$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/dc82GTYPkzd-YZGSEx841AVn_m8.roa File: dc82GTYPkzd-YZGSEx841AVn_m8.roa (raw, json) Hash identifier: bPTj64AUkcWaZzjoh63fbPEKfUYhxmmNQUnlw191AT8= Subject key identifier: 75:CF:36:19:36:0F:93:37:7E:61:91:92:13:1F:38:D4:05:67:FE:6F Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0671 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/dc82GTYPkzd-YZGSEx841AVn_m8.roa Signing time: Tue 30 Apr 2024 01:34:59 +0000 ROA not before: Tue 30 Apr 2024 01:34:59 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1649 (0x671) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:34:59 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=75CF3619360F93377E619192131F38D40567FE6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c7:3d:91:79:64:86:45:3d:27:69:55:94:9a: 22:4f:81:38:33:39:b4:75:70:85:77:0e:64:22:58: 51:6c:67:2c:5b:28:4c:79:f3:f0:92:56:a2:6b:72: 34:12:0a:ba:0d:90:74:30:25:84:98:33:f2:11:8d: f7:60:f7:7e:a6:0e:de:c2:91:ed:43:38:19:bf:05: 80:b5:cc:2a:db:7f:42:44:ec:83:1c:33:91:fd:80: ab:40:8f:a9:12:a9:5a:5c:60:31:3f:99:1b:3e:f0: 93:34:91:e7:71:9a:3a:4f:93:d0:62:9e:04:8b:06: 83:5d:c8:28:28:f9:bc:99:47:6a:7c:b3:43:35:b0: ba:03:37:5e:1f:b2:41:c8:1d:3a:a8:03:85:75:2e: 4e:91:5c:da:7b:3b:f2:d6:a7:89:e3:e0:7e:da:ae: c9:a5:2d:1c:f9:de:61:9a:80:78:4c:94:cb:d7:9f: 24:95:10:4a:1a:c9:2e:c9:fc:6e:3c:1a:6d:17:da: 97:63:c9:34:06:79:c2:13:2d:79:6a:03:0d:aa:2c: 2f:89:4a:df:78:4a:64:33:f1:20:66:0e:b7:78:0c: a9:fb:8b:c5:92:74:17:fa:fc:75:b8:e9:2d:ad:6e: 4f:f7:39:0e:30:4d:a3:7a:1f:3a:57:c1:6b:45:98: 61:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:CF:36:19:36:0F:93:37:7E:61:91:92:13:1F:38:D4:05:67:FE:6F X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/dc82GTYPkzd-YZGSEx841AVn_m8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.128.0/22 Signature Algorithm: sha256WithRSAEncryption 31:36:93:df:f2:c0:c5:1a:db:d6:51:f8:18:14:f2:8d:eb:b4: ad:19:66:1a:f5:61:1a:2e:e2:c5:aa:7b:f8:c7:99:f0:50:cb: a9:4e:76:81:29:1f:c0:28:35:0b:51:5a:aa:74:6c:65:79:15: ad:f5:68:ec:f9:99:d7:32:38:93:b3:fa:27:35:8f:49:17:13: e2:c1:25:6b:09:6b:8d:b7:ab:6c:c2:f4:21:dd:a3:48:2b:40: 18:f5:27:a2:3f:c7:36:02:f9:7e:72:43:70:ec:08:62:05:06: 18:70:ad:b5:3c:f6:b6:30:55:fa:36:79:96:71:cf:65:cb:10: dd:76:8f:53:92:36:6b:02:cd:29:84:6d:6d:91:1b:06:89:68: 7c:76:92:f9:46:9b:bb:09:bc:17:2f:cf:4b:11:2e:27:3d:9e: 6c:c0:50:9c:90:80:a5:bd:7c:01:18:af:70:b7:89:4e:9d:bb: d2:1b:da:5f:a9:d1:a1:41:8e:22:9a:1e:b5:78:6b:eb:77:ef: 4b:5f:fc:bd:b0:74:ad:e3:4c:7c:cd:1c:74:0d:c3:f9:0e:54: af:2d:14:eb:8b:fd:3e:af:8a:46:03:8a:7f:19:de:43:7a:5e: 4d:a0:ed:4b:c6:9c:06:aa:13:15:c1:18:b0:91:24:a5:f2:02: f7:f7:12:11 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBnEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTM0NTlaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDc1Q0YzNjE5MzYwRjkz Mzc3RTYxOTE5MjEzMUYzOEQ0MDU2N0ZFNkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7xz2ReWSGRT0naVWUmiJPgTgzObR1cIV3DmQiWFFsZyxbKEx5 8/CSVqJrcjQSCroNkHQwJYSYM/IRjfdg936mDt7Cke1DOBm/BYC1zCrbf0JE7IMc M5H9gKtAj6kSqVpcYDE/mRs+8JM0kedxmjpPk9BingSLBoNdyCgo+byZR2p8s0M1 sLoDN14fskHIHTqoA4V1Lk6RXNp7O/LWp4nj4H7arsmlLRz53mGagHhMlMvXnySV EEoayS7J/G48Gm0X2pdjyTQGecITLXlqAw2qLC+JSt94SmQz8SBmDrd4DKn7i8WS dBf6/HW46S2tbk/3OQ4wTaN6HzpXwWtFmGHbAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUdc82GTYPkzd+YZGSEx841AVn/m8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2RjODJHVFlQa3pkLVlaR1NFeDg0MUFWbl9tOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYoAwDQYJKoZIhvcNAQELBQADggEBADE2k9/ywMUa29ZR+BgU8o3rtK0Z Zhr1YRou4sWqe/jHmfBQy6lOdoEpH8AoNQtRWqp0bGV5Fa31aOz5mdcyOJOz+ic1 j0kXE+LBJWsJa423q2zC9CHdo0grQBj1J6I/xzYC+X5yQ3DsCGIFBhhwrbU89rYw Vfo2eZZxz2XLEN12j1OSNmsCzSmEbW2RGwaJaHx2kvlGm7sJvBcvz0sRLic9nmzA UJyQgKW9fAEYr3C3iU6du9Ib2l+p0aFBjiKaHrV4a+t370tf/L2wdK3jTHzNHHQN w/kOVK8tFOuL/T6vikYDin8Z3kN6Xk2g7UvGnAaqExXBGLCRJKXyAvf3EhE= -----END CERTIFICATE-----Generated at Sun Feb 16 22:13:10 2025 by rpki-client