$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/d9cPRgikK9fDsftJKDL87hbS5qs.roa File: d9cPRgikK9fDsftJKDL87hbS5qs.roa (raw, json) Hash identifier: U/vcOdwdOZkq2MfOXu22LIBvul6DX8TPP4t5SYkJoXQ= Subject key identifier: 77:D7:0F:46:08:A4:2B:D7:C3:B1:FB:49:28:32:FC:EE:16:D2:E6:AB Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 09DB Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/d9cPRgikK9fDsftJKDL87hbS5qs.roa Signing time: Sun 30 Jun 2024 01:40:34 +0000 ROA not before: Sun 30 Jun 2024 01:40:34 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 211.14.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2523 (0x9db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:40:34 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=77D70F4608A42BD7C3B1FB492832FCEE16D2E6AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:87:b6:0c:52:e6:44:87:72:54:e8:2b:3a:c8: be:16:68:e5:a8:97:38:fd:ac:19:34:8f:72:4c:2b: c3:e5:34:15:f0:79:55:c7:3b:a3:a8:d6:87:9e:c9: f0:b0:ed:5a:e5:ef:5f:a7:aa:5d:cc:77:9c:b6:95: ab:b0:7a:48:b5:72:af:3e:0b:cb:f4:f1:f6:be:33: 14:b2:58:5b:49:a9:ee:3c:5e:29:0a:cc:49:04:88: bf:1c:70:3e:51:b8:06:e1:90:59:e6:93:ea:76:a4: 23:d4:56:eb:2a:29:95:2c:d1:a9:32:bf:41:81:2b: 68:27:a1:6b:f8:c1:bf:5a:f2:5a:0b:89:a6:d2:98: 03:d9:fa:3e:a9:a3:1f:9e:f7:cc:51:56:0b:ed:eb: 17:bb:5f:3e:3e:41:ab:7f:b7:13:66:33:c7:82:7e: a2:96:34:f5:99:3c:d3:05:20:85:bc:34:90:39:06: 90:35:7f:9e:20:88:89:29:dc:22:c3:e1:f9:0b:ef: ed:50:f2:15:a7:32:a8:25:a7:dd:c0:57:d5:33:81: 8a:b3:0b:d6:1f:00:88:a6:f9:f4:c8:fe:b4:7d:08: 54:22:60:ef:54:9f:41:ac:99:92:4c:05:c7:75:12: a9:00:6e:31:5e:a4:2e:15:ff:92:1a:56:9f:15:c8: ab:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:D7:0F:46:08:A4:2B:D7:C3:B1:FB:49:28:32:FC:EE:16:D2:E6:AB X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/d9cPRgikK9fDsftJKDL87hbS5qs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.117.0/24 Signature Algorithm: sha256WithRSAEncryption 33:b5:7b:ea:78:7e:18:93:a5:d2:4f:2d:5f:23:55:54:58:aa: 4a:90:03:ff:09:fe:bc:fa:a4:5c:47:90:b6:86:a2:47:2c:27: f4:3b:69:25:ae:5b:ab:6a:a4:d6:c9:98:90:99:01:83:2f:64: 61:8b:17:1a:c2:33:25:28:ec:8b:61:5b:b5:85:c1:5b:02:bb: a1:af:c6:af:57:07:7f:88:99:5c:86:34:3a:fb:e7:37:3a:bf: 3e:16:2e:a2:68:6c:7b:0f:19:94:e1:04:83:47:00:48:41:41: 33:5e:64:b9:c7:ad:02:c8:4f:b5:62:85:67:82:91:c8:a8:33: 00:83:0f:d8:0a:66:df:9e:48:60:e7:0a:31:39:98:ba:e6:4c: 34:c3:2d:27:0a:7a:89:83:fc:47:d5:c1:5c:b8:a9:c0:dd:8c: 92:50:b4:4f:7e:4f:71:75:ca:71:92:63:81:34:b1:30:4b:de: 9c:f0:dc:a8:92:db:8e:3c:d6:3a:bd:eb:e0:fd:5a:06:60:cf: 41:28:7d:88:e8:f9:a9:18:99:f3:c1:7e:f1:31:b3:b7:af:cb: ee:8c:c3:ba:7c:53:31:f3:da:92:ec:08:67:0b:48:fa:a8:de: 53:80:36:b6:d6:b7:3f:b1:91:77:5e:ba:fe:90:fa:b6:5b:34: b2:4e:81:9e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCdswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQwMzRaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDc3RDcwRjQ2MDhBNDJC RDdDM0IxRkI0OTI4MzJGQ0VFMTZEMkU2QUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLh7YMUuZEh3JU6Cs6yL4WaOWolzj9rBk0j3JMK8PlNBXweVXH O6Oo1oeeyfCw7Vrl71+nql3Md5y2lauweki1cq8+C8v08fa+MxSyWFtJqe48XikK zEkEiL8ccD5RuAbhkFnmk+p2pCPUVusqKZUs0akyv0GBK2gnoWv4wb9a8loLiabS mAPZ+j6pox+e98xRVgvt6xe7Xz4+Qat/txNmM8eCfqKWNPWZPNMFIIW8NJA5BpA1 f54giIkp3CLD4fkL7+1Q8hWnMqglp93AV9UzgYqzC9YfAIim+fTI/rR9CFQiYO9U n0GsmZJMBcd1EqkAbjFepC4V/5IaVp8VyKv1AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUd9cPRgikK9fDsftJKDL87hbS5qswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2Q5Y1BSZ2lrSzlmRHNmdEpLREw4N2hiUzVxcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADTDnUwDQYJKoZIhvcNAQELBQADggEBADO1e+p4fhiTpdJPLV8jVVRYqkqQ A/8J/rz6pFxHkLaGokcsJ/Q7aSWuW6tqpNbJmJCZAYMvZGGLFxrCMyUo7IthW7WF wVsCu6Gvxq9XB3+ImVyGNDr75zc6vz4WLqJobHsPGZThBINHAEhBQTNeZLnHrQLI T7VihWeCkcioMwCDD9gKZt+eSGDnCjE5mLrmTDTDLScKeomD/EfVwVy4qcDdjJJQ tE9+T3F1ynGSY4E0sTBL3pzw3KiS24481jq96+D9WgZgz0EofYjo+akYmfPBfvEx s7evy+6Mw7p8UzHz2pLsCGcLSPqo3lOANrbWtz+xkXdeuv6Q+rZbNLJOgZ4= -----END CERTIFICATE-----Generated at Sun Feb 16 22:25:12 2025 by rpki-client