subject key identifier: 6D:21:22:23:5F:A6:28:59:EA:68:9B:C1:B3:49:6A:30:C2:CF:E8:EC Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 06C1 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/bSEiI1-mKFnqaJvBs0lqMMLP6Ow.roa Signing time: Tue 30 Apr 2024 01:46:54 +0000 ROA not before: Tue 30 Apr 2024 01:46:54 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.75.204.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1729 (0x6c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:46:54 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=6D2122235FA62859EA689BC1B3496A30C2CFE8EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:cd:b3:b9:7e:93:ed:4d:11:8f:26:a4:5d:76: 8e:8a:64:b5:5f:9a:9b:fb:7b:69:e1:43:dd:f0:18: 68:3a:97:cf:ec:07:15:5c:2c:1f:4c:34:14:d3:9f: 36:24:e1:70:ce:c3:d6:3e:b9:79:61:76:8f:61:97: 64:fa:5b:13:ed:a2:5b:54:60:38:2e:9d:0d:9b:db: a7:72:7c:ec:61:a0:96:f7:90:7c:3c:b5:fd:8f:03: 23:ff:9f:05:b2:22:c7:ff:85:62:be:c5:32:57:42: 0c:69:df:e5:62:ac:b3:40:4a:0e:40:61:3e:d5:c2: c3:2c:ab:47:71:ad:32:be:3b:1d:f8:fc:46:95:23: 4c:87:96:91:d0:cd:01:f8:be:76:0e:a1:14:e6:94: f3:11:14:da:cf:2d:38:40:aa:43:f4:51:9e:62:48: 87:07:b2:1a:00:21:1f:8b:54:c4:a8:13:b5:97:d0: 2d:4a:42:65:31:7d:2b:b0:1f:d1:b9:f1:0f:99:ac: 6f:18:77:9b:67:b5:bc:0b:06:35:36:90:e3:99:24: 3e:b3:a4:9f:90:5d:b5:a8:13:27:c9:52:88:7f:ed: d3:43:93:56:e4:9a:1e:82:b3:14:b3:87:c9:4f:27: 2a:83:dd:ac:7c:8a:72:ca:0d:a9:89:3c:bd:dd:dc: de:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:21:22:23:5F:A6:28:59:EA:68:9B:C1:B3:49:6A:30:C2:CF:E8:EC X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/bSEiI1-mKFnqaJvBs0lqMMLP6Ow.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.204.0/22 Signature Algorithm: sha256WithRSAEncryption 01:36:ea:ae:b8:43:c2:c5:1a:35:70:71:ef:87:57:a2:9f:bf: bb:83:08:00:d9:03:15:13:fd:95:ee:5b:6e:2f:b8:23:13:c4: 66:eb:4e:12:30:36:2a:e6:9f:6b:0b:0b:3f:ae:9c:a7:d3:a3: 9a:9e:3e:ee:65:51:58:30:d7:cc:a1:88:d4:c1:3a:93:f4:08: 22:d7:49:e3:f7:30:ec:3d:08:60:27:c5:a2:e8:4e:c3:fc:52: f7:a8:7e:24:91:6a:63:33:72:8e:73:84:b8:39:5b:7b:ec:a1: 3b:3b:d8:5b:22:7b:57:48:75:45:d7:b4:75:06:7b:8e:12:fc: ff:72:11:e9:c5:53:28:d0:9e:a3:81:ca:87:54:e2:49:ea:ad: 9c:f7:9b:a0:f1:00:92:32:95:ed:16:06:59:a7:c6:bb:37:7d: 4d:c6:1d:4f:3c:78:d4:16:b4:b9:c4:22:e7:e5:38:93:79:f8: c5:d5:3a:ee:d9:65:7e:e5:bb:93:05:42:9b:f3:85:5e:b3:e6: 46:97:27:95:5e:be:8c:7e:44:36:e8:9b:ae:62:32:85:1a:8a: bc:19:9b:70:43:c5:17:8b:2d:e3:4b:51:95:58:92:42:6d:3a: 85:8a:ec:7e:58:97:34:00:bf:34:7c:13:a9:32:24:6c:76:d3: fd:8b:f6:47 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBsEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTQ2NTRaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDZEMjEyMjIzNUZBNjI4 NTlFQTY4OUJDMUIzNDk2QTMwQzJDRkU4RUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDuzbO5fpPtTRGPJqRddo6KZLVfmpv7e2nhQ93wGGg6l8/sBxVc LB9MNBTTnzYk4XDOw9Y+uXlhdo9hl2T6WxPtoltUYDgunQ2b26dyfOxhoJb3kHw8 tf2PAyP/nwWyIsf/hWK+xTJXQgxp3+VirLNASg5AYT7VwsMsq0dxrTK+Ox34/EaV I0yHlpHQzQH4vnYOoRTmlPMRFNrPLThAqkP0UZ5iSIcHshoAIR+LVMSoE7WX0C1K QmUxfSuwH9G58Q+ZrG8Yd5tntbwLBjU2kOOZJD6zpJ+QXbWoEyfJUoh/7dNDk1bk mh6CsxSzh8lPJyqD3ax8inLKDamJPL3d3N6VAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUbSEiI1+mKFnqaJvBs0lqMMLP6OwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2JTRWlJMS1tS0ZucWFKdkJzMGxxTU1MUDZPdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBS8wwDQYJKoZIhvcNAQELBQADggEBAAE26q64Q8LFGjVwce+HV6Kfv7uD CADZAxUT/ZXuW24vuCMTxGbrThIwNirmn2sLCz+unKfTo5qePu5lUVgw18yhiNTB OpP0CCLXSeP3MOw9CGAnxaLoTsP8UveofiSRamMzco5zhLg5W3vsoTs72Fsie1dI dUXXtHUGe44S/P9yEenFUyjQnqOByodU4knqrZz3m6DxAJIyle0WBlmnxrs3fU3G HU88eNQWtLnEIuflOJN5+MXVOu7ZZX7lu5MFQpvzhV6z5kaXJ5Vevox+RDbom65i MoUairwZm3BDxReLLeNLUZVYkkJtOoWK7H5YlzQAvzR8E6kyJGx20/2L9kc= -----END CERTIFICATE-----Generated at Sun Feb 16 22:15:36 2025 by rpki-client