$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/i_C3YIBK4vkzxkxY91HVrCInXgw.roa File: i_C3YIBK4vkzxkxY91HVrCInXgw.roa (raw, json) Hash identifier: II76iI+gx5bu+yLFcmnWsXxWZcGaxu7I/VkKADnw8lk= Subject key identifier: 8B:F0:B7:60:80:4A:E2:F9:33:C6:4C:58:F7:51:D5:AC:22:27:5E:0C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0AA3 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/i_C3YIBK4vkzxkxY91HVrCInXgw.roa Signing time: Sun 30 Jun 2024 01:54:24 +0000 ROA not before: Sun 30 Jun 2024 01:54:24 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 220.210.82.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2723 (0xaa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:54:24 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=8BF0B760804AE2F933C64C58F751D5AC22275E0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:dd:11:95:b8:d3:a4:f4:80:1d:0c:e2:90:91: 72:b6:50:78:2c:60:e6:dd:e7:d8:ea:3d:c2:22:64: 2f:b2:69:91:d5:df:4b:30:5e:ac:91:3d:54:f0:46: c5:ba:b3:92:ce:67:c7:28:8c:8b:f0:f2:bf:3e:dc: 4b:10:79:a1:f6:55:d0:8f:76:20:2f:e4:ae:03:4e: 41:8c:a1:e9:c0:8c:50:54:77:cf:e2:dd:ee:da:83: a2:02:9b:bb:8c:91:3b:a4:94:d4:e2:11:00:f3:57: 6e:60:c8:9c:a7:f6:fb:d3:3b:13:40:6a:6a:ed:28: 0b:19:29:4e:54:9e:3e:8b:2a:65:0c:97:de:43:b8: ff:b7:97:4c:c9:20:63:61:40:16:e8:e7:dd:46:51: d7:f6:b3:41:5a:e1:f3:12:06:04:34:a5:4a:14:a6: 0f:c3:8a:26:a3:43:ac:54:0b:aa:48:1b:87:b1:b2: c0:06:12:e1:21:72:32:df:23:79:bd:cb:40:c3:30: f1:49:9f:ea:4c:2d:7f:db:13:0d:54:ec:1f:57:58: 93:b2:b7:82:63:d8:23:bf:5d:70:2a:f0:b9:74:56: d9:18:29:80:65:cf:2f:45:5f:bc:86:22:d0:b6:b1: 7b:b5:c7:41:de:be:81:fc:aa:6f:00:c3:8c:49:97: 04:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:F0:B7:60:80:4A:E2:F9:33:C6:4C:58:F7:51:D5:AC:22:27:5E:0C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/i_C3YIBK4vkzxkxY91HVrCInXgw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.82.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:76:a8:22:4d:e3:24:8f:14:95:80:2e:d6:92:5f:36:bb:b4: 89:98:d8:97:43:93:63:e4:28:ef:2c:fe:91:15:7b:5a:d3:72: bd:22:5c:f3:f1:90:c3:42:43:dc:e7:74:ac:1d:4c:92:42:b8: d5:39:00:1e:d0:9f:d5:8b:77:78:94:73:3a:d2:ce:1f:88:58: f3:b3:ff:38:c9:11:2d:cf:05:82:31:db:e1:d5:ea:18:eb:b4: fa:04:9d:6c:43:ec:b5:da:80:d3:42:f7:c4:48:b3:21:b1:c9: 63:85:98:81:51:07:1e:02:a3:cf:60:e0:f4:13:71:ca:bb:bd: 8a:e4:fb:6b:d0:0e:aa:bf:81:e3:a6:7e:43:2e:50:85:7f:6c: 29:64:27:b8:7a:7a:ff:c9:97:92:7d:7d:a4:c9:5c:b4:66:93: 7a:1e:25:d3:3b:e8:79:f0:a5:bf:51:e0:c9:e9:45:2f:fa:61: dc:62:2b:1a:e3:ac:dc:79:84:66:6b:f5:77:09:6f:b5:a3:a4: 1c:4b:ec:bc:9c:81:d5:af:8f:00:8b:ab:ce:2a:30:41:fe:91: 06:11:2d:67:43:26:b0:60:b6:ab:1b:b1:39:23:71:34:6d:3d: 35:9a:75:62:5d:3d:92:c4:47:5a:58:31:0c:2b:57:af:be:d7: 3d:9f:bd:13 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCqMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTU0MjRaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDhCRjBCNzYwODA0QUUy RjkzM0M2NEM1OEY3NTFENUFDMjIyNzVFMEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDF3RGVuNOk9IAdDOKQkXK2UHgsYObd59jqPcIiZC+yaZHV30sw XqyRPVTwRsW6s5LOZ8cojIvw8r8+3EsQeaH2VdCPdiAv5K4DTkGMoenAjFBUd8/i 3e7ag6ICm7uMkTuklNTiEQDzV25gyJyn9vvTOxNAamrtKAsZKU5Unj6LKmUMl95D uP+3l0zJIGNhQBbo591GUdf2s0Fa4fMSBgQ0pUoUpg/DiiajQ6xUC6pIG4exssAG EuEhcjLfI3m9y0DDMPFJn+pMLX/bEw1U7B9XWJOyt4Jj2CO/XXAq8Ll0VtkYKYBl zy9FX7yGItC2sXu1x0HevoH8qm8Aw4xJlwTHAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUi/C3YIBK4vkzxkxY91HVrCInXgwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2lfQzNZSUJLNHZrenhreFk5MUhWckNJblhndy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHc0lIwDQYJKoZIhvcNAQELBQADggEBAEx2qCJN4ySPFJWALtaSXza7tImY 2JdDk2PkKO8s/pEVe1rTcr0iXPPxkMNCQ9zndKwdTJJCuNU5AB7Qn9WLd3iUczrS zh+IWPOz/zjJES3PBYIx2+HV6hjrtPoEnWxD7LXagNNC98RIsyGxyWOFmIFRBx4C o89g4PQTccq7vYrk+2vQDqq/geOmfkMuUIV/bClkJ7h6ev/Jl5J9faTJXLRmk3oe JdM76Hnwpb9R4MnpRS/6YdxiKxrjrNx5hGZr9XcJb7WjpBxL7LycgdWvjwCLq84q MEH+kQYRLWdDJrBgtqsbsTkjcTRtPTWadWJdPZLER1pYMQwrV6++1z2fvRM= -----END CERTIFICATE-----Generated at Sun Feb 16 22:07:03 2025 by rpki-client