$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/rFBMu0Nc1hWB8aaH-HcDAfE6fPI.roa File: rFBMu0Nc1hWB8aaH-HcDAfE6fPI.roa (raw, json) Hash identifier: l+gGLUPuUj3QEPAEevoMrJFKpdrxizeCP1JQoIICMwQ= Subject key identifier: AC:50:4C:BB:43:5C:D6:15:81:F1:A6:87:F8:77:03:01:F1:3A:7C:F2 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0AE9 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/rFBMu0Nc1hWB8aaH-HcDAfE6fPI.roa Signing time: Fri 31 Jan 2025 01:28:30 +0000 ROA not before: Fri 31 Jan 2025 01:28:30 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.73.228.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2793 (0xae9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:28:30 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=AC504CBB435CD61581F1A687F8770301F13A7CF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:f2:2a:ca:fd:82:48:6f:21:11:a5:5e:21:2a: 28:d2:dd:73:27:9e:eb:17:eb:84:d3:6d:3c:27:f6: 12:c0:1b:14:f0:86:69:7d:a9:3a:36:31:23:43:a0: 05:65:0d:ab:b4:9c:cb:f5:bd:ba:de:19:00:42:84: 45:80:ba:a3:e4:a1:3a:dc:ee:5e:a7:9f:4b:cc:64: 42:48:c4:ff:18:54:41:0b:96:f3:f4:1a:3a:87:ac: a6:c8:a3:75:8d:26:0c:78:06:26:71:1f:e7:ce:30: 12:8d:3e:69:b6:ad:f5:e2:3f:6f:db:60:2d:05:bf: 16:e4:19:7f:cf:de:89:83:7b:d6:3f:eb:90:25:13: de:de:7d:85:9d:23:8c:15:54:82:08:43:2d:fd:08: 84:ed:8d:42:e0:f2:01:a5:ad:f8:2c:69:e1:71:32: 87:67:ca:aa:f5:be:95:b9:c3:67:02:b7:33:d3:d1: 42:2d:b7:47:87:6f:04:de:69:c9:7e:64:5b:c2:ca: 08:1e:20:87:69:e6:8d:a3:a2:b6:36:d0:c1:2c:d4: 93:c8:73:2c:28:48:cd:5b:15:38:f3:b3:35:7a:83: 6a:f9:5f:6d:d6:d0:cb:cf:1f:37:6d:f5:38:c8:e3: 55:15:ba:92:2b:b9:d5:fe:a9:52:7d:5a:17:e1:c3: 18:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:50:4C:BB:43:5C:D6:15:81:F1:A6:87:F8:77:03:01:F1:3A:7C:F2 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/rFBMu0Nc1hWB8aaH-HcDAfE6fPI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.73.228.0/22 Signature Algorithm: sha256WithRSAEncryption ad:1b:3e:49:b2:2d:e7:07:c1:1d:bc:56:48:47:79:56:34:57: a1:7b:cc:e5:94:30:6d:dd:5e:89:8c:ef:53:ac:ff:8e:20:fd: 61:ae:52:bb:7f:04:d3:65:75:51:39:41:0b:56:3f:67:ee:53: ad:29:7f:32:1c:b3:be:55:c9:08:29:77:4b:fb:94:ee:dd:8f: ef:4e:94:cd:e3:a8:8f:fb:0d:35:50:9d:b7:e9:5c:b4:1b:e4: b3:6c:41:4a:47:ed:a5:1e:98:60:0a:ba:3f:60:b9:e6:ac:b2: ee:cd:17:34:a1:9d:bf:a9:f9:14:7f:75:71:dd:bc:05:49:59: ee:27:15:41:94:e2:b0:87:b6:c0:b7:38:12:db:c7:0a:9e:a6: 56:84:08:fb:53:b5:f4:1f:08:f6:40:d6:6e:88:b3:2a:6c:a4: 5a:11:49:99:eb:d5:cc:98:2e:7e:89:46:ae:cd:ac:24:b4:9d: 73:c4:1e:d1:07:b1:1f:94:3c:54:75:96:9b:7c:d6:de:15:3f: 18:fb:d4:02:1a:a1:49:80:73:80:4d:03:59:c3:e1:a5:c5:9b: b2:4a:61:e7:e2:6c:40:49:7e:a2:8c:a4:ea:68:54:ce:2b:50: ad:af:c0:46:92:9e:ab:24:79:d5:51:09:a4:70:76:09:f1:37: b9:26:c3:88 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCukwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTI4MzBaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEFDNTA0Q0JCNDM1Q0Q2 MTU4MUYxQTY4N0Y4NzcwMzAxRjEzQTdDRjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCa8irK/YJIbyERpV4hKijS3XMnnusX64TTbTwn9hLAGxTwhml9 qTo2MSNDoAVlDau0nMv1vbreGQBChEWAuqPkoTrc7l6nn0vMZEJIxP8YVEELlvP0 GjqHrKbIo3WNJgx4BiZxH+fOMBKNPmm2rfXiP2/bYC0FvxbkGX/P3omDe9Y/65Al E97efYWdI4wVVIIIQy39CITtjULg8gGlrfgsaeFxModnyqr1vpW5w2cCtzPT0UIt t0eHbwTeacl+ZFvCyggeIIdp5o2jorY20MEs1JPIcywoSM1bFTjzszV6g2r5X23W 0MvPHzdt9TjI41UVupIrudX+qVJ9WhfhwxhTAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUrFBMu0Nc1hWB8aaH+HcDAfE6fPIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3JGQk11ME5jMWhXQjhhYUgtSGNEQWZFNmZQSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBSeQwDQYJKoZIhvcNAQELBQADggEBAK0bPkmyLecHwR28VkhHeVY0V6F7 zOWUMG3dXomM71Os/44g/WGuUrt/BNNldVE5QQtWP2fuU60pfzIcs75VyQgpd0v7 lO7dj+9OlM3jqI/7DTVQnbfpXLQb5LNsQUpH7aUemGAKuj9gueassu7NFzShnb+p +RR/dXHdvAVJWe4nFUGU4rCHtsC3OBLbxwqeplaECPtTtfQfCPZA1m6IsypspFoR SZnr1cyYLn6JRq7NrCS0nXPEHtEHsR+UPFR1lpt81t4VPxj71AIaoUmAc4BNA1nD 4aXFm7JKYefibEBJfqKMpOpoVM4rUK2vwEaSnqskedVRCaRwdgnxN7kmw4g= -----END CERTIFICATE-----Generated at Wed Feb 19 22:32:34 2025 by rpki-client