$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/tEt0q9dqXlSIaaf8ED_5JZLn_V8.roa File: tEt0q9dqXlSIaaf8ED_5JZLn_V8.roa (raw, json) Hash identifier: cMRKMj6fjzuUMhKFBdqj/pMtwkIAr7LHTWI2kzj745I= Subject key identifier: B4:4B:74:AB:D7:6A:5E:54:88:69:A7:FC:10:3F:F9:25:92:E7:FD:5F Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B0E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/tEt0q9dqXlSIaaf8ED_5JZLn_V8.roa Signing time: Fri 31 Jan 2025 01:34:25 +0000 ROA not before: Fri 31 Jan 2025 01:34:25 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.66.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2830 (0xb0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:34:25 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=B44B74ABD76A5E548869A7FC103FF92592E7FD5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:75:95:ec:37:7c:c0:71:21:c9:29:7b:ed:3f: 1b:17:42:cd:29:2a:87:3f:09:0b:58:6f:f7:8e:4d: 7b:e1:63:fc:8a:cb:b2:d2:b7:86:95:79:e2:22:4c: 32:b6:2a:64:9c:95:f2:73:be:61:6a:92:c7:7b:9f: 92:2a:84:25:c7:15:32:9d:b9:2a:6f:27:5e:a0:6c: 85:3f:53:e1:dc:57:1e:6b:a1:f9:72:99:80:2f:7c: 61:57:98:82:f8:a8:58:72:98:03:62:a0:38:d8:60: ce:23:48:ff:55:84:ff:15:f6:cd:74:ff:37:a0:f3: 97:28:6b:5d:29:8a:72:d7:e3:d3:50:ef:84:f7:20: 0b:72:4e:b6:f1:89:90:30:31:16:00:5a:3f:89:8f: 10:73:cc:2a:e9:3f:2a:bc:10:a6:a1:19:ab:9b:5d: a7:a5:f8:bf:7d:e7:6f:c8:bc:51:36:4c:51:05:50: da:80:b7:e8:14:70:1b:8f:39:fa:38:d9:8f:84:be: 50:ca:49:28:a9:99:8b:a4:f8:d5:da:a8:fd:88:77: 21:b4:26:36:58:f4:7c:e9:2c:e2:7d:cb:85:a8:8d: c8:97:23:c1:f6:d8:bc:3f:65:f7:dd:11:fd:42:82: be:45:8e:5e:ff:4e:b6:75:f0:52:c8:0e:ad:81:06: 40:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:4B:74:AB:D7:6A:5E:54:88:69:A7:FC:10:3F:F9:25:92:E7:FD:5F X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/tEt0q9dqXlSIaaf8ED_5JZLn_V8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.66.90.0/24 Signature Algorithm: sha256WithRSAEncryption 10:9d:23:68:d4:58:ed:26:f6:75:5d:cb:78:65:c6:78:f1:13: 4b:b6:8a:39:79:0a:a9:22:f6:15:cb:1a:7b:27:8a:59:da:11: c1:74:86:ed:1a:06:5c:7d:ca:a9:87:b2:6e:d1:fa:13:54:8b: 69:05:86:ae:21:f2:24:1b:10:7d:f0:e8:e1:f7:a1:e3:e3:2e: de:b2:17:01:2b:bc:0d:44:bb:11:64:44:b9:7c:6c:87:88:7e: 91:23:4e:a9:e8:5c:d4:cb:ef:5d:76:ec:e6:56:e2:29:10:1f: 3c:2c:07:dd:e1:90:fd:bb:83:b3:68:45:8e:5d:37:52:2f:34: aa:e1:5a:ba:34:1e:e4:23:a7:d8:43:ce:81:3a:0b:0e:a9:9b: ca:aa:b6:9a:fd:dd:fb:e8:93:49:74:3c:eb:bb:da:71:6c:58: 03:98:ea:81:f9:6d:16:7d:23:86:05:e7:1e:8a:b3:de:c2:b9: 69:bd:ed:ed:3d:34:87:d7:e5:62:cb:5a:ac:21:52:64:67:6c: df:3a:74:38:2b:d7:41:46:9b:df:2e:7e:c3:d1:05:f5:4b:5e: cc:b1:52:93:ae:7a:0b:6c:25:47:b5:96:43:38:95:9d:f4:4c: 60:26:74:1a:3a:cb:da:85:11:42:98:29:da:c7:35:c3:a3:0a: c1:7c:89:cf -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCw4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTM0MjVaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEI0NEI3NEFCRDc2QTVF NTQ4ODY5QTdGQzEwM0ZGOTI1OTJFN0ZENUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwdZXsN3zAcSHJKXvtPxsXQs0pKoc/CQtYb/eOTXvhY/yKy7LS t4aVeeIiTDK2KmSclfJzvmFqksd7n5IqhCXHFTKduSpvJ16gbIU/U+HcVx5rofly mYAvfGFXmIL4qFhymANioDjYYM4jSP9VhP8V9s10/zeg85coa10pinLX49NQ74T3 IAtyTrbxiZAwMRYAWj+JjxBzzCrpPyq8EKahGaubXael+L9952/IvFE2TFEFUNqA t+gUcBuPOfo42Y+EvlDKSSipmYuk+NXaqP2IdyG0JjZY9HzpLOJ9y4WojciXI8H2 2Lw/ZffdEf1Cgr5Fjl7/TrZ18FLIDq2BBkAvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUtEt0q9dqXlSIaaf8ED/5JZLn/V8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3RFdDBxOWRxWGxTSWFhZjhFRF81SlpMbl9WOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABQlowDQYJKoZIhvcNAQELBQADggEBABCdI2jUWO0m9nVdy3hlxnjxE0u2 ijl5Cqki9hXLGnsnilnaEcF0hu0aBlx9yqmHsm7R+hNUi2kFhq4h8iQbEH3w6OH3 oePjLt6yFwErvA1EuxFkRLl8bIeIfpEjTqnoXNTL71127OZW4ikQHzwsB93hkP27 g7NoRY5dN1IvNKrhWro0HuQjp9hDzoE6Cw6pm8qqtpr93fvok0l0POu72nFsWAOY 6oH5bRZ9I4YF5x6Ks97CuWm97e09NIfX5WLLWqwhUmRnbN86dDgr10FGm98ufsPR BfVLXsyxUpOuegtsJUe1lkM4lZ30TGAmdBo6y9qFEUKYKdrHNcOjCsF8ic8= -----END CERTIFICATE-----Generated at Wed Feb 19 22:46:02 2025 by rpki-client