$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/db77pvQYG1xpihENheQ3fzlu5ik.roa File: db77pvQYG1xpihENheQ3fzlu5ik.roa (raw, json) Hash identifier: l8BESKCpCc8of24dNR5MY37I+IypPuSq4z2oBPLz7+0= Subject key identifier: 75:BE:FB:A6:F4:18:1B:5C:69:8A:11:0D:85:E4:37:7F:39:6E:E6:29 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B1A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/db77pvQYG1xpihENheQ3fzlu5ik.roa Signing time: Fri 31 Jan 2025 01:37:55 +0000 ROA not before: Fri 31 Jan 2025 01:37:55 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.97.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2842 (0xb1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:37:55 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=75BEFBA6F4181B5C698A110D85E4377F396EE629 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f6:ac:06:18:4d:35:5e:ef:7d:4d:ba:ff:32: 1c:14:b4:48:8a:8c:a2:29:fc:02:f7:32:64:13:8d: 3a:04:2b:8e:c1:ee:df:a1:60:5a:ae:c9:87:7b:4b: 75:35:02:c6:ef:9a:26:cb:64:b9:d9:f4:cb:5e:c7: c8:16:86:7f:33:2c:df:06:59:2d:33:d6:c4:95:9e: 87:e9:41:ad:27:64:67:5d:d4:f2:a2:63:c4:4a:20: 9b:1d:5c:25:e1:65:b3:0a:07:a4:06:03:b5:f3:90: 70:37:cf:b0:de:f2:5e:0c:a8:af:f4:5b:74:1c:5f: 05:e4:2c:e9:e3:ed:74:aa:90:16:b1:78:c5:12:f5: 45:7b:0a:f2:c3:9a:d0:d7:c1:6c:77:6c:67:98:45: 11:0b:17:25:6e:d4:6f:33:b1:e0:e0:58:91:e0:78: 46:83:dd:74:45:85:6f:a2:08:85:09:54:aa:db:c1: 04:45:ec:ec:40:06:bf:2f:e1:90:fc:f8:d9:90:97: 56:4d:65:f8:26:04:76:11:be:5c:f4:6a:11:a7:e0: ff:c1:b8:cd:0f:07:de:05:c3:c0:0f:c2:e2:2e:09: 5d:a6:22:85:05:80:70:97:1d:37:de:f3:7c:08:09: d5:14:a4:9c:0f:cf:c9:19:6a:d7:ca:fb:27:a7:d7: de:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:BE:FB:A6:F4:18:1B:5C:69:8A:11:0D:85:E4:37:7F:39:6E:E6:29 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/db77pvQYG1xpihENheQ3fzlu5ik.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.97.105.0/24 Signature Algorithm: sha256WithRSAEncryption c3:20:ec:ec:54:8f:4f:87:94:e0:b9:cf:b5:aa:6c:0e:92:0e: 25:28:88:f3:50:96:9e:1a:10:91:17:5c:bb:04:70:3c:8b:a7: d2:2c:0d:8d:56:f4:e2:c0:1e:87:2d:6c:fa:54:b3:64:b2:4f: c3:66:b4:b9:8e:fc:c8:ec:0e:ee:cb:fe:b4:c8:aa:e1:8c:ff: d9:34:56:d6:e3:f9:bb:5d:0d:57:d5:bf:8d:de:8a:51:2e:06: 9d:91:d3:ff:8e:42:3b:bb:aa:1c:31:fd:40:64:12:d9:6c:3c: e4:f3:b9:3f:63:77:40:bf:78:dd:64:c9:a8:8d:2a:54:98:aa: 99:78:08:ca:5f:25:1c:70:64:86:4a:a1:69:2f:ee:8b:6a:b5: 0a:43:e5:c9:1e:fa:bd:0c:94:da:ae:18:6b:3a:0b:84:e9:98: 92:94:c8:ac:8e:15:05:8b:c9:fd:fe:5a:d8:18:36:12:61:57: c4:a5:4a:eb:20:a5:1c:71:ff:06:a9:91:18:3e:de:11:af:a2: f1:60:f7:e1:1b:5c:e8:e3:98:f6:5a:d4:f1:06:87:9a:1b:eb: 43:a8:71:18:df:5a:24:97:45:61:b2:50:08:b5:66:d8:a8:50: bf:9f:a2:53:4c:49:70:8d:a2:d8:ee:6f:ed:f5:20:82:9d:47: 02:21:11:4f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCxowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTM3NTVaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDc1QkVGQkE2RjQxODFC NUM2OThBMTEwRDg1RTQzNzdGMzk2RUU2MjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDB9qwGGE01Xu99Tbr/MhwUtEiKjKIp/AL3MmQTjToEK47B7t+h YFquyYd7S3U1AsbvmibLZLnZ9Mtex8gWhn8zLN8GWS0z1sSVnofpQa0nZGdd1PKi Y8RKIJsdXCXhZbMKB6QGA7XzkHA3z7De8l4MqK/0W3QcXwXkLOnj7XSqkBaxeMUS 9UV7CvLDmtDXwWx3bGeYRRELFyVu1G8zseDgWJHgeEaD3XRFhW+iCIUJVKrbwQRF 7OxABr8v4ZD8+NmQl1ZNZfgmBHYRvlz0ahGn4P/BuM0PB94Fw8APwuIuCV2mIoUF gHCXHTfe83wICdUUpJwPz8kZatfK+yen195vAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUdb77pvQYG1xpihENheQ3fzlu5ikwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2RiNzdwdlFZRzF4cGloRU5oZVEzZnpsdTVpay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxYWkwDQYJKoZIhvcNAQELBQADggEBAMMg7OxUj0+HlOC5z7WqbA6SDiUo iPNQlp4aEJEXXLsEcDyLp9IsDY1W9OLAHoctbPpUs2SyT8NmtLmO/MjsDu7L/rTI quGM/9k0Vtbj+btdDVfVv43eilEuBp2R0/+OQju7qhwx/UBkEtlsPOTzuT9jd0C/ eN1kyaiNKlSYqpl4CMpfJRxwZIZKoWkv7otqtQpD5cke+r0MlNquGGs6C4TpmJKU yKyOFQWLyf3+WtgYNhJhV8SlSusgpRxx/wapkRg+3hGvovFg9+EbXOjjmPZa1PEG h5ob60OocRjfWiSXRWGyUAi1ZtioUL+folNMSXCNotjub+31IIKdRwIhEU8= -----END CERTIFICATE-----Generated at Wed Feb 19 22:46:07 2025 by rpki-client