$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/o26X_xhN6jVgJbwqlCXMga9LJaU.roa File: o26X_xhN6jVgJbwqlCXMga9LJaU.roa (raw, json) Hash identifier: OWUVevL2hJqLBmBTlrYWx+DlKeR4b2C37j70hWMWtOk= Subject key identifier: A3:6E:97:FF:18:4D:EA:35:60:25:BC:2A:94:25:CC:81:AF:4B:25:A5 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 092A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/o26X_xhN6jVgJbwqlCXMga9LJaU.roa Signing time: Tue 30 Apr 2024 02:30:30 +0000 ROA not before: Tue 30 Apr 2024 02:30:30 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.144.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2346 (0x92a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:30:30 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=A36E97FF184DEA356025BC2A9425CC81AF4B25A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2a:64:5d:38:48:e6:cf:2d:f3:53:c5:b6:07: e5:94:85:d2:5e:7e:80:c5:9a:85:16:b2:11:59:1c: 1a:14:50:68:40:55:59:70:8e:8d:ad:dc:85:48:50: 16:78:ae:05:df:75:d3:e0:6d:00:4b:6a:08:fb:b2: ae:90:1c:dd:ed:79:be:0a:50:c9:c8:fa:a0:e4:fd: 90:dd:22:8c:44:d0:48:2a:14:46:7b:d8:1e:81:f4: 55:48:9f:ef:b8:f7:dc:ed:6c:59:cc:25:1b:e5:3b: 93:b6:8c:ba:d7:f8:43:4b:b2:67:e0:b0:54:c2:67: e7:33:93:6f:4c:a8:03:aa:1b:7a:5d:fe:83:92:51: d5:ef:5f:77:2e:a8:43:23:3e:ce:c9:ca:fb:f3:d1: 06:f5:25:35:70:a6:9c:0c:41:8f:af:5c:da:c4:51: e1:bc:12:56:d9:10:de:6f:4a:ba:01:b3:1e:ac:80: 9e:d1:16:34:a7:48:11:ef:81:7c:72:77:62:83:8d: eb:0c:cb:fb:75:55:4c:b1:26:d9:fa:a2:8d:27:ed: cf:34:16:85:a4:33:02:3c:68:6c:fb:40:27:5e:45: ee:cc:f3:11:38:c9:de:5b:63:f3:e0:0d:27:4b:8d: b6:e5:a1:73:6d:94:a8:35:8b:7f:97:c6:05:56:22: 22:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:6E:97:FF:18:4D:EA:35:60:25:BC:2A:94:25:CC:81:AF:4B:25:A5 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/o26X_xhN6jVgJbwqlCXMga9LJaU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.144.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:b6:16:fb:33:60:21:26:8f:ca:d8:bb:50:e0:0c:f6:82:56: c7:c7:cb:a6:93:fc:4d:94:71:ea:04:de:2d:7e:f6:7b:2f:77: a0:9b:6c:1a:7c:d8:ee:62:a0:91:d9:a2:6b:ac:ff:87:de:69: 1c:19:75:e9:99:8c:a9:46:e8:49:6f:5d:17:a3:67:57:89:e0: cd:53:6c:7b:05:11:03:0f:38:64:e0:f0:c5:0c:3e:b3:c7:18: db:93:e4:77:9c:f0:6c:a3:2f:91:3a:79:d0:df:99:a7:53:83: 2a:b5:91:34:57:c9:c1:0b:0d:04:8c:48:66:70:f3:93:32:6c: 98:2b:49:58:3f:48:7d:cc:b7:1f:d9:15:69:b0:41:43:17:91: dd:f4:78:7c:d7:f7:b5:17:a1:63:2d:9f:18:f6:2d:51:b4:82: f2:a8:f0:ff:fb:a4:17:1d:fd:71:f0:b8:19:43:06:fc:4c:dc: fa:36:97:b7:0c:9d:14:c6:4f:e6:ce:ae:c4:b7:e5:7e:9c:fb: c0:45:0f:19:d9:68:ec:ae:85:7a:e1:cb:0b:70:3d:fc:25:3f: 86:99:f8:96:4a:3a:0f:27:72:39:64:a6:02:ce:72:19:a0:ee: 23:71:63:30:61:3c:96:0e:c2:af:93:21:c9:70:7c:ea:74:36: 13:e0:03:69 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCSowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjMwMzBaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEEzNkU5N0ZGMTg0REVB MzU2MDI1QkMyQTk0MjVDQzgxQUY0QjI1QTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzKmRdOEjmzy3zU8W2B+WUhdJefoDFmoUWshFZHBoUUGhAVVlw jo2t3IVIUBZ4rgXfddPgbQBLagj7sq6QHN3teb4KUMnI+qDk/ZDdIoxE0EgqFEZ7 2B6B9FVIn++499ztbFnMJRvlO5O2jLrX+ENLsmfgsFTCZ+czk29MqAOqG3pd/oOS UdXvX3cuqEMjPs7Jyvvz0Qb1JTVwppwMQY+vXNrEUeG8ElbZEN5vSroBsx6sgJ7R FjSnSBHvgXxyd2KDjesMy/t1VUyxJtn6oo0n7c80FoWkMwI8aGz7QCdeRe7M8xE4 yd5bY/PgDSdLjbbloXNtlKg1i3+XxgVWIiIBAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUo26X/xhN6jVgJbwqlCXMga9LJaUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L28yNlhfeGhONmpWZ0pid3FsQ1hNZ2E5TEphVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYpAwDQYJKoZIhvcNAQELBQADggEBAD62FvszYCEmj8rYu1DgDPaCVsfH y6aT/E2UceoE3i1+9nsvd6CbbBp82O5ioJHZomus/4feaRwZdemZjKlG6ElvXRej Z1eJ4M1TbHsFEQMPOGTg8MUMPrPHGNuT5Hec8GyjL5E6edDfmadTgyq1kTRXycEL DQSMSGZw85MybJgrSVg/SH3Mtx/ZFWmwQUMXkd30eHzX97UXoWMtnxj2LVG0gvKo 8P/7pBcd/XHwuBlDBvxM3Po2l7cMnRTGT+bOrsS35X6c+8BFDxnZaOyuhXrhywtw PfwlP4aZ+JZKOg8ncjlkpgLOchmg7iNxYzBhPJYOwq+TIclwfOp0NhPgA2k= -----END CERTIFICATE-----Generated at Sun Feb 16 22:07:08 2025 by rpki-client