$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/rTgd-PiqGH9HSXCTdUWyzoRZrc4.roa File: rTgd-PiqGH9HSXCTdUWyzoRZrc4.roa (raw, json) Hash identifier: os4l13JLAu/tOEjHI5FxOd4XdFxgCcy+2IHOVsKxQuY= Subject key identifier: AD:38:1D:F8:F8:AA:18:7F:47:49:70:93:75:45:B2:CE:84:59:AD:CE Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 066E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/rTgd-PiqGH9HSXCTdUWyzoRZrc4.roa Signing time: Tue 30 Apr 2024 01:34:57 +0000 ROA not before: Tue 30 Apr 2024 01:34:57 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 20:25:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1646 (0x66e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:34:57 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=AD381DF8F8AA187F474970937545B2CE8459ADCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a9:02:7d:c1:31:9c:12:41:51:25:e2:f3:5a: 3b:da:1d:3e:a1:31:80:82:2b:bb:a0:88:2b:26:7a: b1:b0:ba:3d:f6:20:fa:ed:98:29:23:c5:0b:7c:e1: ab:c9:29:0f:bf:fb:70:bd:4a:5d:1b:b6:c2:12:df: 96:e0:a5:ca:69:e0:34:b6:1e:e8:05:ec:d7:22:90: e9:5b:fa:31:79:bf:3a:4d:51:57:d0:d8:ea:60:45: 59:04:5f:52:bd:b0:cb:dd:40:9b:44:10:8f:84:2a: 99:87:24:11:36:2e:0e:50:07:8e:d2:f0:6f:07:f5: 8f:da:82:b0:2d:c2:f7:d1:6b:21:eb:da:ef:ed:0a: ee:2f:62:c5:1d:a4:30:ca:2a:2d:04:8d:f0:db:41: 05:c8:64:06:ac:3a:25:e8:32:7e:af:c5:70:cc:5f: 4a:97:1d:b8:e8:a8:ad:55:a5:bf:a8:d6:41:68:78: 1b:1f:f7:1d:17:b9:84:b6:36:0d:59:f1:c2:f4:a4: 6c:57:ec:a6:10:0b:cf:e2:36:4d:38:de:3e:c3:64: 06:fe:c3:1d:04:25:0b:0b:5d:3b:3f:1f:83:a3:aa: 6f:fb:3b:d2:54:6a:99:5f:ef:bb:7c:77:eb:5d:ca: 03:82:40:bd:92:f3:43:31:0e:35:5c:df:ff:54:4f: 7d:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:38:1D:F8:F8:AA:18:7F:47:49:70:93:75:45:B2:CE:84:59:AD:CE X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/rTgd-PiqGH9HSXCTdUWyzoRZrc4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.29.0/24 Signature Algorithm: sha256WithRSAEncryption cb:70:a7:8d:8d:2c:3f:2d:5d:a4:85:54:72:e5:04:ca:28:9e: 6f:25:76:05:8a:44:14:43:e2:cc:51:67:f7:43:4c:3c:ff:f7: 14:f7:74:8a:46:8b:cb:2e:cd:e2:f1:66:aa:0a:66:f4:ba:5f: 89:e9:81:f4:4e:ac:29:c2:e7:ca:b7:27:66:c5:54:7d:32:8a: 9e:74:57:84:f6:83:52:94:2f:a9:53:a2:56:43:06:18:37:6c: 66:ec:57:d5:ca:ac:fb:16:6b:47:92:d4:4c:91:1e:30:14:b9: e1:b9:70:a7:7a:32:ff:f2:c2:31:3f:20:92:43:85:3f:5f:9e: c4:e7:aa:43:fa:28:62:70:d4:d5:a7:52:ff:f6:4c:56:dc:a5: 76:6c:07:d9:6a:8f:68:99:da:b1:3b:96:d8:ac:68:8c:08:fe: ac:3e:01:b9:c3:fb:0b:ca:ae:af:cf:8c:8d:00:0d:e9:7b:33: 83:81:e5:9b:66:8f:66:aa:89:69:14:7d:dc:7a:79:db:f9:a1: 45:8a:ea:81:55:f8:49:e4:f5:9d:ed:a0:9e:32:e5:12:3b:14: a3:ee:36:02:08:e7:06:93:01:a2:f6:dd:0f:dd:2a:73:b7:e5: a0:38:83:e5:11:e6:03:25:e6:5c:5d:77:d0:43:d9:d6:f7:ed: af:d5:2d:27 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBm4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTM0NTdaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEFEMzgxREY4RjhBQTE4 N0Y0NzQ5NzA5Mzc1NDVCMkNFODQ1OUFEQ0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCqQJ9wTGcEkFRJeLzWjvaHT6hMYCCK7ugiCsmerGwuj32IPrt mCkjxQt84avJKQ+/+3C9Sl0btsIS35bgpcpp4DS2HugF7NcikOlb+jF5vzpNUVfQ 2OpgRVkEX1K9sMvdQJtEEI+EKpmHJBE2Lg5QB47S8G8H9Y/agrAtwvfRayHr2u/t Cu4vYsUdpDDKKi0EjfDbQQXIZAasOiXoMn6vxXDMX0qXHbjoqK1Vpb+o1kFoeBsf 9x0XuYS2Ng1Z8cL0pGxX7KYQC8/iNk043j7DZAb+wx0EJQsLXTs/H4Ojqm/7O9JU aplf77t8d+tdygOCQL2S80MxDjVc3/9UT30pAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUrTgd+PiqGH9HSXCTdUWyzoRZrc4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3JUZ2QtUGlxR0g5SFNYQ1RkVVd5em9SWnJjNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABTx0wDQYJKoZIhvcNAQELBQADggEBAMtwp42NLD8tXaSFVHLlBMoonm8l dgWKRBRD4sxRZ/dDTDz/9xT3dIpGi8suzeLxZqoKZvS6X4npgfROrCnC58q3J2bF VH0yip50V4T2g1KUL6lTolZDBhg3bGbsV9XKrPsWa0eS1EyRHjAUueG5cKd6Mv/y wjE/IJJDhT9fnsTnqkP6KGJw1NWnUv/2TFbcpXZsB9lqj2iZ2rE7ltisaIwI/qw+ AbnD+wvKrq/PjI0ADel7M4OB5Ztmj2aqiWkUfdx6edv5oUWK6oFV+Enk9Z3toJ4y 5RI7FKPuNgII5waTAaL23Q/dKnO35aA4g+UR5gMl5lxdd9BD2db37a/VLSc= -----END CERTIFICATE-----Generated at Thu Mar 13 01:48:47 2025 by rpki-client