$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/oXbpcwfMpbBOCrVWZnlKYh0JrKY.roa File: oXbpcwfMpbBOCrVWZnlKYh0JrKY.roa (raw, json) Hash identifier: 27VtOheHc4aCwFJoAg282gl11/2EaJiXgMgFDJJPyCA= Subject key identifier: A1:76:E9:73:07:CC:A5:B0:4E:0A:B5:56:66:79:4A:62:1D:09:AC:A6 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A39 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/oXbpcwfMpbBOCrVWZnlKYh0JrKY.roa Signing time: Sun 30 Jun 2024 01:46:37 +0000 ROA not before: Sun 30 Jun 2024 01:46:37 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.67.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2617 (0xa39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:46:37 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=A176E97307CCA5B04E0AB55666794A621D09ACA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:31:1c:49:f4:00:f3:56:0b:60:f6:e6:74:1e: 99:73:68:bb:a8:fc:3e:5f:38:bd:c2:b1:17:48:13: e4:33:9e:c1:dc:39:d0:a4:83:77:b4:4b:d5:55:ce: 5b:7e:e6:82:8d:19:47:07:89:1e:2a:e4:9a:a1:1a: 08:40:4f:bc:ae:81:bb:0b:61:04:95:2d:be:ab:e5: 3c:27:cf:0d:ab:ec:81:f1:59:d3:f4:b2:a0:53:2d: 91:2c:4e:4e:5e:03:70:a9:2b:39:15:4f:4c:ab:e6: 57:b4:08:d7:28:63:ad:a7:55:0f:91:00:bd:87:e9: 36:88:72:2f:ef:99:fb:9e:cd:0a:85:7a:28:b3:a6: b4:40:f2:6a:44:12:1c:fd:16:5a:56:7a:2c:1d:bd: 10:95:47:99:58:a1:6f:d8:41:6e:d9:fd:ec:1d:e2: 8c:0a:0b:58:aa:14:a2:82:d0:12:ea:e9:45:65:17: ac:95:7a:80:2a:65:89:ac:5a:a1:93:1f:4e:80:e8: 7f:e5:74:cb:f9:8d:1f:20:d2:fb:1c:a6:cc:8d:d2: 93:73:c9:a9:4b:0d:e2:ed:5f:93:a7:a7:97:f4:05: e3:d2:a7:3c:4b:20:05:da:ed:ff:ee:a9:41:f9:53: 5c:51:ec:c0:0d:ad:dc:6d:4b:62:6f:f7:4e:fc:e3: e3:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:76:E9:73:07:CC:A5:B0:4E:0A:B5:56:66:79:4A:62:1D:09:AC:A6 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/oXbpcwfMpbBOCrVWZnlKYh0JrKY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.67.208.0/20 Signature Algorithm: sha256WithRSAEncryption cf:00:4c:b8:2e:78:85:33:6d:37:c7:14:93:5a:ba:50:ce:b0: cf:91:5f:6a:db:01:60:5f:30:a3:37:e3:b1:ff:93:af:8c:9e: e1:e4:83:c3:12:a8:a9:56:24:80:be:4c:22:95:15:e9:a5:2b: 36:7b:64:a0:20:d1:e4:bc:19:cf:53:cd:2d:e7:43:4e:24:08: 41:a2:f9:18:f1:48:2c:65:eb:70:b3:94:a8:ca:0b:6c:ba:fd: fe:0b:f3:d2:ab:19:f5:46:57:e6:c9:97:ff:d5:0f:4b:ca:cd: e4:f4:1e:b5:02:4b:21:b1:61:47:11:9b:25:00:e5:0e:54:40: 3f:4d:e4:e8:7b:57:cf:0e:0f:c0:a5:36:4e:77:8d:11:69:59: 38:99:44:23:eb:cc:39:af:79:de:f4:6f:cc:e3:e6:8a:f1:e3: 0e:45:b7:80:e2:13:30:4b:61:fc:fa:52:04:8b:80:01:ab:90: 7a:eb:9f:13:82:fa:51:3c:32:a7:58:ec:44:5c:6a:d3:5d:4e: ae:bc:c3:10:af:b5:ef:b1:25:5a:02:ba:3d:c7:d7:6d:f3:66: e4:98:eb:55:32:b3:f5:34:66:3d:fc:9b:46:5f:70:52:0c:b8: e0:73:64:61:8a:d2:12:28:82:85:a4:44:95:44:18:95:0f:b3: 18:f5:79:dc -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCjkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQ2MzdaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEExNzZFOTczMDdDQ0E1 QjA0RTBBQjU1NjY2Nzk0QTYyMUQwOUFDQTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbMRxJ9ADzVgtg9uZ0HplzaLuo/D5fOL3CsRdIE+QznsHcOdCk g3e0S9VVzlt+5oKNGUcHiR4q5JqhGghAT7yugbsLYQSVLb6r5Twnzw2r7IHxWdP0 sqBTLZEsTk5eA3CpKzkVT0yr5le0CNcoY62nVQ+RAL2H6TaIci/vmfuezQqFeiiz prRA8mpEEhz9FlpWeiwdvRCVR5lYoW/YQW7Z/ewd4owKC1iqFKKC0BLq6UVlF6yV eoAqZYmsWqGTH06A6H/ldMv5jR8g0vscpsyN0pNzyalLDeLtX5Onp5f0BePSpzxL IAXa7f/uqUH5U1xR7MANrdxtS2Jv90784+MVAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUoXbpcwfMpbBOCrVWZnlKYh0JrKYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L29YYnBjd2ZNcGJCT0NyVldabmxLWWgwSnJLWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQBQ9AwDQYJKoZIhvcNAQELBQADggEBAM8ATLgueIUzbTfHFJNaulDOsM+R X2rbAWBfMKM347H/k6+MnuHkg8MSqKlWJIC+TCKVFemlKzZ7ZKAg0eS8Gc9TzS3n Q04kCEGi+RjxSCxl63CzlKjKC2y6/f4L89KrGfVGV+bJl//VD0vKzeT0HrUCSyGx YUcRmyUA5Q5UQD9N5Oh7V88OD8ClNk53jRFpWTiZRCPrzDmved70b8zj5orx4w5F t4DiEzBLYfz6UgSLgAGrkHrrnxOC+lE8MqdY7ERcatNdTq68wxCvte+xJVoCuj3H 123zZuSY61Uys/U0Zj38m0ZfcFIMuOBzZGGK0hIogoWkRJVEGJUPsxj1edw= -----END CERTIFICATE-----Generated at Sun Feb 16 22:31:06 2025 by rpki-client