$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ogpYnbhMB2C7_diFNC_FWuJ7y30.roa File: ogpYnbhMB2C7_diFNC_FWuJ7y30.roa (raw, json) Hash identifier: EDleUhUZXoK5tjeB6vZqzDulip4nmfstsawJ7tuYbFM= Subject key identifier: A2:0A:58:9D:B8:4C:07:60:BB:FD:D8:85:34:2F:C5:5A:E2:7B:CB:7D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A8C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ogpYnbhMB2C7_diFNC_FWuJ7y30.roa Signing time: Sun 30 Jun 2024 01:52:37 +0000 ROA not before: Sun 30 Jun 2024 01:52:37 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.79.44.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 23:55:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2700 (0xa8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:52:37 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=A20A589DB84C0760BBFDD885342FC55AE27BCB7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:01:88:ad:2e:4b:42:2b:b1:a1:6b:7c:ed:fb: ed:5c:2c:6e:44:65:2e:a0:7b:fb:ee:62:75:94:59: 41:2b:d3:a1:14:c6:a5:e9:69:78:87:ba:7f:c7:09: cf:45:55:15:82:c1:73:8d:3a:f2:d9:dc:cf:88:14: 72:25:28:9d:54:f2:0e:39:de:8f:10:c6:98:57:00: 0b:90:8e:49:4a:24:5f:dc:55:4c:7e:57:d7:92:d3: 01:1b:76:79:84:e7:c0:da:5a:44:1d:fc:8a:30:02: 05:a6:01:6b:2a:22:b7:db:f7:18:aa:cb:30:80:02: 3c:48:9f:94:ea:b7:19:66:34:41:d3:2b:98:19:40: 6e:df:5a:fe:e9:1a:bc:1b:1f:76:fa:6c:66:7f:51: 7b:66:50:a2:d3:4a:16:ce:30:cc:7d:9f:21:4b:6c: 05:bc:e8:c2:13:73:fc:f2:d8:b9:2f:43:ea:ff:1c: 19:91:b3:93:9e:6b:fa:0c:95:54:eb:fd:a0:bd:31: c7:af:d5:28:23:64:3f:80:8c:e5:6c:d9:e0:16:82: 17:e8:eb:e9:7b:4e:fb:8e:ca:1d:f4:54:63:7e:50: 82:a2:75:7d:97:41:6e:40:c3:c6:6b:80:a8:b6:4f: 25:f5:8d:04:01:e8:52:70:b2:93:6c:5c:c6:09:ca: 2a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:0A:58:9D:B8:4C:07:60:BB:FD:D8:85:34:2F:C5:5A:E2:7B:CB:7D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ogpYnbhMB2C7_diFNC_FWuJ7y30.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.44.0/22 Signature Algorithm: sha256WithRSAEncryption 75:2d:fd:7f:9f:06:17:34:db:21:c3:08:5d:c1:5c:ea:d6:78: fd:98:75:13:2d:95:a5:7d:e9:1b:92:5f:03:af:d9:fc:ff:15: 2f:a9:72:80:bd:14:8d:66:8a:0b:20:9a:68:4e:8e:71:11:8a: e2:1a:95:c0:54:67:6a:3c:0b:ce:cb:58:8f:72:56:a6:e6:6c: 7f:f2:55:6e:d7:13:c6:e9:c6:a9:6a:9a:b9:bf:ee:82:38:8a: 5c:04:09:d5:5b:62:f0:7a:c7:58:e4:5a:7e:87:04:9a:68:0c: a3:17:ba:f1:29:66:c9:4e:6f:58:54:6f:62:b7:9e:6a:1f:bc: 16:31:30:1b:24:6d:6c:57:fe:bc:ee:7d:78:91:2d:69:15:ca: c8:13:28:63:ef:9a:1c:9e:19:b1:45:6c:0e:43:79:af:57:04: ba:1a:df:ee:00:b2:56:6e:3d:18:28:38:42:4b:be:9b:1b:11: aa:91:e5:15:9b:f3:a1:6b:cd:b3:ba:f1:de:fc:03:5e:c5:26: d6:66:58:c8:b5:9d:84:57:46:4d:4b:92:dc:61:51:4d:fd:3d: 11:a7:a1:42:fd:88:ec:f9:5d:7f:4a:07:ad:65:48:34:9c:dd: e5:4a:0f:b8:a4:47:19:3c:3d:eb:54:0f:1d:f2:7c:a3:95:ed: 3f:73:f4:9e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCowwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTUyMzdaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEEyMEE1ODlEQjg0QzA3 NjBCQkZERDg4NTM0MkZDNTVBRTI3QkNCN0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpAYitLktCK7Gha3zt++1cLG5EZS6ge/vuYnWUWUEr06EUxqXp aXiHun/HCc9FVRWCwXONOvLZ3M+IFHIlKJ1U8g453o8QxphXAAuQjklKJF/cVUx+ V9eS0wEbdnmE58DaWkQd/IowAgWmAWsqIrfb9xiqyzCAAjxIn5TqtxlmNEHTK5gZ QG7fWv7pGrwbH3b6bGZ/UXtmUKLTShbOMMx9nyFLbAW86MITc/zy2LkvQ+r/HBmR s5Oea/oMlVTr/aC9Mcev1SgjZD+AjOVs2eAWghfo6+l7TvuOyh30VGN+UIKidX2X QW5Aw8ZrgKi2TyX1jQQB6FJwspNsXMYJyip5AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUogpYnbhMB2C7/diFNC/FWuJ7y30wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L29ncFluYmhNQjJDN19kaUZOQ19GV3VKN3kzMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBTywwDQYJKoZIhvcNAQELBQADggEBAHUt/X+fBhc02yHDCF3BXOrWeP2Y dRMtlaV96RuSXwOv2fz/FS+pcoC9FI1migsgmmhOjnERiuIalcBUZ2o8C87LWI9y VqbmbH/yVW7XE8bpxqlqmrm/7oI4ilwECdVbYvB6x1jkWn6HBJpoDKMXuvEpZslO b1hUb2K3nmofvBYxMBskbWxX/rzufXiRLWkVysgTKGPvmhyeGbFFbA5Dea9XBLoa 3+4AslZuPRgoOEJLvpsbEaqR5RWb86FrzbO68d78A17FJtZmWMi1nYRXRk1Lktxh UU39PRGnoUL9iOz5XX9KB61lSDSc3eVKD7ikRxk8PetUDx3yfKOV7T9z9J4= -----END CERTIFICATE-----Generated at Thu Mar 13 01:47:14 2025 by rpki-client