$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/lURUY8R8ko2ZG9OsgXU2y68Qiqc.roa File: lURUY8R8ko2ZG9OsgXU2y68Qiqc.roa (raw, json) Hash identifier: TBekxXaEXZzCEoAzxf4sUYfaDy/W2v3oQyS5Y3JZIiA= Subject key identifier: 95:44:54:63:C4:7C:92:8D:99:1B:D3:AC:81:75:36:CB:AF:10:8A:A7 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0694 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lURUY8R8ko2ZG9OsgXU2y68Qiqc.roa Signing time: Tue 30 Apr 2024 01:43:09 +0000 ROA not before: Tue 30 Apr 2024 01:43:09 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.4.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1684 (0x694) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:43:09 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=95445463C47C928D991BD3AC817536CBAF108AA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:46:a2:1c:d3:3d:d1:9c:4f:5c:8e:f8:ec:7d: 5a:9a:6d:55:1b:43:cb:3d:f7:93:84:5f:26:1a:81: 3f:6d:06:76:bc:d9:c3:07:f5:5a:8d:84:dd:19:47: 37:2d:67:33:ff:9d:fd:ba:8c:7e:18:92:c3:02:88: 8f:3c:7b:27:1f:d4:39:94:70:f5:f5:2c:44:cd:e6: 9e:c1:00:98:5b:ff:58:6f:d1:86:22:b4:09:4c:7a: a2:a8:dc:42:f0:91:6c:e8:c2:bb:77:db:a3:55:83: 4d:f9:40:59:27:3f:88:06:28:7a:2d:ea:cf:d6:ed: b4:95:94:cb:e9:a5:eb:b2:8a:14:f8:0d:0c:c5:15: 7c:fd:cd:6d:c0:06:46:fe:4c:ab:40:ec:03:b6:77: 60:ad:b3:3a:f4:54:d4:39:4d:3f:e0:09:65:de:4c: ad:75:a9:04:05:09:58:d5:9d:53:b4:c4:64:f8:65: 30:31:0c:b9:94:fa:6d:81:75:b7:7b:ed:83:00:ab: dc:25:0a:55:be:3c:cb:4c:28:44:69:a9:a5:a9:4b: 05:7a:4f:0c:bb:e3:f0:48:00:43:53:91:fc:44:c8: 86:62:d4:ce:bb:7f:69:85:ef:38:d0:0b:a0:3a:13: 8a:e6:8b:a4:e9:ba:a5:ad:f8:e7:0a:97:13:0f:89: c4:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:44:54:63:C4:7C:92:8D:99:1B:D3:AC:81:75:36:CB:AF:10:8A:A7 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lURUY8R8ko2ZG9OsgXU2y68Qiqc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.4.0/23 Signature Algorithm: sha256WithRSAEncryption cc:4f:d1:ba:e0:db:2a:c6:2c:e3:d7:da:ef:1d:7e:48:94:53: 15:ee:6c:be:d7:45:20:fd:47:a4:c8:55:f1:ca:37:e9:70:e1: 76:0c:92:5e:06:4e:f3:31:47:a5:f6:35:c7:3c:7f:c0:89:6b: 1d:91:22:98:ae:9e:fc:be:ba:46:d3:78:f3:c8:2e:60:57:d9: 90:b4:6b:81:14:84:74:dd:66:8c:29:07:e6:d1:2f:5a:4a:54: 93:0f:e8:5c:4a:2d:d0:ff:7b:92:89:8b:f1:e0:45:ae:96:e0: d2:2d:cc:94:83:2e:9c:2e:30:3e:aa:b7:5d:63:e0:4e:9a:73: ec:99:a4:36:eb:6b:8b:9b:d3:c7:d1:c5:f1:cd:cf:9e:3a:c7: 0b:b1:98:c6:1d:25:50:e2:42:6d:41:9f:cf:f0:c6:33:f3:99: 49:23:82:1f:01:3c:bd:e9:f6:00:56:66:40:16:39:b4:f6:9f: 53:7d:85:17:b7:b2:c1:60:e8:01:53:0a:2d:4a:07:8c:c6:22: 2f:c6:43:67:4f:96:c0:93:d3:09:e3:f3:06:ce:73:65:20:f5: 28:f6:e5:25:3a:16:ca:25:fe:d9:a6:a8:69:84:f6:a7:e1:0d: 23:57:36:84:33:63:1e:3a:43:e2:27:46:ca:86:7a:fe:e6:76: e8:44:50:5a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBpQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTQzMDlaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDk1NDQ1NDYzQzQ3Qzky OEQ5OTFCRDNBQzgxNzUzNkNCQUYxMDhBQTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyRqIc0z3RnE9cjvjsfVqabVUbQ8s995OEXyYagT9tBna82cMH 9VqNhN0ZRzctZzP/nf26jH4YksMCiI88eycf1DmUcPX1LETN5p7BAJhb/1hv0YYi tAlMeqKo3ELwkWzowrt326NVg035QFknP4gGKHot6s/W7bSVlMvppeuyihT4DQzF FXz9zW3ABkb+TKtA7AO2d2Ctszr0VNQ5TT/gCWXeTK11qQQFCVjVnVO0xGT4ZTAx DLmU+m2Bdbd77YMAq9wlClW+PMtMKERpqaWpSwV6Twy74/BIAENTkfxEyIZi1M67 f2mF7zjQC6A6E4rmi6TpuqWt+OcKlxMPicRjAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUlURUY8R8ko2ZG9OsgXU2y68QiqcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2xVUlVZOFI4a28yWkc5T3NnWFUyeTY4UWlxYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYAQwDQYJKoZIhvcNAQELBQADggEBAMxP0brg2yrGLOPX2u8dfkiUUxXu bL7XRSD9R6TIVfHKN+lw4XYMkl4GTvMxR6X2Ncc8f8CJax2RIpiunvy+ukbTePPI LmBX2ZC0a4EUhHTdZowpB+bRL1pKVJMP6FxKLdD/e5KJi/HgRa6W4NItzJSDLpwu MD6qt11j4E6ac+yZpDbra4ub08fRxfHNz546xwuxmMYdJVDiQm1Bn8/wxjPzmUkj gh8BPL3p9gBWZkAWObT2n1N9hRe3ssFg6AFTCi1KB4zGIi/GQ2dPlsCT0wnj8wbO c2Ug9Sj25SU6Fsol/tmmqGmE9qfhDSNXNoQzYx46Q+InRsqGev7mduhEUFo= -----END CERTIFICATE-----Generated at Sun Feb 16 22:32:57 2025 by rpki-client