$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/mRPGImsgV2u7V83KGkD8u8QvZgk.roa File: mRPGImsgV2u7V83KGkD8u8QvZgk.roa (raw, json) Hash identifier: xfXYcE91hl0f5E3Ylf3ifGFmQ4jtGQigGcLFhCKcwHk= Subject key identifier: 99:13:C6:22:6B:20:57:6B:BB:57:CD:CA:1A:40:FC:BB:C4:2F:66:09 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B10 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/mRPGImsgV2u7V83KGkD8u8QvZgk.roa Signing time: Fri 31 Jan 2025 01:34:26 +0000 ROA not before: Fri 31 Jan 2025 01:34:26 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.97.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2832 (0xb10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:34:26 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=9913C6226B20576BBB57CDCA1A40FCBBC42F6609 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:56:2d:fd:45:b1:d7:d8:98:29:8a:40:88:a7: fa:16:2a:75:fb:d6:74:d1:a5:f4:74:ac:38:fb:7d: 8b:ca:ac:b8:f4:c6:15:c0:1e:a4:1e:de:88:62:bc: 4d:1a:f4:d3:7f:84:6d:d4:aa:94:29:23:6b:8d:22: a7:90:b1:c5:79:ec:d5:f4:72:87:4c:9a:43:44:27: 6e:30:f8:4e:36:2f:11:e4:c4:2b:4d:df:c8:85:85: 37:0b:b6:65:cf:57:12:7e:f9:81:3c:7a:bf:d0:9c: 26:a6:14:aa:0e:41:fe:de:92:6c:17:cd:3b:de:c3: 57:cd:a8:7d:29:83:35:a7:ff:9d:90:18:5e:36:cd: 80:d6:aa:a9:91:34:13:77:23:0a:d9:25:2c:b4:3d: 6a:53:71:6b:cb:0c:52:6b:7b:ca:db:af:4c:e4:9c: 41:10:46:e3:fe:ed:20:ea:87:ed:fa:3c:fc:7a:cc: ab:8f:42:5a:30:a1:03:cc:14:2d:ed:dc:fc:34:7a: 61:82:0a:4c:fe:37:83:ce:91:27:28:68:c0:1a:f7: 02:29:3f:63:65:3b:66:87:6b:dc:59:47:1f:a7:8e: 83:95:42:81:ad:96:f0:c0:7e:fc:2b:f1:c3:8c:4f: ca:36:6c:12:2e:50:58:31:f3:22:58:16:91:18:22: 78:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:13:C6:22:6B:20:57:6B:BB:57:CD:CA:1A:40:FC:BB:C4:2F:66:09 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/mRPGImsgV2u7V83KGkD8u8QvZgk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.97.104.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:f7:9b:b2:78:51:14:9f:a1:b0:98:84:1e:f6:58:6e:de:c1: da:bc:8d:13:30:13:83:3e:27:0c:16:b2:1a:c7:4b:3a:f8:c2: 57:0d:38:dc:04:8f:c4:0b:7a:04:95:6a:50:64:0a:a2:86:9a: 9a:6a:20:e5:5b:48:91:7d:95:e2:ea:cc:af:c5:10:73:82:18: 9a:1c:6a:71:03:d7:6a:f0:41:2c:1a:36:01:a9:c9:b1:4c:78: 87:6b:d0:cc:a8:db:e5:f8:b5:4a:d4:06:d5:73:18:d3:7c:5e: 30:65:8c:59:10:4d:1c:81:5c:ba:55:45:4d:85:35:32:e7:0b: c9:ca:e4:58:5e:46:ac:a6:da:62:88:58:57:9b:cf:fe:b1:79: fa:a9:13:9a:11:fb:5b:a1:a2:9b:6a:d2:74:24:a6:ea:03:65: da:9e:07:24:6e:8d:d4:83:f2:30:e6:3a:b4:ab:d5:7e:cd:50: 79:da:8b:9a:5d:13:89:09:2b:03:da:7b:9c:2f:cb:6f:bf:c6: 81:f3:ae:3c:79:95:67:6d:87:a6:04:24:42:e3:9f:97:30:40: 8d:bd:70:34:f5:87:c5:28:05:a5:af:f3:cf:95:a4:48:c5:e5: 0d:7a:36:b5:1d:0b:5c:0f:8b:87:64:6a:36:ef:5a:2e:22:c6: 50:7f:b0:70 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCxAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTM0MjZaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDk5MTNDNjIyNkIyMDU3 NkJCQjU3Q0RDQTFBNDBGQ0JCQzQyRjY2MDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKVi39RbHX2JgpikCIp/oWKnX71nTRpfR0rDj7fYvKrLj0xhXA HqQe3ohivE0a9NN/hG3UqpQpI2uNIqeQscV57NX0codMmkNEJ24w+E42LxHkxCtN 38iFhTcLtmXPVxJ++YE8er/QnCamFKoOQf7ekmwXzTvew1fNqH0pgzWn/52QGF42 zYDWqqmRNBN3IwrZJSy0PWpTcWvLDFJre8rbr0zknEEQRuP+7SDqh+36PPx6zKuP QlowoQPMFC3t3Pw0emGCCkz+N4POkScoaMAa9wIpP2NlO2aHa9xZRx+njoOVQoGt lvDAfvwr8cOMT8o2bBIuUFgx8yJYFpEYInh3AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUmRPGImsgV2u7V83KGkD8u8QvZgkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L21SUEdJbXNnVjJ1N1Y4M0tHa0Q4dThRdlpnay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxYWgwDQYJKoZIhvcNAQELBQADggEBAF/3m7J4URSfobCYhB72WG7ewdq8 jRMwE4M+JwwWshrHSzr4wlcNONwEj8QLegSValBkCqKGmppqIOVbSJF9leLqzK/F EHOCGJocanED12rwQSwaNgGpybFMeIdr0Myo2+X4tUrUBtVzGNN8XjBljFkQTRyB XLpVRU2FNTLnC8nK5FheRqym2mKIWFebz/6xefqpE5oR+1uhoptq0nQkpuoDZdqe ByRujdSD8jDmOrSr1X7NUHnai5pdE4kJKwPae5wvy2+/xoHzrjx5lWdth6YEJELj n5cwQI29cDT1h8UoBaWv88+VpEjF5Q16NrUdC1wPi4dkajbvWi4ixlB/sHA= -----END CERTIFICATE-----Generated at Wed Feb 19 22:38:21 2025 by rpki-client