$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/iS2rBG83RKgp0aiOZWpvXpFSQK4.roa File: iS2rBG83RKgp0aiOZWpvXpFSQK4.roa (raw, json) Hash identifier: ZkV7SPbnsxAKxLrYCdd1e4hRar7N9UtDct5gnceXvgA= Subject key identifier: 89:2D:AB:04:6F:37:44:A8:29:D1:A8:8E:65:6A:6F:5E:91:52:40:AE Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0AA0 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iS2rBG83RKgp0aiOZWpvXpFSQK4.roa Signing time: Sun 30 Jun 2024 01:54:23 +0000 ROA not before: Sun 30 Jun 2024 01:54:23 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.76.24.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2720 (0xaa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:54:23 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=892DAB046F3744A829D1A88E656A6F5E915240AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:9c:dc:cb:97:be:7b:28:79:61:bb:ac:69:b0: 94:eb:2d:10:79:cf:85:25:da:16:c9:02:1f:69:09: 14:f5:9e:6b:9d:c2:a4:bb:bc:fb:12:bf:cf:03:3d: 58:05:6e:4a:16:04:dd:fb:12:7e:38:71:41:02:b7: 87:66:15:37:97:31:f5:7c:a9:93:e0:94:97:a8:14: 60:fe:9d:ca:b0:de:03:fe:7e:92:da:58:b8:49:0e: 30:29:19:5f:b7:72:8b:af:32:60:96:66:31:51:0a: 83:fa:cf:20:ac:1e:40:22:80:30:b3:be:97:5d:68: 4a:2c:4e:b9:6f:05:dc:53:7d:48:1c:c1:c2:41:0d: b9:d2:57:ff:73:73:af:ea:30:db:3e:0b:45:19:83: 05:5d:40:56:7d:e1:a6:3d:8c:cc:d3:e6:03:4c:16: c6:a3:af:98:ec:57:65:18:df:c5:6d:7a:7e:ad:33: e4:fa:86:c8:26:90:a2:ec:61:78:a4:1f:cd:57:ad: ba:b0:c7:58:21:79:ca:cb:6f:a3:e3:81:83:22:d6: 5a:ca:00:a4:a6:04:72:ea:8e:5f:29:e8:82:47:e2: cb:b6:32:5c:b0:5f:dc:ca:bb:1c:5b:aa:9e:c5:eb: 62:78:8a:bc:28:3c:9d:ac:81:34:e5:bb:96:cc:23: 03:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:2D:AB:04:6F:37:44:A8:29:D1:A8:8E:65:6A:6F:5E:91:52:40:AE X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iS2rBG83RKgp0aiOZWpvXpFSQK4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.24.0/21 Signature Algorithm: sha256WithRSAEncryption 48:8e:d3:13:95:4b:a5:11:87:6f:f2:c7:81:e5:01:ac:fc:b8: ff:e4:06:b0:a0:c1:c2:31:0b:bb:ca:64:60:e1:e4:48:a6:b5: ce:24:86:ae:98:72:eb:87:b9:4e:4f:3e:7f:d1:86:32:47:38: 42:0f:06:7d:e4:43:40:00:8d:5e:ec:0f:16:6e:b0:9d:90:77: d3:e4:6c:1a:c7:c0:36:c9:28:60:25:76:16:49:8d:ea:21:00: f5:e8:b6:3c:46:c8:d9:73:dc:5d:bc:a4:47:0a:49:ea:9a:04: fe:0b:55:75:18:14:f0:55:1b:97:ed:c1:6b:07:65:93:5a:43: 28:9b:66:76:2d:73:df:8d:5a:b7:71:fc:fa:5a:e0:45:2b:4c: dd:33:04:f5:97:7f:06:fd:48:c7:c3:75:4e:06:1d:f6:91:e7: 84:24:4e:23:7d:c9:bf:62:27:4e:24:d4:b0:63:c7:f8:50:2d: d0:72:03:03:bb:ce:75:b5:e9:0b:41:4f:58:59:89:38:c3:96: 2d:f0:0d:a0:ef:ee:b6:e3:9c:0f:d0:be:ce:0f:7c:88:03:92: c7:e2:80:ad:3e:38:86:d5:d7:b0:ea:b3:0d:e9:fa:ff:1f:68: 5d:1f:a4:c8:9b:37:69:52:8b:0e:5b:20:74:41:1e:e2:08:af: 2a:63:01:5b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCqAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTU0MjNaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDg5MkRBQjA0NkYzNzQ0 QTgyOUQxQTg4RTY1NkE2RjVFOTE1MjQwQUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfnNzLl757KHlhu6xpsJTrLRB5z4Ul2hbJAh9pCRT1nmudwqS7 vPsSv88DPVgFbkoWBN37En44cUECt4dmFTeXMfV8qZPglJeoFGD+ncqw3gP+fpLa WLhJDjApGV+3couvMmCWZjFRCoP6zyCsHkAigDCzvpddaEosTrlvBdxTfUgcwcJB DbnSV/9zc6/qMNs+C0UZgwVdQFZ94aY9jMzT5gNMFsajr5jsV2UY38Vten6tM+T6 hsgmkKLsYXikH81Xrbqwx1ghecrLb6PjgYMi1lrKAKSmBHLqjl8p6IJH4su2Mlyw X9zKuxxbqp7F62J4irwoPJ2sgTTlu5bMIwNJAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUiS2rBG83RKgp0aiOZWpvXpFSQK4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2lTMnJCRzgzUktncDBhaU9aV3B2WHBGU1FLNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBTBgwDQYJKoZIhvcNAQELBQADggEBAEiO0xOVS6URh2/yx4HlAaz8uP/k BrCgwcIxC7vKZGDh5Eimtc4khq6YcuuHuU5PPn/RhjJHOEIPBn3kQ0AAjV7sDxZu sJ2Qd9PkbBrHwDbJKGAldhZJjeohAPXotjxGyNlz3F28pEcKSeqaBP4LVXUYFPBV G5ftwWsHZZNaQyibZnYtc9+NWrdx/Ppa4EUrTN0zBPWXfwb9SMfDdU4GHfaR54Qk TiN9yb9iJ04k1LBjx/hQLdByAwO7znW16QtBT1hZiTjDli3wDaDv7rbjnA/Qvs4P fIgDksfigK0+OIbV17Dqsw3p+v8faF0fpMibN2lSiw5bIHRBHuIIrypjAVs= -----END CERTIFICATE-----Generated at Sun Feb 16 22:20:20 2025 by rpki-client