$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/bWChKYyoRqXKHgchd4TQG3p5nek.roa File: bWChKYyoRqXKHgchd4TQG3p5nek.roa (raw, json) Hash identifier: iMHjasBbxscq7/erHtTig8To4dHCBLlA38tE3gWKEL0= Subject key identifier: 6D:60:A1:29:8C:A8:46:A5:CA:1E:07:21:77:84:D0:1B:7A:79:9D:E9 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 07E6 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/bWChKYyoRqXKHgchd4TQG3p5nek.roa Signing time: Tue 30 Apr 2024 02:10:32 +0000 ROA not before: Tue 30 Apr 2024 02:10:32 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.176.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2022 (0x7e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:10:32 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=6D60A1298CA846A5CA1E07217784D01B7A799DE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:8b:63:bf:91:dd:7a:d9:8a:e8:09:55:e6:e2: 6f:7b:3d:5b:60:4a:8a:0d:f7:05:21:59:f3:25:45: d9:06:77:3e:b2:32:f6:9f:b7:52:ea:da:a1:e4:75: 01:af:da:f1:51:ec:2e:ed:15:3f:76:b7:ca:f7:9a: eb:f8:08:a7:78:33:2f:9b:17:33:15:60:d1:22:26: 5b:98:cc:f0:89:e2:4a:69:79:9c:9e:06:db:8b:c0: f5:bd:c3:76:6c:75:5e:65:29:30:a2:43:e4:09:e3: 00:05:9f:6d:fe:ba:84:3b:ae:d5:56:c4:88:e0:c5: 93:c7:67:5a:d8:2e:a3:78:06:45:77:db:e4:ec:34: 4c:0b:a0:62:06:78:fd:38:53:02:79:f4:e5:76:d2: 9e:05:9b:39:59:2e:d5:19:94:cc:3b:9d:50:bc:1d: e7:1d:38:91:14:6a:1f:47:40:97:a6:66:f1:d6:6d: 49:42:2b:28:d9:37:93:82:70:50:7f:91:a4:ac:3b: 22:de:1a:62:76:73:19:28:ba:ba:36:d8:d2:fb:24: e9:cf:00:92:6d:68:6e:0e:41:c1:c8:ec:0d:d1:4c: f8:76:6c:38:fa:e5:b5:f9:f5:95:37:3a:40:8e:45: 5b:7d:de:11:a0:98:91:38:76:f9:83:db:ed:ff:cb: fc:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:60:A1:29:8C:A8:46:A5:CA:1E:07:21:77:84:D0:1B:7A:79:9D:E9 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/bWChKYyoRqXKHgchd4TQG3p5nek.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.176.0/23 Signature Algorithm: sha256WithRSAEncryption 28:cb:03:1e:17:35:69:41:8c:5d:4c:41:21:7f:6a:c2:70:58: cd:54:09:7f:22:22:d2:32:d7:d6:e8:ef:73:39:38:96:eb:77: f5:9a:85:74:14:c5:bc:1a:16:90:7f:17:78:a7:56:10:8d:32: 0c:a1:da:1e:59:47:e0:96:fb:c5:6e:ab:8d:04:a9:99:85:ed: a2:6c:b1:30:81:0f:c0:8e:4b:9b:ff:98:05:c8:a8:29:5f:b1: b5:57:1d:07:54:a4:d2:9f:33:d7:db:5c:d3:7b:8e:f7:63:26: 9b:e5:ca:1d:11:40:f2:0e:ff:e1:06:81:a0:a9:e2:d8:77:f5: 1b:7c:1a:84:7a:9f:05:b0:58:ed:99:5c:b0:85:64:f0:70:87: 3d:e7:0e:c4:2f:e1:4f:33:2d:76:bc:f0:ec:60:9c:a3:bc:83: 64:b3:d5:40:24:e2:9f:59:55:4e:db:b7:a9:b2:39:74:92:8a: 32:b7:1f:15:19:6a:71:2d:04:5f:c5:a0:2a:dc:a5:0f:3a:c2: 4e:63:b7:1c:cc:31:e3:17:71:f6:a0:3d:eb:19:fb:77:82:74: 66:0e:54:ec:10:15:14:50:ab:4b:58:36:32:7d:47:c1:52:c3: 33:3f:03:6d:77:6a:ce:9f:aa:2c:5e:82:aa:64:42:2f:b9:a4: 4f:f5:e1:ba -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB+YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjEwMzJaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDZENjBBMTI5OENBODQ2 QTVDQTFFMDcyMTc3ODREMDFCN0E3OTlERTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXi2O/kd162YroCVXm4m97PVtgSooN9wUhWfMlRdkGdz6yMvaf t1Lq2qHkdQGv2vFR7C7tFT92t8r3muv4CKd4My+bFzMVYNEiJluYzPCJ4kppeZye BtuLwPW9w3ZsdV5lKTCiQ+QJ4wAFn23+uoQ7rtVWxIjgxZPHZ1rYLqN4BkV32+Ts NEwLoGIGeP04UwJ59OV20p4FmzlZLtUZlMw7nVC8HecdOJEUah9HQJemZvHWbUlC KyjZN5OCcFB/kaSsOyLeGmJ2cxkouro22NL7JOnPAJJtaG4OQcHI7A3RTPh2bDj6 5bX59ZU3OkCORVt93hGgmJE4dvmD2+3/y/y1AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUbWChKYyoRqXKHgchd4TQG3p5nekwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2JXQ2hLWXlvUnFYS0hnY2hkNFRRRzNwNW5lay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBT7AwDQYJKoZIhvcNAQELBQADggEBACjLAx4XNWlBjF1MQSF/asJwWM1U CX8iItIy19bo73M5OJbrd/WahXQUxbwaFpB/F3inVhCNMgyh2h5ZR+CW+8Vuq40E qZmF7aJssTCBD8COS5v/mAXIqClfsbVXHQdUpNKfM9fbXNN7jvdjJpvlyh0RQPIO /+EGgaCp4th39Rt8GoR6nwWwWO2ZXLCFZPBwhz3nDsQv4U8zLXa88OxgnKO8g2Sz 1UAk4p9ZVU7bt6myOXSSijK3HxUZanEtBF/FoCrcpQ86wk5jtxzMMeMXcfagPesZ +3eCdGYOVOwQFRRQq0tYNjJ9R8FSwzM/A213as6fqixegqpkQi+5pE/14bo= -----END CERTIFICATE-----Generated at Sun Feb 16 22:34:37 2025 by rpki-client