$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/hMrRLdEtcIf_LB4y8Mabz2GFzHw.roa File: hMrRLdEtcIf_LB4y8Mabz2GFzHw.roa (raw, json) Hash identifier: tQ6sRXhfZQZITUlsP4A6FuKRxemsZUdIHbi4xnd4WXc= Subject key identifier: 84:CA:D1:2D:D1:2D:70:87:FF:2C:1E:32:F0:C6:9B:CF:61:85:CC:7C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 072B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hMrRLdEtcIf_LB4y8Mabz2GFzHw.roa Signing time: Tue 30 Apr 2024 01:55:56 +0000 ROA not before: Tue 30 Apr 2024 01:55:56 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.106.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1835 (0x72b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:55:56 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=84CAD12DD12D7087FF2C1E32F0C69BCF6185CC7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2b:97:60:ca:e5:e1:f1:f1:7c:a2:fb:43:69: c7:0d:b1:c6:65:8c:5f:6d:36:83:19:6a:79:7f:66: cd:f4:1d:da:c0:4c:73:dc:92:73:95:9c:07:2a:6c: 52:86:75:0b:7b:38:59:a6:d7:1f:36:13:b7:ca:c9: 51:e3:4f:f5:1d:ed:9c:11:0b:a8:f0:b0:a1:f1:cd: 32:3f:16:64:01:b2:3d:dc:11:6c:f6:64:e2:69:c9: 8d:16:e6:00:3c:e8:41:dc:42:3e:14:b7:6b:1e:8c: 1c:b1:29:f5:1e:15:ce:c4:ae:e7:65:ab:32:09:3c: 93:df:bf:76:ec:63:84:bf:27:9f:71:a9:97:b9:c8: 4e:11:82:2d:23:b0:61:98:08:98:d2:f8:3a:27:4d: 9c:96:30:35:84:dc:8f:21:4c:86:22:e6:58:d9:88: 93:33:a6:11:12:cb:2b:83:9b:9a:f8:93:a3:db:4a: 5f:a5:71:77:a2:c1:4e:3f:fb:c8:df:ec:0f:e5:9c: cf:25:8f:b7:aa:e8:15:56:fa:c1:aa:74:d6:21:c2: d9:3a:4a:d3:7d:af:93:85:41:72:62:80:56:6a:4f: fb:f0:3d:e4:19:37:2c:1e:5a:1f:d5:c6:5a:11:87: 0a:95:1d:5b:fe:ca:12:40:97:51:4e:2d:30:b7:3f: 1b:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:CA:D1:2D:D1:2D:70:87:FF:2C:1E:32:F0:C6:9B:CF:61:85:CC:7C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hMrRLdEtcIf_LB4y8Mabz2GFzHw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.191.0/24 Signature Algorithm: sha256WithRSAEncryption e1:7c:66:fe:20:17:d5:c2:d2:40:13:9b:4c:7a:c6:f2:f8:96: ef:dc:53:d8:a2:8f:e4:a8:c3:55:34:69:f7:4f:5c:5d:1a:d2: 6b:c0:2a:fd:1b:f3:99:a5:04:2d:9f:e9:09:9b:ee:db:ee:dc: bd:c0:31:64:e0:fa:29:5d:1d:11:cf:42:28:aa:70:3c:b5:60: 1a:c2:71:1a:4f:f5:b2:d9:f5:b5:44:0e:f7:62:29:e3:6a:21: 2a:3c:d2:29:13:c7:a6:f2:29:e0:16:a6:51:70:26:e2:15:7a: 8c:bd:3c:94:94:af:e3:a9:50:97:ea:52:a0:af:a0:b3:c9:6c: 63:6c:2a:d1:27:53:b9:75:a4:a5:f2:53:59:8a:c8:25:b9:61: 8c:c7:ab:82:07:41:0d:37:57:88:53:ec:88:d2:f8:d6:0d:30: 0b:4d:75:73:1c:7c:8f:ac:3a:8d:bc:fe:1d:a2:ca:7f:1b:52: 76:b9:ef:30:24:b1:95:37:05:77:d4:b8:db:d7:49:62:df:31: 81:c9:47:96:26:a5:32:92:88:e5:0f:7a:84:aa:08:74:e7:68: d0:fb:04:a3:94:2d:7f:b2:7d:36:ba:fb:cf:2f:8d:ab:50:f6: 85:81:e2:9e:74:20:60:fd:a2:55:e7:19:85:81:fa:0b:c0:16: da:7f:fd:4b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICByswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTU1NTZaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDg0Q0FEMTJERDEyRDcw ODdGRjJDMUUzMkYwQzY5QkNGNjE4NUNDN0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQK5dgyuXh8fF8ovtDaccNscZljF9tNoMZanl/Zs30HdrATHPc knOVnAcqbFKGdQt7OFmm1x82E7fKyVHjT/Ud7ZwRC6jwsKHxzTI/FmQBsj3cEWz2 ZOJpyY0W5gA86EHcQj4Ut2sejByxKfUeFc7ErudlqzIJPJPfv3bsY4S/J59xqZe5 yE4Rgi0jsGGYCJjS+DonTZyWMDWE3I8hTIYi5ljZiJMzphESyyuDm5r4k6PbSl+l cXeiwU4/+8jf7A/lnM8lj7eq6BVW+sGqdNYhwtk6StN9r5OFQXJigFZqT/vwPeQZ NyweWh/VxloRhwqVHVv+yhJAl1FOLTC3PxtPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUhMrRLdEtcIf/LB4y8Mabz2GFzHwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2hNclJMZEV0Y0lmX0xCNHk4TWFiejJHRnpIdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxar8wDQYJKoZIhvcNAQELBQADggEBAOF8Zv4gF9XC0kATm0x6xvL4lu/c U9iij+Sow1U0afdPXF0a0mvAKv0b85mlBC2f6Qmb7tvu3L3AMWTg+ildHRHPQiiq cDy1YBrCcRpP9bLZ9bVEDvdiKeNqISo80ikTx6byKeAWplFwJuIVeoy9PJSUr+Op UJfqUqCvoLPJbGNsKtEnU7l1pKXyU1mKyCW5YYzHq4IHQQ03V4hT7IjS+NYNMAtN dXMcfI+sOo28/h2iyn8bUna57zAksZU3BXfUuNvXSWLfMYHJR5YmpTKSiOUPeoSq CHTnaND7BKOULX+yfTa6+88vjatQ9oWB4p50IGD9olXnGYWB+gvAFtp//Us= -----END CERTIFICATE-----Generated at Sun Feb 16 22:12:07 2025 by rpki-client