$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/tEfggOpUoBKAJIITWe9PbZ8y9hA.roa File: tEfggOpUoBKAJIITWe9PbZ8y9hA.roa (raw, json) Hash identifier: h5RWkhPHWRqtCpma+X6C4tOJU886J7/yrZvo9xQizz4= Subject key identifier: B4:47:E0:80:EA:54:A0:12:80:24:82:13:59:EF:4F:6D:9F:32:F6:10 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 08CC Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/tEfggOpUoBKAJIITWe9PbZ8y9hA.roa Signing time: Tue 30 Apr 2024 02:24:38 +0000 ROA not before: Tue 30 Apr 2024 02:24:38 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.106.88.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2252 (0x8cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:24:38 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=B447E080EA54A0128024821359EF4F6D9F32F610 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:1e:8c:4d:dd:bf:72:4e:5f:21:d1:c9:b6:a3: d9:f1:90:95:7d:4b:33:3a:61:9b:24:5f:d2:30:38: 02:17:73:40:c2:61:1d:c6:3f:75:02:45:c3:30:04: c3:b7:ac:a7:4e:87:d6:61:9a:54:2b:dc:c4:be:49: fa:c8:c9:0e:65:37:f4:02:76:14:e9:e9:e3:7b:ec: 87:75:5f:4b:1a:3e:8a:6a:7c:89:14:92:de:bc:13: 5d:59:91:12:1d:da:0a:90:35:e8:c0:66:7d:61:c0: 82:25:75:50:73:73:bc:c5:c7:a0:cc:5a:11:ad:38: 5b:79:8f:d4:15:32:39:4a:bb:e4:f4:e7:6c:91:b1: 62:83:cc:a2:e5:85:95:db:5c:3a:72:c3:35:04:04: d3:5d:43:dd:46:1d:c0:45:09:91:ad:d3:72:ee:57: c7:f3:92:52:9f:1c:bc:e7:3a:6f:87:1d:74:e7:eb: 24:fd:98:22:95:9d:17:ee:4e:2b:66:91:6d:4f:31: 4a:56:16:54:f5:ce:d6:7b:21:f9:da:52:71:f1:a0: 8d:e2:96:02:e7:49:36:46:98:b5:b5:f0:a2:ed:a1: 9b:06:4d:f4:3d:4d:d7:2c:41:15:94:ce:fc:bd:ed: e2:80:e1:3c:8a:ab:96:24:22:61:1e:5d:1f:5f:be: 53:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:47:E0:80:EA:54:A0:12:80:24:82:13:59:EF:4F:6D:9F:32:F6:10 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/tEfggOpUoBKAJIITWe9PbZ8y9hA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.88.0/23 Signature Algorithm: sha256WithRSAEncryption c6:1f:83:68:62:c1:40:82:4e:b3:26:24:cd:8a:d1:93:a8:35: 56:d5:00:7e:05:9c:05:77:c6:0b:9d:71:d9:0b:b6:fe:31:7b: 8c:31:bd:3d:75:b2:4e:e6:50:bd:6a:c2:1b:06:cc:cd:30:27: 5d:9a:e6:b2:80:ff:1b:58:ed:a4:0e:12:97:8b:f6:0e:00:46: e9:be:ea:61:a2:5f:9c:aa:85:06:42:6e:7c:d7:1a:97:90:45: 01:09:0e:cc:85:16:c6:a9:2c:e0:13:18:01:e5:f7:27:e3:a6: 53:79:53:12:f5:f9:40:30:c5:4b:89:0c:fc:56:fb:36:99:c5: 9d:bc:2c:5e:91:22:10:74:e2:70:4a:7d:c5:0a:87:6a:de:59: 26:98:b2:99:3c:9e:97:b2:1c:3c:76:4c:59:01:8e:d6:10:44: 6b:5d:c7:da:57:e9:f9:67:e1:60:32:f4:7d:26:4b:c2:c1:25: 76:0b:8b:a9:d1:11:f6:f0:4c:81:79:0f:f3:f4:07:58:ad:f9: 17:a9:b0:74:9f:59:14:dc:40:72:e0:c0:68:ad:c6:45:d2:9d: b0:c7:6c:ee:76:a4:2c:86:d5:91:da:b2:6c:f3:ac:86:81:a2: 8d:de:6f:ce:bc:53:ef:01:8f:d5:b2:9c:dc:be:eb:0f:8d:e9: ed:cb:6b:be -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCMwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjI0MzhaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEI0NDdFMDgwRUE1NEEw MTI4MDI0ODIxMzU5RUY0RjZEOUYzMkY2MTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqHoxN3b9yTl8h0cm2o9nxkJV9SzM6YZskX9IwOAIXc0DCYR3G P3UCRcMwBMO3rKdOh9ZhmlQr3MS+SfrIyQ5lN/QCdhTp6eN77Id1X0saPopqfIkU kt68E11ZkRId2gqQNejAZn1hwIIldVBzc7zFx6DMWhGtOFt5j9QVMjlKu+T052yR sWKDzKLlhZXbXDpywzUEBNNdQ91GHcBFCZGt03LuV8fzklKfHLznOm+HHXTn6yT9 mCKVnRfuTitmkW1PMUpWFlT1ztZ7IfnaUnHxoI3ilgLnSTZGmLW18KLtoZsGTfQ9 TdcsQRWUzvy97eKA4TyKq5YkImEeXR9fvlNBAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUtEfggOpUoBKAJIITWe9PbZ8y9hAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3RFZmdnT3BVb0JLQUpJSVRXZTlQYlo4eTloQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExalgwDQYJKoZIhvcNAQELBQADggEBAMYfg2hiwUCCTrMmJM2K0ZOoNVbV AH4FnAV3xgudcdkLtv4xe4wxvT11sk7mUL1qwhsGzM0wJ12a5rKA/xtY7aQOEpeL 9g4ARum+6mGiX5yqhQZCbnzXGpeQRQEJDsyFFsapLOATGAHl9yfjplN5UxL1+UAw xUuJDPxW+zaZxZ28LF6RIhB04nBKfcUKh2reWSaYspk8npeyHDx2TFkBjtYQRGtd x9pX6fln4WAy9H0mS8LBJXYLi6nREfbwTIF5D/P0B1it+RepsHSfWRTcQHLgwGit xkXSnbDHbO52pCyG1ZHasmzzrIaBoo3eb868U+8Bj9WynNy+6w+N6e3La74= -----END CERTIFICATE-----Generated at Sun Feb 16 22:18:55 2025 by rpki-client