$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/hrv9NZRYTUQwTkKEPh7hQ-_H5dM.roa File: hrv9NZRYTUQwTkKEPh7hQ-_H5dM.roa (raw, json) Hash identifier: kVVvUuBJoIWiTNnbDFvDBWCTiPCnjofwRJBV0qpjYb4= Subject key identifier: 86:BB:FD:35:94:58:4D:44:30:4E:42:84:3E:1E:E1:43:EF:C7:E5:D3 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 081D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hrv9NZRYTUQwTkKEPh7hQ-_H5dM.roa Signing time: Tue 30 Apr 2024 02:14:18 +0000 ROA not before: Tue 30 Apr 2024 02:14:18 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.101.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2077 (0x81d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:14:18 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=86BBFD3594584D44304E42843E1EE143EFC7E5D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:95:b0:2b:77:cc:c7:70:c5:87:c6:9e:aa:16: db:c7:e5:4d:dd:db:c8:f2:0b:9d:c4:6f:02:30:6e: 99:99:2b:ae:be:da:b1:18:ca:74:68:a5:83:cb:87: a1:cb:31:65:2e:c9:45:ad:a6:2f:d6:23:6f:d6:a3: 50:11:ba:3e:e7:28:e1:d6:fc:e4:48:72:03:29:0e: 8f:67:4f:ef:23:52:40:f2:6f:3f:93:b4:43:2e:2d: 82:b5:eb:16:3c:c2:a0:02:51:80:f8:cc:14:83:80: 20:3d:4a:35:fa:d6:bb:6f:b2:84:d8:f4:6d:4f:a4: cb:12:8d:d2:40:4f:00:5b:30:4a:2f:98:eb:df:2a: 50:60:6b:b9:e1:3c:19:2d:8e:96:2e:b4:1a:5f:7d: 54:86:db:38:92:4a:60:5a:1a:f2:0a:d3:0c:79:3f: 88:70:59:89:7f:25:9d:be:21:72:09:fd:bf:f2:14: 9a:07:07:c8:da:f9:4a:54:73:7b:ff:21:46:0b:d5: 2d:9e:37:7f:a8:c6:9d:ab:1e:d9:f0:14:e5:be:a5: 5f:66:0c:50:87:2d:11:bb:fa:33:14:a5:dd:da:a0: e8:bf:6b:c6:36:a3:1d:ba:10:94:64:2a:b4:dd:c3: 3a:4c:c6:8a:35:ef:e9:84:70:23:05:c7:e6:ff:df: 10:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:BB:FD:35:94:58:4D:44:30:4E:42:84:3E:1E:E1:43:EF:C7:E5:D3 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hrv9NZRYTUQwTkKEPh7hQ-_H5dM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.101.0.0/17 Signature Algorithm: sha256WithRSAEncryption 3a:bd:cf:ae:ca:c3:4f:e2:80:fd:21:5d:c2:33:d9:e3:d2:93: ea:71:c7:42:08:bd:9e:f2:60:c7:ab:d0:cf:52:0d:eb:5d:d9: 27:5b:b5:40:91:c6:f4:92:98:e5:fb:67:20:4f:56:72:d3:fa: 1b:2f:dc:fb:4d:5a:91:13:80:7c:3f:f9:14:bf:00:e2:93:3d: d6:36:e7:60:be:a7:24:ba:91:41:4d:8c:46:15:96:fd:dc:80: da:16:b1:87:08:ce:77:88:62:c8:ff:55:7e:8a:31:d5:56:13: 37:53:1e:b4:4d:75:42:29:ec:ba:e2:5e:95:49:33:fa:eb:f7: 8d:e3:93:41:65:fe:91:81:5b:fa:5e:bf:03:64:8c:25:40:65: 87:39:45:f4:e7:43:cb:82:91:db:93:1f:ea:c0:3a:17:fd:d3: fd:ed:d4:ab:07:76:62:33:1a:ca:ea:61:28:d8:64:fb:4a:94: 24:cf:34:ee:37:95:d7:a2:e0:36:d4:b9:42:79:f0:e5:5c:10: 6e:50:3c:c0:75:11:43:61:cf:6a:d1:68:70:87:83:07:5b:8d: bc:1e:3b:65:43:4a:67:77:2e:9c:87:c5:0e:bb:b4:3d:d6:05: e8:c4:c4:f7:db:bc:61:a6:93:78:7b:00:b7:ac:5a:63:da:c4: aa:87:1c:a0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCB0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjE0MThaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDg2QkJGRDM1OTQ1ODRE NDQzMDRFNDI4NDNFMUVFMTQzRUZDN0U1RDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDplbArd8zHcMWHxp6qFtvH5U3d28jyC53EbwIwbpmZK66+2rEY ynRopYPLh6HLMWUuyUWtpi/WI2/Wo1ARuj7nKOHW/ORIcgMpDo9nT+8jUkDybz+T tEMuLYK16xY8wqACUYD4zBSDgCA9SjX61rtvsoTY9G1PpMsSjdJATwBbMEovmOvf KlBga7nhPBktjpYutBpffVSG2ziSSmBaGvIK0wx5P4hwWYl/JZ2+IXIJ/b/yFJoH B8ja+UpUc3v/IUYL1S2eN3+oxp2rHtnwFOW+pV9mDFCHLRG7+jMUpd3aoOi/a8Y2 ox26EJRkKrTdwzpMxoo17+mEcCMFx+b/3xCDAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUhrv9NZRYTUQwTkKEPh7hQ+/H5dMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2hydjlOWlJZVFVRd1RrS0VQaDdoUS1fSDVkTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcxZQAwDQYJKoZIhvcNAQELBQADggEBADq9z67Kw0/igP0hXcIz2ePSk+px x0IIvZ7yYMer0M9SDetd2SdbtUCRxvSSmOX7ZyBPVnLT+hsv3PtNWpETgHw/+RS/ AOKTPdY252C+pyS6kUFNjEYVlv3cgNoWsYcIzneIYsj/VX6KMdVWEzdTHrRNdUIp 7LriXpVJM/rr943jk0Fl/pGBW/pevwNkjCVAZYc5RfTnQ8uCkduTH+rAOhf90/3t 1KsHdmIzGsrqYSjYZPtKlCTPNO43ldei4DbUuUJ58OVcEG5QPMB1EUNhz2rRaHCH gwdbjbweO2VDSmd3LpyHxQ67tD3WBejExPfbvGGmk3h7ALesWmPaxKqHHKA= -----END CERTIFICATE-----Generated at Sun Feb 16 22:34:27 2025 by rpki-client