$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/d3q3_fiSCaiwrSXZDCFZB7KJMIM.roa File: d3q3_fiSCaiwrSXZDCFZB7KJMIM.roa (raw, json) Hash identifier: XeHkHdtEnti/UgyLSjDnQpCJBGM8Xv2D9+VHH7JZjZo= Subject key identifier: 77:7A:B7:FD:F8:92:09:A8:B0:AD:25:D9:0C:21:59:07:B2:89:30:83 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0902 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/d3q3_fiSCaiwrSXZDCFZB7KJMIM.roa Signing time: Tue 30 Apr 2024 02:28:37 +0000 ROA not before: Tue 30 Apr 2024 02:28:37 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.66.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2306 (0x902) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:28:37 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=777AB7FDF89209A8B0AD25D90C215907B2893083 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:50:c0:63:51:1e:de:6b:f4:de:5e:8b:52:f8: 78:e9:7a:af:60:bb:35:e5:0c:94:7a:0f:72:93:85: 16:bc:7d:b3:60:31:8f:83:d7:77:78:8b:46:e5:a8: cf:73:a6:2a:5f:89:c4:b0:c4:b3:67:4a:10:55:ec: d9:90:82:23:c9:f3:bc:92:11:97:01:92:0a:f5:44: 67:f3:d2:e8:db:f5:36:72:e6:ec:1d:f8:bc:5b:1a: 81:7d:ae:ac:7c:7e:ed:da:ce:67:2b:b3:97:af:e2: f2:c2:97:41:82:07:dd:a3:2a:9f:87:90:01:89:7b: 1f:9d:55:0d:29:a2:8f:84:c2:fe:ea:cb:5f:a5:1b: 60:c2:e4:f4:5a:1b:8f:87:e0:93:e0:53:8e:36:64: b8:c8:3a:04:7e:3b:25:bc:f0:ed:7f:d6:4f:c6:67: f4:6d:bc:ec:b4:23:d9:54:01:d0:7d:2d:ce:ff:fa: 32:ef:11:dd:52:38:10:17:2a:e0:f2:9a:95:90:1c: 2a:e7:02:a1:3b:6e:9b:89:21:46:47:03:00:07:8d: ed:8a:78:b7:2d:77:3f:1b:52:63:ab:64:77:9a:07: 44:05:b5:53:a9:62:35:66:0b:09:29:d1:5d:d9:6e: e6:24:ee:c8:3f:1a:67:fa:0c:11:89:b1:4a:83:53: fc:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:7A:B7:FD:F8:92:09:A8:B0:AD:25:D9:0C:21:59:07:B2:89:30:83 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/d3q3_fiSCaiwrSXZDCFZB7KJMIM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.66.0/23 Signature Algorithm: sha256WithRSAEncryption a5:a6:7d:4c:20:20:0d:f7:ca:cb:54:14:b2:22:b9:78:a6:68: 65:28:06:fe:6c:a0:58:c5:6c:85:ce:da:87:0f:b4:1c:b6:73: 44:67:9f:e8:78:c2:2e:75:a5:05:2a:19:3e:bd:95:ab:7b:fb: 33:77:4b:02:81:fb:31:90:1e:21:3c:e2:64:ef:54:42:9d:e7: 50:44:27:96:b4:fd:26:af:62:f1:e2:fb:68:28:15:e1:78:8e: b2:fa:f0:f3:9b:4d:7d:d6:7e:6c:b0:02:59:64:76:d7:03:96: a8:95:c9:da:a1:2e:b4:89:3a:84:54:2c:5f:b0:a8:fe:a5:2e: 4d:ed:34:e0:8d:e9:75:55:09:9b:9c:ff:ad:1d:cb:6d:1b:09: dc:8d:10:83:8c:8c:5b:93:4e:14:62:64:2b:1b:7a:71:8a:02: 24:5c:d9:08:24:c4:c0:33:0d:1f:8a:c5:9a:7f:59:ad:18:ce: 70:47:21:49:b1:04:af:db:da:68:07:3f:4b:c2:db:11:70:b6: 18:9f:18:4f:bc:25:c5:65:ee:a0:b7:de:0f:60:ce:8b:11:7e: 7f:be:99:60:99:f8:47:ba:a0:84:15:81:60:9d:f6:d2:6e:2c: 87:d7:ca:68:6b:63:22:79:08:9b:0d:ad:ce:2d:e0:90:3e:56: e8:02:f9:e8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCQIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjI4MzdaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDc3N0FCN0ZERjg5MjA5 QThCMEFEMjVEOTBDMjE1OTA3QjI4OTMwODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnUMBjUR7ea/TeXotS+Hjpeq9guzXlDJR6D3KThRa8fbNgMY+D 13d4i0blqM9zpipficSwxLNnShBV7NmQgiPJ87ySEZcBkgr1RGfz0ujb9TZy5uwd +LxbGoF9rqx8fu3azmcrs5ev4vLCl0GCB92jKp+HkAGJex+dVQ0poo+Ewv7qy1+l G2DC5PRaG4+H4JPgU442ZLjIOgR+OyW88O1/1k/GZ/RtvOy0I9lUAdB9Lc7/+jLv Ed1SOBAXKuDympWQHCrnAqE7bpuJIUZHAwAHje2KeLctdz8bUmOrZHeaB0QFtVOp YjVmCwkp0V3ZbuYk7sg/Gmf6DBGJsUqDU/x3AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUd3q3/fiSCaiwrSXZDCFZB7KJMIMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2QzcTNfZmlTQ2Fpd3JTWFpEQ0ZaQjdLSk1JTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYkIwDQYJKoZIhvcNAQELBQADggEBAKWmfUwgIA33ystUFLIiuXimaGUo Bv5soFjFbIXO2ocPtBy2c0Rnn+h4wi51pQUqGT69lat7+zN3SwKB+zGQHiE84mTv VEKd51BEJ5a0/SavYvHi+2goFeF4jrL68PObTX3WfmywAllkdtcDlqiVydqhLrSJ OoRULF+wqP6lLk3tNOCN6XVVCZuc/60dy20bCdyNEIOMjFuTThRiZCsbenGKAiRc 2QgkxMAzDR+KxZp/Wa0YznBHIUmxBK/b2mgHP0vC2xFwthifGE+8JcVl7qC33g9g zosRfn++mWCZ+Ee6oIQVgWCd9tJuLIfXymhrYyJ5CJsNrc4t4JA+VugC+eg= -----END CERTIFICATE-----Generated at Sun Feb 16 22:03:49 2025 by rpki-client