$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/cHz416iXkQux3EAomwLBIQo2soE.roa File: cHz416iXkQux3EAomwLBIQo2soE.roa (raw, json) Hash identifier: r0uzQ5vdsJ0Hgb3P7OrUeIdQmEcDKa8Bn3ykedM4KT8= Subject key identifier: 70:7C:F8:D7:A8:97:91:0B:B1:DC:40:28:9B:02:C1:21:0A:36:B2:81 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 08C0 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cHz416iXkQux3EAomwLBIQo2soE.roa Signing time: Tue 30 Apr 2024 02:24:33 +0000 ROA not before: Tue 30 Apr 2024 02:24:33 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.78.36.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2240 (0x8c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:24:33 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=707CF8D7A897910BB1DC40289B02C1210A36B281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:9a:78:8d:0d:5a:92:b4:7c:e5:b0:f4:23:24: 1a:21:b2:1e:1f:79:68:a1:67:16:3c:2b:b7:00:b4: 90:30:61:01:26:dd:18:8f:4e:db:9d:d7:80:ba:d7: 91:03:37:ca:6f:10:98:de:01:f9:d1:9d:a9:39:d9: 1f:e1:a3:e9:b7:5b:f0:8e:4a:74:41:33:9b:4c:14: 66:c0:f1:a5:be:4d:0b:42:0e:fd:6e:df:b4:05:30: b2:77:29:b2:48:b8:37:8f:33:a0:cf:4a:5e:58:99: 41:8f:61:f4:f0:95:58:d3:d7:55:77:1c:61:db:9c: e0:e7:54:4e:b5:99:c0:82:a6:18:ad:b1:1f:d1:4a: 9e:5b:12:4c:18:c5:a9:e7:e6:52:67:0a:14:4c:6f: 22:d3:c7:2c:9d:0c:2b:22:9d:7a:11:57:7a:2b:27: 1c:75:86:a8:39:13:be:93:80:b2:53:c3:48:28:b0: 7a:8b:8c:f3:1b:4c:2c:95:57:a9:bb:fa:fa:46:70: 30:ca:e1:68:30:0c:d2:39:84:f9:59:e7:6b:90:36: f1:9d:8f:84:89:cf:42:f4:c8:b0:5c:f3:14:d1:67: 67:1c:86:3d:7c:2a:ff:cd:ed:4f:14:82:94:2f:7d: c6:bf:0f:fb:07:5f:67:86:52:2c:29:b4:a9:e2:ba: e4:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:7C:F8:D7:A8:97:91:0B:B1:DC:40:28:9B:02:C1:21:0A:36:B2:81 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cHz416iXkQux3EAomwLBIQo2soE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.78.36.0/22 Signature Algorithm: sha256WithRSAEncryption 40:b8:24:6f:ac:bc:21:7f:e1:3e:07:ed:59:cd:a4:4d:c8:85: 28:08:08:6d:c0:32:4b:ba:ab:bb:0a:c7:2c:6c:b4:5f:8c:e5: 9f:f9:50:dd:e4:6d:3d:f6:d8:e5:bc:2d:5e:46:b9:70:84:1e: 43:97:0e:15:60:b7:f3:05:36:bb:56:bd:2d:86:2e:6f:b7:83: 68:7a:f8:2a:7d:01:8e:1b:0d:16:a9:a8:8a:ea:01:b7:50:55: 61:d8:c2:7a:94:56:b4:0d:61:bd:8c:0c:c6:12:63:7a:bf:3f: 61:52:25:7a:b1:2c:a9:96:44:4d:51:8b:64:30:ef:8e:79:05: 73:03:84:14:28:3d:3c:8e:e3:e2:4c:25:fd:cd:18:c2:d0:b5: 1c:49:3a:a1:ab:9f:be:c7:df:a9:5e:a1:63:87:c9:34:0a:40: e7:ce:6a:ac:15:e8:c3:f7:04:94:b4:51:03:ed:fb:8c:eb:88: ad:8b:8c:20:e7:06:fc:c0:30:dd:53:8f:f9:17:36:ed:35:2a: 5b:81:43:d4:bd:cb:fc:0a:39:c8:67:54:7b:f7:6a:ba:30:64: b3:7e:c2:1f:7e:4f:ad:2f:f7:a5:2d:af:d5:cb:0c:86:22:67: d5:50:04:af:3f:45:d2:9c:0d:49:16:e3:e5:36:3f:a1:36:aa: 09:2c:b7:55 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCMAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjI0MzNaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDcwN0NGOEQ3QTg5Nzkx MEJCMURDNDAyODlCMDJDMTIxMEEzNkIyODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkmniNDVqStHzlsPQjJBohsh4feWihZxY8K7cAtJAwYQEm3RiP Ttud14C615EDN8pvEJjeAfnRnak52R/ho+m3W/COSnRBM5tMFGbA8aW+TQtCDv1u 37QFMLJ3KbJIuDePM6DPSl5YmUGPYfTwlVjT11V3HGHbnODnVE61mcCCphitsR/R Sp5bEkwYxann5lJnChRMbyLTxyydDCsinXoRV3orJxx1hqg5E76TgLJTw0gosHqL jPMbTCyVV6m7+vpGcDDK4WgwDNI5hPlZ52uQNvGdj4SJz0L0yLBc8xTRZ2cchj18 Kv/N7U8UgpQvfca/D/sHX2eGUiwptKniuuRJAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUcHz416iXkQux3EAomwLBIQo2soEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2NIejQxNmlYa1F1eDNFQW9td0xCSVFvMnNvRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBTiQwDQYJKoZIhvcNAQELBQADggEBAEC4JG+svCF/4T4H7VnNpE3IhSgI CG3AMku6q7sKxyxstF+M5Z/5UN3kbT322OW8LV5GuXCEHkOXDhVgt/MFNrtWvS2G Lm+3g2h6+Cp9AY4bDRapqIrqAbdQVWHYwnqUVrQNYb2MDMYSY3q/P2FSJXqxLKmW RE1Ri2Qw7455BXMDhBQoPTyO4+JMJf3NGMLQtRxJOqGrn77H36leoWOHyTQKQOfO aqwV6MP3BJS0UQPt+4zriK2LjCDnBvzAMN1Tj/kXNu01KluBQ9S9y/wKOchnVHv3 arowZLN+wh9+T60v96Utr9XLDIYiZ9VQBK8/RdKcDUkW4+U2P6E2qgkst1U= -----END CERTIFICATE-----Generated at Sun Feb 16 22:04:15 2025 by rpki-client