$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/tRWVka067C_9SVyhaAQOViC0npg.roa File: tRWVka067C_9SVyhaAQOViC0npg.roa (raw, json) Hash identifier: dT+pfYL+CPGNETyZWjHXjzfvvNYF6HDshuHJbgD/iGk= Subject key identifier: B5:15:95:91:AD:3A:EC:2F:FD:49:5C:A1:68:04:0E:56:20:B4:9E:98 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 076B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/tRWVka067C_9SVyhaAQOViC0npg.roa Signing time: Tue 30 Apr 2024 02:01:43 +0000 ROA not before: Tue 30 Apr 2024 02:01:43 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.14.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1899 (0x76b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:01:43 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=B5159591AD3AEC2FFD495CA168040E5620B49E98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8f:43:2b:a7:c4:3d:2b:16:a1:45:20:7f:24: a9:9e:d4:f9:ef:8f:9f:07:01:c2:ef:a3:af:cc:27: 4d:04:9b:2f:7e:1b:09:c6:ef:8a:1f:7e:07:5e:55: 3f:1f:0e:24:c8:44:7a:41:c6:f9:ad:94:a2:29:a3: 47:f7:7a:31:f0:fb:eb:29:2d:4f:e4:0b:31:28:54: 27:d4:ad:df:d6:a9:31:4a:bd:54:47:61:23:60:0a: 6d:98:89:11:27:d8:13:de:40:1e:66:eb:6f:ed:1a: fd:50:75:e3:db:f3:0e:c2:09:3e:48:74:81:58:81: 64:c8:3f:95:03:84:e3:80:80:72:8f:95:c8:03:99: 0f:27:4d:17:30:92:f1:37:2b:8b:aa:9f:8a:41:7c: e2:08:9d:3b:d2:e5:86:2d:61:9d:84:3a:14:9c:3c: 70:bb:49:83:2e:fd:4d:d2:6e:b5:06:b4:6e:32:86: 07:01:92:8a:1a:50:c0:22:12:38:78:8f:69:5e:e1: ad:a0:ae:e4:10:78:65:5a:23:90:1b:d7:fd:4b:e3: 1a:e4:c9:9f:ef:95:9b:58:3f:1c:65:0e:cb:2d:fc: 22:37:7e:ca:0a:bd:3c:2a:21:54:9c:97:13:3f:3d: 97:ff:2c:13:ef:93:27:b3:66:cf:f8:1a:d9:22:4c: 97:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:15:95:91:AD:3A:EC:2F:FD:49:5C:A1:68:04:0E:56:20:B4:9E:98 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/tRWVka067C_9SVyhaAQOViC0npg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.14.0/23 Signature Algorithm: sha256WithRSAEncryption 64:e2:2c:70:68:8f:65:0f:93:f0:12:0d:55:46:2b:a5:9f:24: 8c:a2:69:99:fa:6e:04:7a:a1:6d:5d:24:2b:72:f4:db:b1:4f: 27:67:89:f8:7d:a2:91:bd:0c:bf:2d:cb:e9:3a:9d:0f:c9:44: fd:3b:1a:bc:fa:6b:d5:b8:6f:1d:22:2b:50:0b:59:63:49:eb: 14:09:9f:bb:11:42:e6:e9:c4:02:14:11:61:e1:15:0e:d1:c4: 6a:bc:1b:04:a0:f1:37:e4:ab:11:b1:03:b9:e2:42:a2:d2:90: 0d:f4:6d:68:7c:0d:37:03:d7:c8:26:1c:3a:b0:5b:2b:64:ec: b0:38:4a:41:0b:cd:96:bb:ab:f4:f6:64:f4:fb:14:3a:a1:75: de:b8:75:dd:c0:62:79:99:a7:a3:00:69:4b:ef:6b:ca:39:94: 57:1e:cf:8e:d3:4f:93:2e:dc:78:67:a4:e3:3e:d5:e9:0a:9f: d9:e9:f6:7c:23:e9:15:93:aa:a9:23:15:2f:3e:99:3e:bc:dd: 73:d3:47:7f:2e:e3:5b:99:df:d4:b8:12:84:67:97:ab:db:66: 18:b3:cb:be:9e:f5:0b:fd:2c:45:35:2f:9c:10:a0:7c:3c:36: 3b:fc:4b:b7:fd:27:b4:b8:c8:44:42:b6:22:2f:d6:eb:7b:5f: ad:56:a1:8e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB2swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjAxNDNaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEI1MTU5NTkxQUQzQUVD MkZGRDQ5NUNBMTY4MDQwRTU2MjBCNDlFOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEj0Mrp8Q9KxahRSB/JKme1Pnvj58HAcLvo6/MJ00Emy9+GwnG 74offgdeVT8fDiTIRHpBxvmtlKIpo0f3ejHw++spLU/kCzEoVCfUrd/WqTFKvVRH YSNgCm2YiREn2BPeQB5m62/tGv1QdePb8w7CCT5IdIFYgWTIP5UDhOOAgHKPlcgD mQ8nTRcwkvE3K4uqn4pBfOIInTvS5YYtYZ2EOhScPHC7SYMu/U3SbrUGtG4yhgcB kooaUMAiEjh4j2le4a2gruQQeGVaI5Ab1/1L4xrkyZ/vlZtYPxxlDsst/CI3fsoK vTwqIVSclxM/PZf/LBPvkyezZs/4GtkiTJfdAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUtRWVka067C/9SVyhaAQOViC0npgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3RSV1ZrYTA2N0NfOVNWeWhhQVFPVmlDMG5wZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBTw4wDQYJKoZIhvcNAQELBQADggEBAGTiLHBoj2UPk/ASDVVGK6WfJIyi aZn6bgR6oW1dJCty9NuxTydnifh9opG9DL8ty+k6nQ/JRP07Grz6a9W4bx0iK1AL WWNJ6xQJn7sRQubpxAIUEWHhFQ7RxGq8GwSg8TfkqxGxA7niQqLSkA30bWh8DTcD 18gmHDqwWytk7LA4SkELzZa7q/T2ZPT7FDqhdd64dd3AYnmZp6MAaUvva8o5lFce z47TT5Mu3HhnpOM+1ekKn9np9nwj6RWTqqkjFS8+mT683XPTR38u41uZ39S4EoRn l6vbZhizy76e9Qv9LEU1L5wQoHw8Njv8S7f9J7S4yERCtiIv1ut7X61WoY4= -----END CERTIFICATE-----Generated at Sun Feb 16 22:22:30 2025 by rpki-client