$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/s3ezBZWMon2-4VEhG_VZUsFtayE.roa File: s3ezBZWMon2-4VEhG_VZUsFtayE.roa (raw, json) Hash identifier: mXopN1AhE3brPnvygamwnrmGelKAOrOdMeiped68fxk= Subject key identifier: B3:77:B3:05:95:8C:A2:7D:BE:E1:51:21:1B:F5:59:52:C1:6D:6B:21 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0705 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/s3ezBZWMon2-4VEhG_VZUsFtayE.roa Signing time: Tue 30 Apr 2024 01:52:53 +0000 ROA not before: Tue 30 Apr 2024 01:52:53 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 219.114.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 20:25:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1797 (0x705) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:52:53 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=B377B305958CA27DBEE151211BF55952C16D6B21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:0f:d6:6b:6a:c7:d0:62:9c:3e:0a:72:b8:e5: 1d:42:87:5b:41:d1:63:a0:33:ef:cd:12:75:06:3e: b8:b6:a0:6f:63:3e:09:26:9e:4e:db:b4:96:e9:68: 2c:b4:ca:61:33:d0:b1:9f:9e:b4:9b:dc:2f:fc:8a: b1:fd:14:03:08:67:03:06:29:02:d8:5a:76:d4:d1: d7:27:c8:f2:d9:b6:36:47:37:2f:7b:db:72:31:25: da:d7:c3:19:e3:c5:bf:57:49:ad:d0:77:ff:45:6a: 2a:72:fc:01:ce:00:d0:de:d2:95:11:fd:39:89:c1: f2:03:96:b3:7d:45:88:51:3c:b9:80:a2:a1:ba:96: c4:43:af:2a:2a:14:41:e2:f5:15:8b:09:e4:d9:4d: 70:3e:95:da:d4:90:ce:17:f5:0c:a7:04:ac:82:00: 45:91:25:31:75:87:08:11:79:1c:28:9e:3d:fe:5c: 75:60:1e:b7:c9:d0:72:4c:7d:68:d1:62:7b:34:c5: 19:2b:98:01:9c:83:16:d2:96:fa:49:f8:25:6e:3c: c2:02:93:53:b4:d4:98:2c:44:4b:15:a1:14:2e:20: 06:37:f6:6f:8f:32:01:44:de:dc:4c:f1:85:0e:9b: 62:15:78:41:7d:d8:dd:42:bd:ae:06:45:c4:0a:94: 29:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:77:B3:05:95:8C:A2:7D:BE:E1:51:21:1B:F5:59:52:C1:6D:6B:21 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/s3ezBZWMon2-4VEhG_VZUsFtayE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.114.185.0/24 Signature Algorithm: sha256WithRSAEncryption c5:1e:d1:bd:eb:34:3f:4a:3d:38:16:a7:2e:80:05:7e:e1:16: 1e:74:2d:8a:ba:56:d8:1b:cf:45:ab:20:8c:52:65:5b:32:77: e6:ad:c9:1d:1a:a2:c7:7b:7b:93:72:b8:79:b1:7d:c8:83:14: 9a:e3:55:01:fb:77:42:49:d4:ee:8b:28:93:59:55:a0:df:07: 64:68:67:28:6d:05:07:66:f8:37:93:59:0b:58:2d:fc:40:e1: b6:a6:f4:4c:ee:fe:8c:ea:62:94:73:19:8e:d5:3f:ab:b0:db: ab:2c:06:98:1c:7f:d9:23:51:c9:9e:7e:1a:e6:d3:14:84:81: 9c:ff:59:f0:18:b5:4d:d1:0e:ea:50:96:bf:b5:bf:1f:72:f8: 60:b3:1f:ab:d2:70:5a:29:aa:b3:25:74:01:ea:55:85:c2:4e: bd:c7:02:6b:a7:ac:51:06:ed:50:e7:a8:08:5d:7e:ab:c9:ac: 79:91:8e:ba:91:d8:1e:86:59:f7:e4:9d:bc:57:2c:b8:0e:29: 31:49:94:f1:b3:72:9b:80:3b:3e:99:fa:06:af:e1:b8:0a:16: 34:94:6d:2a:6b:5e:66:09:20:e2:7b:51:3d:6d:0a:14:1c:6f: 30:a4:d1:59:59:11:88:74:7d:b7:16:69:44:75:e5:7f:1e:fb: d8:f8:7e:30 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBwUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTUyNTNaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEIzNzdCMzA1OTU4Q0Ey N0RCRUUxNTEyMTFCRjU1OTUyQzE2RDZCMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlD9ZrasfQYpw+CnK45R1Ch1tB0WOgM+/NEnUGPri2oG9jPgkm nk7btJbpaCy0ymEz0LGfnrSb3C/8irH9FAMIZwMGKQLYWnbU0dcnyPLZtjZHNy97 23IxJdrXwxnjxb9XSa3Qd/9Faipy/AHOANDe0pUR/TmJwfIDlrN9RYhRPLmAoqG6 lsRDryoqFEHi9RWLCeTZTXA+ldrUkM4X9QynBKyCAEWRJTF1hwgReRwonj3+XHVg HrfJ0HJMfWjRYns0xRkrmAGcgxbSlvpJ+CVuPMICk1O01JgsREsVoRQuIAY39m+P MgFE3txM8YUOm2IVeEF92N1Cva4GRcQKlClFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUs3ezBZWMon2+4VEhG/VZUsFtayEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3MzZXpCWldNb24yLTRWRWhHX1ZaVXNGdGF5RS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADbcrkwDQYJKoZIhvcNAQELBQADggEBAMUe0b3rND9KPTgWpy6ABX7hFh50 LYq6Vtgbz0WrIIxSZVsyd+atyR0aosd7e5NyuHmxfciDFJrjVQH7d0JJ1O6LKJNZ VaDfB2RoZyhtBQdm+DeTWQtYLfxA4bam9Ezu/ozqYpRzGY7VP6uw26ssBpgcf9kj Ucmefhrm0xSEgZz/WfAYtU3RDupQlr+1vx9y+GCzH6vScFopqrMldAHqVYXCTr3H AmunrFEG7VDnqAhdfqvJrHmRjrqR2B6GWffknbxXLLgOKTFJlPGzcpuAOz6Z+gav 4bgKFjSUbSprXmYJIOJ7UT1tChQcbzCk0VlZEYh0fbcWaUR15X8e+9j4fjA= -----END CERTIFICATE-----Generated at Thu Mar 13 01:49:10 2025 by rpki-client