$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/mFUGrwV9GGPDsM76pFu15tfq0rs.roa File: mFUGrwV9GGPDsM76pFu15tfq0rs.roa (raw, json) Hash identifier: gNCiYxkqftnehZSRGTgWGDSFZfrqWMluIqLFSGO6KsE= Subject key identifier: 98:55:06:AF:05:7D:18:63:C3:B0:CE:FA:A4:5B:B5:E6:D7:EA:D2:BB Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 08EF Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/mFUGrwV9GGPDsM76pFu15tfq0rs.roa Signing time: Tue 30 Apr 2024 02:26:32 +0000 ROA not before: Tue 30 Apr 2024 02:26:32 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 220.159.232.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2287 (0x8ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:26:32 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=985506AF057D1863C3B0CEFAA45BB5E6D7EAD2BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:23:08:7e:8a:81:0b:db:54:03:36:14:a9:2b: 3c:59:7f:3b:f6:bb:e8:ee:c4:d9:33:db:ef:05:96: 1c:9c:19:1f:9c:43:b5:4a:2e:e4:84:a2:01:99:3d: 54:ab:c6:19:0b:09:c5:6b:e2:a1:24:c6:19:9c:65: a3:f3:87:ae:72:96:2a:ce:af:f2:8c:62:4e:6c:ca: d3:ac:2b:6f:ce:93:ca:1a:3b:43:af:0b:dd:f9:61: 54:86:6d:ae:8a:e9:86:97:83:cc:ef:28:8b:61:22: 71:73:72:49:55:02:81:5a:c9:5c:28:29:a7:e7:4d: 8d:9a:00:77:d3:14:b9:d7:18:6e:c1:1f:85:3c:00: 67:3c:9c:2e:db:ff:b3:1d:d8:82:35:49:b0:1a:7b: 35:95:c8:09:f0:33:4e:3f:d2:f2:36:a6:d9:8c:0b: 69:e6:51:81:8a:2a:b7:ff:63:fe:e5:31:31:ae:33: cf:ff:29:64:d0:28:56:5a:bc:8d:7c:7c:84:ba:26: 17:66:06:ff:ed:6e:5c:2b:d9:f1:6d:cb:ec:23:c6: 75:11:53:57:08:11:ba:c8:29:57:72:74:99:e0:81: f0:08:59:03:ab:cd:80:92:3d:b5:da:cb:f4:3f:0b: 73:8a:e9:d0:f5:c0:0b:5e:dc:fe:31:fc:50:e9:b4: 89:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:55:06:AF:05:7D:18:63:C3:B0:CE:FA:A4:5B:B5:E6:D7:EA:D2:BB X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/mFUGrwV9GGPDsM76pFu15tfq0rs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.232.0/23 Signature Algorithm: sha256WithRSAEncryption 81:4a:0e:5d:89:bb:1c:fd:6e:64:ca:0d:31:ad:41:06:e8:0c: 82:a2:6a:f4:69:25:9a:82:b2:7b:0d:6e:fd:20:9a:87:c1:4c: 90:d4:17:c1:05:2f:8d:3f:42:68:e9:45:f4:9e:59:0d:bd:d7: 96:4a:6d:4f:3b:9e:50:5f:b4:1a:44:37:00:d7:98:31:4f:1c: ca:c6:f5:0b:49:8b:ff:32:59:af:cd:b5:23:3b:9a:7c:6c:73: 4e:b4:a1:bc:41:a9:92:af:54:da:d7:92:78:eb:d9:e8:3b:96: 4a:7b:de:c5:fb:de:2b:75:48:63:54:0b:23:d1:99:59:b1:00: 76:84:9c:3c:42:64:0c:40:6a:50:f8:50:2b:bb:1b:53:7b:89: 4a:c6:c4:17:51:59:eb:84:cd:2b:7a:b8:d1:2c:92:e2:7e:96: 58:b5:0f:63:7c:66:04:7d:ac:e1:27:9a:a6:78:4a:34:f4:e9: ca:42:fc:9e:01:b6:a6:be:5c:67:79:4a:db:1e:82:61:75:a0: 0a:c2:18:09:94:e4:87:be:5c:14:46:8d:4a:5b:c0:f3:58:7e: 62:8d:ee:85:46:74:71:4d:35:72:c3:a9:f5:1a:e9:f4:2a:3b: a3:33:01:84:15:fd:d2:d2:e0:6d:01:e7:a7:d6:24:a9:80:1c: 62:37:32:9f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCO8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjI2MzJaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDk4NTUwNkFGMDU3RDE4 NjNDM0IwQ0VGQUE0NUJCNUU2RDdFQUQyQkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpIwh+ioEL21QDNhSpKzxZfzv2u+juxNkz2+8FlhycGR+cQ7VK LuSEogGZPVSrxhkLCcVr4qEkxhmcZaPzh65ylirOr/KMYk5sytOsK2/Ok8oaO0Ov C935YVSGba6K6YaXg8zvKIthInFzcklVAoFayVwoKafnTY2aAHfTFLnXGG7BH4U8 AGc8nC7b/7Md2II1SbAaezWVyAnwM04/0vI2ptmMC2nmUYGKKrf/Y/7lMTGuM8// KWTQKFZavI18fIS6JhdmBv/tblwr2fFty+wjxnURU1cIEbrIKVdydJnggfAIWQOr zYCSPbXay/Q/C3OK6dD1wAte3P4x/FDptInrAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUmFUGrwV9GGPDsM76pFu15tfq0rswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L21GVUdyd1Y5R0dQRHNNNzZwRnUxNXRmcTBycy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHcn+gwDQYJKoZIhvcNAQELBQADggEBAIFKDl2Juxz9bmTKDTGtQQboDIKi avRpJZqCsnsNbv0gmofBTJDUF8EFL40/QmjpRfSeWQ2915ZKbU87nlBftBpENwDX mDFPHMrG9QtJi/8yWa/NtSM7mnxsc060obxBqZKvVNrXknjr2eg7lkp73sX73it1 SGNUCyPRmVmxAHaEnDxCZAxAalD4UCu7G1N7iUrGxBdRWeuEzSt6uNEskuJ+lli1 D2N8ZgR9rOEnmqZ4SjT06cpC/J4Btqa+XGd5StsegmF1oArCGAmU5Ie+XBRGjUpb wPNYfmKN7oVGdHFNNXLDqfUa6fQqO6MzAYQV/dLS4G0B56fWJKmAHGI3Mp8= -----END CERTIFICATE-----Generated at Sun Feb 16 22:15:16 2025 by rpki-client