$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/kcb7xjQnROx-Y2cT33dY8lrT81Y.roa File: kcb7xjQnROx-Y2cT33dY8lrT81Y.roa (raw, json) Hash identifier: dt+uP34a27eYGAOQgxrPLmUQp7oRvlB2YOEuHGrPcj8= Subject key identifier: 91:C6:FB:C6:34:27:44:EC:7E:63:67:13:DF:77:58:F2:5A:D3:F3:56 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 067C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/kcb7xjQnROx-Y2cT33dY8lrT81Y.roa Signing time: Tue 30 Apr 2024 01:38:00 +0000 ROA not before: Tue 30 Apr 2024 01:38:00 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1660 (0x67c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:38:00 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=91C6FBC6342744EC7E636713DF7758F25AD3F356 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a1:06:44:d7:6a:24:09:a1:08:ac:20:7e:c9: ec:3c:21:b0:cf:bc:22:6d:b8:c3:72:5a:62:5e:fb: 3a:91:c5:ce:16:0f:7d:a2:e5:b7:65:e3:14:83:0d: 02:31:b0:95:c8:48:86:be:40:ab:50:6a:e3:2e:d0: b1:23:c5:b0:db:2f:1e:28:dc:e5:8c:79:5f:e4:ab: 31:af:33:bf:5b:aa:c8:1b:ce:eb:48:2a:d4:c7:21: 12:44:31:7d:85:70:c0:58:18:ce:73:51:6a:10:2e: 8f:13:c3:cb:ae:75:5e:d1:eb:ae:51:6b:52:4d:04: db:b2:a2:d3:49:ec:47:3a:c9:44:91:9f:91:2b:9d: fa:61:05:4b:3b:8b:b0:26:b4:17:de:f5:c1:43:2c: 43:25:2c:2c:23:27:3f:bd:00:a9:88:c3:ca:a5:e5: aa:79:60:cc:f0:e0:71:21:cc:a7:a4:36:ba:d3:7b: 23:bf:08:70:40:9e:25:50:7d:62:53:f4:b7:d7:60: 5c:7f:9a:cf:2f:d3:c6:e1:92:59:b6:b7:66:45:43: 61:1b:10:1e:34:ad:c6:27:79:ca:3a:38:15:79:93: a6:87:df:d5:d2:4f:4d:b3:7f:d9:2c:e0:96:16:2e: 2d:cd:96:0e:fb:c7:0f:46:9f:72:2b:4b:79:a9:3c: a3:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:C6:FB:C6:34:27:44:EC:7E:63:67:13:DF:77:58:F2:5A:D3:F3:56 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/kcb7xjQnROx-Y2cT33dY8lrT81Y.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.16.0/24 Signature Algorithm: sha256WithRSAEncryption cb:af:4d:db:ba:2f:b7:9a:98:40:4e:d0:68:e5:bb:67:b0:fc: 92:dc:df:6e:d4:9b:24:59:f3:91:63:0e:49:ee:d0:1e:00:11: 60:f7:5b:0d:07:f6:5f:74:72:9e:6f:3c:87:74:f6:e3:ac:87: d4:a3:d3:77:60:77:3b:da:17:26:9c:47:30:c2:68:94:7a:80: 9b:f6:94:a2:11:7d:af:cf:03:4d:c8:24:aa:4d:e5:83:d8:24: ed:46:84:29:f2:ab:71:1a:2c:8f:15:39:14:6f:6f:93:ba:39: 03:9a:f6:bd:43:23:34:56:fe:38:2d:d2:27:5c:c9:33:cc:a7: e5:3a:37:11:f5:d9:01:c0:c9:b3:c0:9e:1b:1c:dc:dc:83:22: 8b:db:ed:18:f8:b8:37:f2:10:ad:46:d9:a4:a3:76:f5:c1:f2: 8f:2c:b4:85:ef:8f:d8:3d:32:51:62:50:e1:34:a7:5c:af:02: 94:8f:87:23:8a:47:da:3a:2d:d4:4f:2d:7a:a0:0d:23:68:fa: c2:ac:b4:8e:1f:b7:0a:9d:c4:8c:90:b1:4e:88:03:f0:af:4b: 9e:a5:d1:85:4e:76:45:9b:1d:d6:22:31:b7:ef:6e:c4:7b:76: 99:63:fc:94:29:a3:d6:ec:7c:68:4f:37:78:4f:bb:a1:41:be: 71:4e:1e:39 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBnwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTM4MDBaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDkxQzZGQkM2MzQyNzQ0 RUM3RTYzNjcxM0RGNzc1OEYyNUFEM0YzNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyoQZE12okCaEIrCB+yew8IbDPvCJtuMNyWmJe+zqRxc4WD32i 5bdl4xSDDQIxsJXISIa+QKtQauMu0LEjxbDbLx4o3OWMeV/kqzGvM79bqsgbzutI KtTHIRJEMX2FcMBYGM5zUWoQLo8Tw8uudV7R665Ra1JNBNuyotNJ7Ec6yUSRn5Er nfphBUs7i7AmtBfe9cFDLEMlLCwjJz+9AKmIw8ql5ap5YMzw4HEhzKekNrrTeyO/ CHBAniVQfWJT9LfXYFx/ms8v08bhklm2t2ZFQ2EbEB40rcYneco6OBV5k6aH39XS T02zf9ks4JYWLi3Nlg77xw9Gn3IrS3mpPKNbAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUkcb7xjQnROx+Y2cT33dY8lrT81YwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2tjYjd4alFuUk94LVkyY1QzM2RZOGxyVDgxWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxYBAwDQYJKoZIhvcNAQELBQADggEBAMuvTdu6L7eamEBO0Gjlu2ew/JLc 327UmyRZ85FjDknu0B4AEWD3Ww0H9l90cp5vPId09uOsh9Sj03dgdzvaFyacRzDC aJR6gJv2lKIRfa/PA03IJKpN5YPYJO1GhCnyq3EaLI8VORRvb5O6OQOa9r1DIzRW /jgt0idcyTPMp+U6NxH12QHAybPAnhsc3NyDIovb7Rj4uDfyEK1G2aSjdvXB8o8s tIXvj9g9MlFiUOE0p1yvApSPhyOKR9o6LdRPLXqgDSNo+sKstI4ftwqdxIyQsU6I A/CvS56l0YVOdkWbHdYiMbfvbsR7dplj/JQpo9bsfGhPN3hPu6FBvnFOHjk= -----END CERTIFICATE-----Generated at Sun Feb 16 22:11:43 2025 by rpki-client