$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/mOtpk3bjapQIxgGuqffPH6pFo8U.roa File: mOtpk3bjapQIxgGuqffPH6pFo8U.roa (raw, json) Hash identifier: IAteuTzjss6RmA1lsd2hGqx/bvGKTg8vPUkkA/zMTQs= Subject key identifier: 98:EB:69:93:76:E3:6A:94:08:C6:01:AE:A9:F7:CF:1F:AA:45:A3:C5 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B33 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/mOtpk3bjapQIxgGuqffPH6pFo8U.roa Signing time: Fri 31 Jan 2025 01:38:07 +0000 ROA not before: Fri 31 Jan 2025 01:38:07 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.6.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2867 (0xb33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:38:07 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=98EB699376E36A9408C601AEA9F7CF1FAA45A3C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:27:77:4e:20:a6:a5:d1:88:1f:ad:93:af:17: 3a:bf:8d:b5:8e:69:5e:b7:49:33:c5:99:49:7c:fe: c8:e4:ae:b7:15:75:9a:ee:f1:cb:1f:2d:92:10:f8: 18:09:30:2b:25:08:40:0d:95:85:38:47:6b:be:f1: 42:b2:9c:c1:93:e2:07:05:4c:2b:9d:0c:80:64:c5: 4d:0e:da:f4:df:a2:d7:ae:12:c2:db:1c:ad:2e:a4: f9:61:d8:65:31:ae:bc:c1:d2:e0:db:dc:38:dd:8c: d8:d1:da:77:64:e2:bb:06:fd:33:89:1f:6a:ae:6d: 3c:34:d6:23:5e:a8:02:64:3f:46:45:db:2b:74:59: d8:af:cd:fb:3a:43:94:6d:7b:3d:fd:a0:62:5e:34: 00:ce:b6:21:c7:d8:ae:86:61:fc:93:d3:6d:86:cb: 1d:f5:1a:a5:cf:49:80:c4:37:1d:cf:db:60:86:86: 3e:5e:6b:b4:bd:c9:d7:57:a8:30:f1:60:90:de:93: b4:6e:cd:7d:42:3f:ac:77:25:15:55:a4:93:6b:be: ee:d5:44:fd:88:47:1d:8c:25:2e:97:c8:e0:ef:ef: 93:35:0d:55:6b:28:cc:7e:32:4e:7b:2a:43:df:a2: a4:4c:aa:e0:b2:1f:22:ce:88:a2:c6:70:24:a4:dd: cf:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:EB:69:93:76:E3:6A:94:08:C6:01:AE:A9:F7:CF:1F:AA:45:A3:C5 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/mOtpk3bjapQIxgGuqffPH6pFo8U.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.6.0/23 Signature Algorithm: sha256WithRSAEncryption 53:78:39:d3:56:2a:4a:6c:bd:75:3d:c0:cf:ef:89:b7:eb:bd: 2d:4b:ae:21:b2:13:7a:da:21:4d:5e:93:1e:6b:5b:13:0f:81: 57:93:1c:26:ff:2b:aa:91:9b:31:e5:ad:db:65:cb:34:07:32: 8a:dd:91:39:9f:da:6d:a8:13:0d:98:2f:3c:dc:bc:f1:56:8a: b1:82:f3:6c:02:7a:92:2c:6c:3e:57:fd:03:cd:36:48:86:15: 77:ba:3d:f4:7e:82:44:52:b1:e3:51:44:54:98:93:09:55:18: 24:4c:30:13:2a:ec:75:44:0b:1d:66:c4:e5:a5:d4:6e:ff:98: 7b:eb:6b:49:91:a7:83:bc:a9:82:3f:7a:0c:29:04:9e:de:54: 2a:ce:04:d3:80:87:5e:7e:b7:9e:52:62:e5:be:c8:94:f9:8f: 96:be:b1:f4:c1:9e:3e:97:f3:41:4c:40:e2:78:85:3c:54:de: fa:df:ff:ab:88:85:18:09:17:8d:4d:f7:fd:66:73:4c:b3:db: a8:53:94:74:d7:29:05:19:01:95:ef:9a:a1:8f:41:b0:1a:a6: 80:7e:35:82:dd:c6:b1:c7:9b:58:ad:4d:db:1e:c1:eb:19:c8: ed:6f:76:cd:03:7d:65:2c:c3:c1:c2:a6:f3:8e:77:3b:60:87: 6a:79:cd:fe -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCzMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTM4MDdaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDk4RUI2OTkzNzZFMzZB OTQwOEM2MDFBRUE5RjdDRjFGQUE0NUEzQzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtJ3dOIKal0YgfrZOvFzq/jbWOaV63STPFmUl8/sjkrrcVdZru 8csfLZIQ+BgJMCslCEANlYU4R2u+8UKynMGT4gcFTCudDIBkxU0O2vTfoteuEsLb HK0upPlh2GUxrrzB0uDb3DjdjNjR2ndk4rsG/TOJH2qubTw01iNeqAJkP0ZF2yt0 Wdivzfs6Q5Rtez39oGJeNADOtiHH2K6GYfyT022Gyx31GqXPSYDENx3P22CGhj5e a7S9yddXqDDxYJDek7RuzX1CP6x3JRVVpJNrvu7VRP2IRx2MJS6XyODv75M1DVVr KMx+Mk57KkPfoqRMquCyHyLOiKLGcCSk3c9XAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUmOtpk3bjapQIxgGuqffPH6pFo8UwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L21PdHBrM2JqYXBRSXhnR3VxZmZQSDZwRm84VS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBSwYwDQYJKoZIhvcNAQELBQADggEBAFN4OdNWKkpsvXU9wM/vibfrvS1L riGyE3raIU1ekx5rWxMPgVeTHCb/K6qRmzHlrdtlyzQHMordkTmf2m2oEw2YLzzc vPFWirGC82wCepIsbD5X/QPNNkiGFXe6PfR+gkRSseNRRFSYkwlVGCRMMBMq7HVE Cx1mxOWl1G7/mHvra0mRp4O8qYI/egwpBJ7eVCrOBNOAh15+t55SYuW+yJT5j5a+ sfTBnj6X80FMQOJ4hTxU3vrf/6uIhRgJF41N9/1mc0yz26hTlHTXKQUZAZXvmqGP QbAapoB+NYLdxrHHm1itTdsewesZyO1vds0DfWUsw8HCpvOOdztgh2p5zf4= -----END CERTIFICATE-----Generated at Wed Feb 19 22:34:56 2025 by rpki-client