$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/icThnXveVJUha442Aev-mSBQkjM.roa File: icThnXveVJUha442Aev-mSBQkjM.roa (raw, json) Hash identifier: NQ2L3FXaW+Gf+scnu1XSkosFg4lastboffO566gtOO4= Subject key identifier: 89:C4:E1:9D:7B:DE:54:95:21:6B:8E:36:01:EB:FE:99:20:50:92:33 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 06A6 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/icThnXveVJUha442Aev-mSBQkjM.roa Signing time: Tue 30 Apr 2024 01:43:16 +0000 ROA not before: Tue 30 Apr 2024 01:43:16 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.100.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1702 (0x6a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:43:16 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=89C4E19D7BDE5495216B8E3601EBFE9920509233 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:74:ec:ab:33:ba:9a:f6:0b:79:d0:30:98:cb: 8c:ce:5e:e0:6a:da:59:a3:e1:33:8c:12:cd:c6:9f: 38:89:36:98:71:91:26:6e:2f:30:ef:04:df:44:56: fe:5d:41:25:d4:be:99:21:b9:ce:6b:b1:7a:c0:86: f7:ae:d2:59:4f:f3:84:5c:66:83:50:4f:72:8f:4b: b9:8d:a4:85:1a:49:f0:6b:eb:d3:50:80:8a:1f:f4: a5:3f:65:76:2e:16:ec:1f:d0:f5:f6:87:9d:4a:0b: f8:2c:8c:7d:15:04:d6:e4:55:e5:02:fe:5c:9f:54: d7:8d:e5:02:13:0d:da:9f:c6:a7:ce:6c:1d:1a:9f: a4:87:97:3d:2c:4d:f5:61:91:53:20:98:58:87:1b: 0a:6d:ab:eb:f3:67:34:e1:0c:ba:61:b0:aa:31:14: c6:7b:f0:fc:11:3b:79:9b:cf:09:92:54:1e:ca:56: e5:28:05:c8:63:16:17:f8:dd:47:a5:70:98:46:02: 2e:d8:60:56:44:6d:cc:d0:56:c8:e3:94:c6:6e:90: 37:7f:2a:ce:2c:3c:4c:2d:a9:81:be:12:43:0b:9b: 56:ff:ff:3d:da:5d:85:6d:4f:b1:f7:93:a5:ee:82: ce:d1:f8:48:21:7f:4c:75:c6:27:77:41:46:2d:3b: 2b:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:C4:E1:9D:7B:DE:54:95:21:6B:8E:36:01:EB:FE:99:20:50:92:33 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/icThnXveVJUha442Aev-mSBQkjM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.100.0/22 Signature Algorithm: sha256WithRSAEncryption 48:44:f6:5f:64:14:98:b8:08:9d:06:f3:fb:69:a5:1f:21:4b: 3a:af:87:64:0f:51:99:60:51:68:ad:6a:aa:2b:c9:84:ff:27: 01:33:3b:f4:c5:04:16:56:77:38:dc:70:75:a7:6e:88:f4:cf: 59:bc:14:25:bc:e5:76:35:45:d8:6f:3c:2b:1f:2b:28:ff:92: 59:da:f4:a0:92:28:5e:aa:38:04:97:f9:c8:0f:8b:fb:65:be: 34:f3:c2:9b:97:21:b2:c6:ef:74:c6:7b:f3:15:34:e4:ae:93: 3e:e1:e0:74:73:ff:c4:24:d7:a9:65:04:d9:e9:9b:82:08:ff: 5f:ee:3a:71:b3:d5:ed:8e:a8:a1:62:4d:9e:b1:22:81:fe:1d: 0c:90:df:9f:33:16:58:7c:47:dc:6c:35:c5:91:10:40:58:a8: ee:0b:2b:c1:5d:80:06:49:9f:b1:48:52:5d:48:95:89:ef:36: 96:01:d5:98:3a:1d:93:9e:bd:a6:e4:b2:c3:85:10:d7:f9:96: f1:c1:0e:f0:9e:af:a3:47:a3:6d:d9:b5:57:97:2d:20:03:4a: 2e:dd:58:fa:43:c0:24:e9:f1:6a:6e:67:f1:68:85:25:63:25: dc:73:37:67:d9:3e:b7:92:d6:18:d4:45:4b:56:03:39:6b:62: c8:18:9c:9d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBqYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTQzMTZaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDg5QzRFMTlEN0JERTU0 OTUyMTZCOEUzNjAxRUJGRTk5MjA1MDkyMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwdOyrM7qa9gt50DCYy4zOXuBq2lmj4TOMEs3GnziJNphxkSZu LzDvBN9EVv5dQSXUvpkhuc5rsXrAhveu0llP84RcZoNQT3KPS7mNpIUaSfBr69NQ gIof9KU/ZXYuFuwf0PX2h51KC/gsjH0VBNbkVeUC/lyfVNeN5QITDdqfxqfObB0a n6SHlz0sTfVhkVMgmFiHGwptq+vzZzThDLphsKoxFMZ78PwRO3mbzwmSVB7KVuUo BchjFhf43UelcJhGAi7YYFZEbczQVsjjlMZukDd/Ks4sPEwtqYG+EkMLm1b//z3a XYVtT7H3k6Xugs7R+Eghf0x1xid3QUYtOyvlAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUicThnXveVJUha442Aev+mSBQkjMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2ljVGhuWHZlVkpVaGE0NDJBZXYtbVNCUWtqTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBT2QwDQYJKoZIhvcNAQELBQADggEBAEhE9l9kFJi4CJ0G8/tppR8hSzqv h2QPUZlgUWitaqoryYT/JwEzO/TFBBZWdzjccHWnboj0z1m8FCW85XY1RdhvPCsf Kyj/klna9KCSKF6qOASX+cgPi/tlvjTzwpuXIbLG73TGe/MVNOSukz7h4HRz/8Qk 16llBNnpm4II/1/uOnGz1e2OqKFiTZ6xIoH+HQyQ358zFlh8R9xsNcWREEBYqO4L K8FdgAZJn7FIUl1IlYnvNpYB1Zg6HZOevabkssOFENf5lvHBDvCer6NHo23ZtVeX LSADSi7dWPpDwCTp8WpuZ/FohSVjJdxzN2fZPreS1hjURUtWAzlrYsgYnJ0= -----END CERTIFICATE-----Generated at Sun Feb 16 22:18:54 2025 by rpki-client