$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/fT1VwI0alw0qb5WIfYBgMbafTjw.roa File: fT1VwI0alw0qb5WIfYBgMbafTjw.roa (raw, json) Hash identifier: aauBD1bWY6Bf+hU7Y7/CCFyaFw/Gf0TxQ7dsBrBgDW0= Subject key identifier: 7D:3D:55:C0:8D:1A:97:0D:2A:6F:95:88:7D:80:60:31:B6:9F:4E:3C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0745 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/fT1VwI0alw0qb5WIfYBgMbafTjw.roa Signing time: Tue 30 Apr 2024 01:58:50 +0000 ROA not before: Tue 30 Apr 2024 01:58:50 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.67.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1861 (0x745) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:58:50 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=7D3D55C08D1A970D2A6F95887D806031B69F4E3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:37:75:69:71:12:20:c6:bd:81:2e:84:35:78: 61:23:13:85:76:6f:1c:c5:6d:22:93:6b:7a:e3:74: 87:3f:b9:82:c1:74:bf:9d:ad:6a:e4:cb:e0:32:09: 60:ae:df:a0:5d:ad:15:ee:00:64:d4:8f:6b:7a:0f: b1:7d:d8:5b:6c:6f:84:a1:28:14:5e:c8:4e:5a:be: 55:25:2c:df:97:2c:9d:60:69:34:ab:07:56:bb:4f: e2:b2:ce:29:11:5b:af:7c:f1:7f:83:61:33:f3:67: b5:57:1c:68:97:57:82:d9:24:3e:00:f8:35:ab:f4: ae:30:99:b6:ba:56:41:d8:e5:97:bb:df:42:06:0b: a5:44:03:00:68:1b:2a:16:ae:bf:1c:56:96:a6:e4: d1:a0:4a:85:3d:e3:c4:29:cb:d4:bb:f6:20:8e:d3: 1c:ec:16:3d:eb:04:fb:9b:f5:d6:ef:97:ad:0b:07: 07:91:07:89:cd:23:33:d6:19:ef:03:f9:f8:85:cd: ef:96:24:7d:0d:4c:01:4f:9a:84:30:de:d9:a4:18: b4:0f:67:72:34:6d:a7:22:42:74:31:50:f2:02:11: af:15:86:90:d8:05:0b:4a:f6:e9:17:aa:11:ac:1e: 53:3d:fe:98:94:f3:d7:c2:5b:7a:ea:4c:50:ba:d8: d1:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:3D:55:C0:8D:1A:97:0D:2A:6F:95:88:7D:80:60:31:B6:9F:4E:3C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/fT1VwI0alw0qb5WIfYBgMbafTjw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.67.232.0/22 Signature Algorithm: sha256WithRSAEncryption 6d:f9:7b:e7:99:f0:52:35:60:e9:c7:40:62:78:54:c8:b9:99: 70:ab:d5:1f:16:ff:7f:e8:17:65:c0:36:0a:6d:32:7a:d7:e1: 28:f0:a5:e8:8a:00:93:b7:ec:b6:73:a6:fc:39:a6:15:e4:b6: bb:4c:71:10:c1:2e:dd:e9:8d:1b:34:17:d1:40:1c:6d:e9:1f: 3e:4b:c2:5b:cc:51:8a:7a:a4:93:fb:1c:86:a5:d1:c9:82:ed: c2:09:a0:7b:06:65:e3:dc:fd:af:20:5b:2e:d9:99:01:27:5d: 23:0a:ef:d7:28:fa:fb:79:b9:fb:7f:1d:91:81:3f:f2:92:91: 0b:74:81:f3:22:2a:d7:35:fa:cd:48:aa:ea:e5:8f:74:e9:53: c1:6f:18:c0:06:44:42:70:1f:5f:78:ef:1b:32:dd:93:a8:1f: 36:38:f1:a7:fa:58:00:f1:72:b7:7e:9e:63:f2:d1:2c:a6:42: c1:59:72:64:1c:d0:0a:a2:5d:db:86:61:1c:52:c3:f8:d7:2c: 39:fe:ac:5b:b5:54:99:da:01:ef:54:cb:6c:90:c9:15:45:cb: 54:55:5c:d7:24:71:e6:24:6e:89:7b:24:75:67:80:96:ca:98: d3:77:75:0a:56:a3:d9:7d:ff:10:b9:08:6f:13:3c:13:fd:dd: ac:ed:3e:e9 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB0UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTU4NTBaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDdEM0Q1NUMwOEQxQTk3 MEQyQTZGOTU4ODdEODA2MDMxQjY5RjRFM0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQN3VpcRIgxr2BLoQ1eGEjE4V2bxzFbSKTa3rjdIc/uYLBdL+d rWrky+AyCWCu36BdrRXuAGTUj2t6D7F92Ftsb4ShKBReyE5avlUlLN+XLJ1gaTSr B1a7T+KyzikRW6988X+DYTPzZ7VXHGiXV4LZJD4A+DWr9K4wmba6VkHY5Ze730IG C6VEAwBoGyoWrr8cVpam5NGgSoU948Qpy9S79iCO0xzsFj3rBPub9dbvl60LBweR B4nNIzPWGe8D+fiFze+WJH0NTAFPmoQw3tmkGLQPZ3I0baciQnQxUPICEa8VhpDY BQtK9ukXqhGsHlM9/piU89fCW3rqTFC62NHBAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUfT1VwI0alw0qb5WIfYBgMbafTjwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2ZUMVZ3STBhbHcwcWI1V0lmWUJnTWJhZlRqdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBQ+gwDQYJKoZIhvcNAQELBQADggEBAG35e+eZ8FI1YOnHQGJ4VMi5mXCr 1R8W/3/oF2XANgptMnrX4SjwpeiKAJO37LZzpvw5phXktrtMcRDBLt3pjRs0F9FA HG3pHz5LwlvMUYp6pJP7HIal0cmC7cIJoHsGZePc/a8gWy7ZmQEnXSMK79co+vt5 uft/HZGBP/KSkQt0gfMiKtc1+s1Iqurlj3TpU8FvGMAGREJwH1947xsy3ZOoHzY4 8af6WADxcrd+nmPy0SymQsFZcmQc0AqiXduGYRxSw/jXLDn+rFu1VJnaAe9Uy2yQ yRVFy1RVXNckceYkbol7JHVngJbKmNN3dQpWo9l9/xC5CG8TPBP93aztPuk= -----END CERTIFICATE-----Generated at Sun Feb 16 22:11:45 2025 by rpki-client