$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/sgYZa9X1gU-CHwjQD3t8EceWd_k.roa File: sgYZa9X1gU-CHwjQD3t8EceWd_k.roa (raw, json) Hash identifier: QpQqzpbHEVAGcX5BlMDnZpeEfhGcayjysyXZaexPPRc= Subject key identifier: B2:06:19:6B:D5:F5:81:4F:82:1F:08:D0:0F:7B:7C:11:C7:96:77:F9 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 06F9 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sgYZa9X1gU-CHwjQD3t8EceWd_k.roa Signing time: Tue 30 Apr 2024 01:52:47 +0000 ROA not before: Tue 30 Apr 2024 01:52:47 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.106.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1785 (0x6f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:52:47 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=B206196BD5F5814F821F08D00F7B7C11C79677F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:6d:5e:8a:34:47:92:bb:c2:9a:b6:f5:61:ac: 17:4c:1f:9c:3a:04:f1:eb:22:43:fd:4b:1f:e2:0a: 28:0d:61:f3:e3:89:dd:5b:cf:7c:21:be:ed:c8:8a: 1f:c4:ed:0e:ee:58:4b:ff:4c:93:59:af:f8:a1:99: 77:84:a6:9d:b4:58:e1:c4:59:d3:e5:c3:04:34:d6: ad:db:5f:4c:9a:9b:d9:52:98:76:fd:3f:02:bb:99: 0a:72:21:39:6b:c8:09:55:c5:93:50:6f:e7:2a:da: a3:6e:e4:5a:6d:87:4b:b2:96:ec:b7:7f:fd:e1:84: 30:e2:47:25:17:20:16:8a:4b:e8:de:cb:15:b3:ab: ee:b6:81:7f:7a:11:e7:90:c4:29:6c:13:a1:a7:f6: 09:35:fd:4f:06:ee:15:57:2e:fd:25:7d:2e:3f:9b: 00:24:72:23:87:11:16:39:77:b2:f5:dd:00:81:85: 8f:e8:55:32:2f:5e:0e:ef:61:72:e2:55:54:bd:86: 90:ad:7b:73:4b:9a:16:c7:e0:25:4a:4b:16:db:f0: 76:8c:8a:96:00:10:a6:15:86:c3:fd:dc:5a:ba:d7: fc:21:b5:5d:5a:28:db:6e:1b:ed:44:a0:a5:0f:83: 59:07:b1:37:5a:3f:12:a3:e4:ed:b4:a0:7f:01:2f: 83:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:06:19:6B:D5:F5:81:4F:82:1F:08:D0:0F:7B:7C:11:C7:96:77:F9 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sgYZa9X1gU-CHwjQD3t8EceWd_k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.231.0/24 Signature Algorithm: sha256WithRSAEncryption 76:1a:41:91:50:c4:4b:f6:81:1d:91:c3:8c:b5:ba:cc:a4:eb: e6:6e:45:1d:8b:e3:09:18:08:11:b3:b8:2e:99:bd:78:61:2e: f9:30:f0:e5:b5:ca:14:6d:0e:62:a1:b1:29:e2:d0:30:a7:be: a1:69:c7:0c:e1:57:22:df:5e:d3:03:15:96:f0:7a:7f:23:80: e9:e1:03:4e:d0:f5:76:0b:1f:f9:81:a9:b8:4b:18:32:2f:8a: 30:15:2a:b9:f0:9e:5c:8a:2d:74:60:7d:44:17:78:bc:42:21: 93:37:e3:52:15:6d:c3:9e:c6:7a:c0:eb:5d:90:7c:8e:08:10: c2:fb:42:16:f5:c1:9c:f1:fe:d2:74:a0:d2:b0:8d:6f:78:59: d1:97:18:af:b9:f7:fc:b5:b0:28:a5:f4:67:25:41:e5:e4:24: 51:03:a8:88:eb:2d:a2:dc:98:5b:6c:d0:d9:0b:e2:66:56:96: db:64:04:a6:ee:7d:29:98:5e:70:38:ea:76:e8:7b:dc:0a:b1: 37:7c:29:4f:18:7a:3f:8c:3a:83:1b:b7:e1:6f:e0:86:38:26: 8f:4a:f0:5e:e6:c2:99:bc:3d:1a:62:9e:04:6b:37:13:f3:b0: 75:cd:ac:95:e1:44:c5:c2:37:b9:7e:ef:56:49:2d:90:71:9f: eb:84:47:bd -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBvkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTUyNDdaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEIyMDYxOTZCRDVGNTgx NEY4MjFGMDhEMDBGN0I3QzExQzc5Njc3RjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqbV6KNEeSu8KatvVhrBdMH5w6BPHrIkP9Sx/iCigNYfPjid1b z3whvu3Iih/E7Q7uWEv/TJNZr/ihmXeEpp20WOHEWdPlwwQ01q3bX0yam9lSmHb9 PwK7mQpyITlryAlVxZNQb+cq2qNu5Fpth0uyluy3f/3hhDDiRyUXIBaKS+jeyxWz q+62gX96EeeQxClsE6Gn9gk1/U8G7hVXLv0lfS4/mwAkciOHERY5d7L13QCBhY/o VTIvXg7vYXLiVVS9hpCte3NLmhbH4CVKSxbb8HaMipYAEKYVhsP93Fq61/whtV1a KNtuG+1EoKUPg1kHsTdaPxKj5O20oH8BL4OPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUsgYZa9X1gU+CHwjQD3t8EceWd/kwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3NnWVphOVgxZ1UtQ0h3alFEM3Q4RWNlV2Rfay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxaucwDQYJKoZIhvcNAQELBQADggEBAHYaQZFQxEv2gR2Rw4y1usyk6+Zu RR2L4wkYCBGzuC6ZvXhhLvkw8OW1yhRtDmKhsSni0DCnvqFpxwzhVyLfXtMDFZbw en8jgOnhA07Q9XYLH/mBqbhLGDIvijAVKrnwnlyKLXRgfUQXeLxCIZM341IVbcOe xnrA612QfI4IEML7Qhb1wZzx/tJ0oNKwjW94WdGXGK+59/y1sCil9GclQeXkJFED qIjrLaLcmFts0NkL4mZWlttkBKbufSmYXnA46nboe9wKsTd8KU8Yej+MOoMbt+Fv 4IY4Jo9K8F7mwpm8PRpingRrNxPzsHXNrJXhRMXCN7l+71ZJLZBxn+uER70= -----END CERTIFICATE-----Generated at Sun Feb 16 22:34:17 2025 by rpki-client