$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/oxH4qggdXmAVH4J1kkb8C0-wwag.roa File: oxH4qggdXmAVH4J1kkb8C0-wwag.roa (raw, json) Hash identifier: R8OspuWQYCFNNTSpOlBM4lui4iJjAgtRan4bmXDdODg= Subject key identifier: A3:11:F8:AA:08:1D:5E:60:15:1F:82:75:92:46:FC:0B:4F:B0:C1:A8 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0AFB Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/oxH4qggdXmAVH4J1kkb8C0-wwag.roa Signing time: Fri 31 Jan 2025 01:34:16 +0000 ROA not before: Fri 31 Jan 2025 01:34:16 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.224.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2811 (0xafb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:34:16 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=A311F8AA081D5E60151F82759246FC0B4FB0C1A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:83:ce:11:54:2a:87:29:ff:5d:9a:ea:3a:d6: 5a:5c:c0:fa:c9:cb:f3:c0:fe:d8:c9:09:77:56:08: f8:39:09:45:e1:78:a4:fa:6a:f3:a2:12:8a:6e:08: 1c:df:d3:d9:31:35:53:36:c6:f2:8a:fe:67:b9:cd: f7:fd:14:71:55:f0:ca:49:bd:f0:53:cc:ec:06:9a: a0:ea:7d:03:77:7c:78:49:da:b3:8f:de:9d:ac:0a: ea:3e:41:25:49:99:93:98:75:1b:0c:10:25:1b:41: a9:78:59:7a:bf:c4:e9:b5:3e:1b:f6:c5:c4:97:dd: 9c:6b:65:b0:55:f5:79:fa:91:e8:72:42:01:62:a8: 83:6e:d5:92:d6:cc:c3:b8:99:c6:0c:29:eb:55:9d: ba:e5:57:16:6f:3d:bf:10:37:0c:94:b8:09:43:11: af:4a:57:7b:bf:bf:6e:6d:f0:39:a8:73:c4:49:27: 75:7a:e8:46:36:8a:32:f1:fd:94:5e:85:cd:30:d1: b7:6b:94:9e:70:ab:6d:b4:c3:d4:f8:8b:c8:f6:19: 0f:91:54:4c:4a:a6:8e:72:ef:d3:92:19:65:43:cd: c1:4b:47:f4:5a:54:68:c3:0f:e7:34:31:f9:45:82: 28:44:e2:06:5d:6d:dd:65:cc:d5:4c:b7:3f:73:32: 8d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:11:F8:AA:08:1D:5E:60:15:1F:82:75:92:46:FC:0B:4F:B0:C1:A8 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/oxH4qggdXmAVH4J1kkb8C0-wwag.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.224.0/22 Signature Algorithm: sha256WithRSAEncryption 07:18:39:73:7c:5d:7f:ba:94:30:4c:65:33:8c:35:b9:b3:c6: 74:8f:b8:3e:c5:69:27:a9:c2:55:a5:26:66:75:79:2d:bc:68: 48:bc:59:86:52:c1:7d:0f:f7:37:c3:10:bf:4c:e3:ba:57:c3: e4:cf:c9:c8:34:c9:4f:be:53:61:b3:df:55:be:cb:71:69:2c: bb:87:a8:b8:b7:56:48:a4:50:08:eb:89:e4:85:e4:df:4b:4e: b4:09:75:a4:23:8f:b3:93:af:af:46:08:e2:c1:41:b6:d8:17: 66:54:de:cd:34:38:f1:d1:9b:ba:e7:63:57:0c:55:6e:45:ed: b9:01:46:44:ad:c0:b8:d5:3d:85:8b:cb:f5:4b:a6:fe:af:65: a1:e0:5a:fb:21:03:9d:fe:4e:4a:e4:43:00:d8:1d:15:a4:20: 2b:e4:9b:e0:04:ff:f3:aa:f9:f5:2c:3a:98:37:df:3f:b4:cb: 9d:a7:29:c0:85:57:0a:3c:11:fd:50:10:58:9a:86:95:ca:14: 38:93:aa:0f:1e:f7:7f:a3:b7:2e:87:6e:73:3d:d4:42:df:fa: 7c:cf:08:a3:17:eb:0b:0a:e2:82:ac:f8:1c:e4:22:0d:6d:26: f6:47:9b:da:63:e5:83:de:06:5d:9d:9e:35:88:c3:83:4a:20: 94:c0:7c:63 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCvswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTM0MTZaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEEzMTFGOEFBMDgxRDVF NjAxNTFGODI3NTkyNDZGQzBCNEZCMEMxQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMg84RVCqHKf9dmuo61lpcwPrJy/PA/tjJCXdWCPg5CUXheKT6 avOiEopuCBzf09kxNVM2xvKK/me5zff9FHFV8MpJvfBTzOwGmqDqfQN3fHhJ2rOP 3p2sCuo+QSVJmZOYdRsMECUbQal4WXq/xOm1Phv2xcSX3ZxrZbBV9Xn6kehyQgFi qINu1ZLWzMO4mcYMKetVnbrlVxZvPb8QNwyUuAlDEa9KV3u/v25t8Dmoc8RJJ3V6 6EY2ijLx/ZRehc0w0bdrlJ5wq220w9T4i8j2GQ+RVExKpo5y79OSGWVDzcFLR/Ra VGjDD+c0MflFgihE4gZdbd1lzNVMtz9zMo37AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUoxH4qggdXmAVH4J1kkb8C0+wwagwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L294SDRxZ2dkWG1BVkg0SjFra2I4QzAtd3dhZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBS+AwDQYJKoZIhvcNAQELBQADggEBAAcYOXN8XX+6lDBMZTOMNbmzxnSP uD7FaSepwlWlJmZ1eS28aEi8WYZSwX0P9zfDEL9M47pXw+TPycg0yU++U2Gz31W+ y3FpLLuHqLi3VkikUAjrieSF5N9LTrQJdaQjj7OTr69GCOLBQbbYF2ZU3s00OPHR m7rnY1cMVW5F7bkBRkStwLjVPYWLy/VLpv6vZaHgWvshA53+TkrkQwDYHRWkICvk m+AE//Oq+fUsOpg33z+0y52nKcCFVwo8Ef1QEFiahpXKFDiTqg8e93+jty6HbnM9 1ELf+nzPCKMX6wsK4oKs+BzkIg1tJvZHm9pj5YPeBl2dnjWIw4NKIJTAfGM= -----END CERTIFICATE-----Generated at Wed Feb 19 22:32:34 2025 by rpki-client