$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/cNSIalLMSCXXT4ctSiqqXUmMwMo.roa File: cNSIalLMSCXXT4ctSiqqXUmMwMo.roa (raw, json) Hash identifier: 0DHM0PosANrxAga/5Hiyhwm/5K6z0UpWVZyuuDW5md0= Subject key identifier: 70:D4:88:6A:52:CC:48:25:D7:4F:87:2D:4A:2A:AA:5D:49:8C:C0:CA Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B2F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cNSIalLMSCXXT4ctSiqqXUmMwMo.roa Signing time: Fri 31 Jan 2025 01:38:05 +0000 ROA not before: Fri 31 Jan 2025 01:38:05 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.97.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2863 (0xb2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:38:05 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=70D4886A52CC4825D74F872D4A2AAA5D498CC0CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:df:f6:88:f2:32:2e:6f:23:aa:57:61:71:62: 32:9f:87:f3:9a:f8:1a:d5:aa:3d:68:14:22:9a:d5: 97:86:45:52:5e:3a:1b:cf:b8:3d:7d:9c:f7:7b:61: a0:f4:48:e4:ee:16:1b:50:1b:13:af:65:e2:b8:16: 90:a6:83:c0:1a:46:ec:8e:ec:f7:81:27:28:b5:73: 6f:78:ff:c4:fa:0a:da:ce:ba:98:17:fe:26:a5:68: fb:29:f2:94:fa:10:02:ed:99:82:bf:15:87:fc:25: 81:45:7e:57:62:7d:36:5c:5f:64:df:38:98:d5:c4: f0:e8:12:67:00:b6:f2:83:bc:d2:a5:fe:3e:93:b8: a0:1e:d8:74:ea:8e:d2:c5:d6:04:41:04:8f:ef:b5: 78:c2:eb:73:fb:55:cd:55:68:49:05:02:d1:0f:d9: 01:60:27:0c:34:d3:10:ff:4d:73:c9:39:6b:cb:70: 0e:b7:72:df:57:56:44:99:45:b3:6d:b6:ee:66:30: 9c:c5:41:69:08:43:f9:a7:a1:98:65:2d:37:12:13: 0e:23:2a:71:9d:35:67:ee:ed:38:92:79:ab:87:6f: ed:13:2e:da:e8:09:50:5c:0e:cf:5e:64:f7:b7:57: 3f:5b:2c:4d:b1:6b:d8:f5:77:43:0a:e9:ea:fa:9b: f0:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:D4:88:6A:52:CC:48:25:D7:4F:87:2D:4A:2A:AA:5D:49:8C:C0:CA X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cNSIalLMSCXXT4ctSiqqXUmMwMo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.97.108.0/23 Signature Algorithm: sha256WithRSAEncryption 9b:09:07:6b:66:ac:d1:ad:fe:9b:01:98:de:cb:a5:e3:10:09: 41:5f:e5:a7:e8:42:f4:c1:43:63:1c:a7:75:55:a1:de:01:ea: c8:53:6e:ed:53:d1:13:68:7c:bb:52:fd:b5:94:af:bd:9d:e0: 08:14:80:9b:f7:26:9e:a0:89:ce:eb:60:65:74:2b:18:80:e1: e6:74:7e:d0:6c:18:97:12:89:b9:8b:fe:a1:5a:d7:04:81:32: ed:87:28:50:4b:9e:de:a8:4e:bb:00:e7:c6:e5:3f:ab:1f:5b: 3d:32:e1:76:9d:6d:64:58:af:29:a2:af:57:45:8c:18:10:33: 59:e3:fd:f2:ff:c2:ad:2b:cf:dd:de:43:b7:21:a5:5b:8d:6d: 34:38:f0:e0:1b:91:7a:47:b7:7f:17:26:76:c3:0e:08:51:2a: 20:48:3c:00:d4:99:e4:b6:7c:3d:4c:8c:50:62:36:92:71:81: 83:fd:4f:f3:2a:12:46:81:8c:37:24:b0:0b:a7:0d:c7:81:ab: 4b:0a:c9:06:c6:70:2e:6f:e3:99:c9:52:51:36:48:1f:21:a3: 48:e3:cb:58:a2:9b:c6:59:cc:7a:42:6b:32:58:76:b0:5e:10: 5c:b9:02:d8:92:c6:ff:f9:d0:fe:7e:c9:f1:df:20:e5:c5:70: 68:d6:57:63 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCy8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTM4MDVaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDcwRDQ4ODZBNTJDQzQ4 MjVENzRGODcyRDRBMkFBQTVENDk4Q0MwQ0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCx3/aI8jIubyOqV2FxYjKfh/Oa+BrVqj1oFCKa1ZeGRVJeOhvP uD19nPd7YaD0SOTuFhtQGxOvZeK4FpCmg8AaRuyO7PeBJyi1c294/8T6CtrOupgX /ialaPsp8pT6EALtmYK/FYf8JYFFfldifTZcX2TfOJjVxPDoEmcAtvKDvNKl/j6T uKAe2HTqjtLF1gRBBI/vtXjC63P7Vc1VaEkFAtEP2QFgJww00xD/TXPJOWvLcA63 ct9XVkSZRbNttu5mMJzFQWkIQ/mnoZhlLTcSEw4jKnGdNWfu7TiSeauHb+0TLtro CVBcDs9eZPe3Vz9bLE2xa9j1d0MK6er6m/ADAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUcNSIalLMSCXXT4ctSiqqXUmMwMowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2NOU0lhbExNU0NYWFQ0Y3RTaXFxWFVtTXdNby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYWwwDQYJKoZIhvcNAQELBQADggEBAJsJB2tmrNGt/psBmN7LpeMQCUFf 5afoQvTBQ2Mcp3VVod4B6shTbu1T0RNofLtS/bWUr72d4AgUgJv3Jp6gic7rYGV0 KxiA4eZ0ftBsGJcSibmL/qFa1wSBMu2HKFBLnt6oTrsA58blP6sfWz0y4XadbWRY rymir1dFjBgQM1nj/fL/wq0rz93eQ7chpVuNbTQ48OAbkXpHt38XJnbDDghRKiBI PADUmeS2fD1MjFBiNpJxgYP9T/MqEkaBjDcksAunDceBq0sKyQbGcC5v45nJUlE2 SB8ho0jjy1iim8ZZzHpCazJYdrBeEFy5AtiSxv/50P5+yfHfIOXFcGjWV2M= -----END CERTIFICATE-----Generated at Wed Feb 19 22:31:30 2025 by rpki-client