$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/tV4dE1ZuJl7tgEnWEzQToBKiKvM.roa File: tV4dE1ZuJl7tgEnWEzQToBKiKvM.roa (raw, json) Hash identifier: 4aqZojvoXaI4d4Kt/Qv3eSH9LktdbArydjzXOoV1Xts= Subject key identifier: B5:5E:1D:13:56:6E:26:5E:ED:80:49:D6:13:34:13:A0:12:A2:2A:F3 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B29 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/tV4dE1ZuJl7tgEnWEzQToBKiKvM.roa Signing time: Fri 31 Jan 2025 01:38:02 +0000 ROA not before: Fri 31 Jan 2025 01:38:02 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.72.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2857 (0xb29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:38:02 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=B55E1D13566E265EED8049D6133413A012A22AF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:3a:31:11:14:e8:f3:a0:d3:d9:6e:99:19:99: c5:99:b9:0d:57:d7:b8:3e:90:af:6b:68:90:65:1b: 00:73:09:4e:e8:fd:a1:e0:29:47:34:25:c0:c7:97: 03:23:a9:7e:bf:ca:2b:8b:0a:17:ba:aa:ca:81:b0: 66:35:a7:eb:56:24:66:dd:1a:51:49:36:4b:43:7e: 7b:0f:fe:69:cd:36:8f:73:8c:53:97:1b:20:95:b9: d0:ef:ba:b6:51:dc:f7:c9:89:01:8b:f0:f0:a2:a3: 57:31:8d:30:9e:34:ad:7e:c5:47:64:ec:86:0b:9a: bf:41:af:5f:0e:f0:0e:c8:2a:00:25:e2:5a:33:1f: f5:66:3a:ad:c5:ba:e9:f2:63:17:f9:81:2f:5d:aa: 54:3b:15:e5:94:37:d0:e1:bc:7e:8c:da:07:b8:c3: c9:1a:64:b0:31:98:d4:a3:3e:63:aa:d9:b1:fa:5b: 3e:23:f0:54:f1:f9:2c:c6:5d:ed:2d:b0:17:83:35: ff:ce:d8:b9:62:c3:03:5f:91:49:6f:16:56:3c:5e: 3d:cd:d5:4a:00:e9:cc:f4:e6:84:b5:e1:d4:e5:5c: 16:86:03:94:4c:06:6f:b2:b7:01:80:cc:c0:1a:00: 71:ad:87:ee:c0:cd:ad:17:26:f4:28:95:10:72:ff: b5:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:5E:1D:13:56:6E:26:5E:ED:80:49:D6:13:34:13:A0:12:A2:2A:F3 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/tV4dE1ZuJl7tgEnWEzQToBKiKvM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.5.0/24 Signature Algorithm: sha256WithRSAEncryption 60:1b:b0:73:18:38:53:30:2b:d4:c5:39:51:58:c7:40:6d:23: dc:a1:26:4a:6d:80:60:4a:e9:90:bb:db:42:a8:fb:c5:93:44: 8b:e4:3c:be:e8:cf:a0:a3:a9:9f:e3:9a:ab:dc:ea:f4:11:61: 98:13:73:de:e0:7e:4f:ab:f1:16:72:c4:32:e7:f2:27:0b:a0: 2d:88:4e:d7:8a:12:fc:d3:6b:b8:75:be:aa:3b:e9:56:b6:5f: 6b:c1:96:82:3e:ae:0d:fe:2c:35:4a:b7:25:ad:46:15:24:c4: b0:e3:98:49:2a:d7:09:aa:ea:92:5f:a4:0a:dd:3d:8b:d8:2a: 45:4f:82:c9:1f:f9:f1:0b:df:5d:72:f8:af:20:c9:d4:14:57: 2b:f2:d7:fb:32:18:67:e9:81:09:bb:d4:bb:9f:bd:4b:24:30: 01:6a:21:00:a0:4a:bc:92:bd:6a:65:ec:8a:ad:ca:ff:d7:0d: 3f:2f:29:63:8c:f9:c1:64:0d:9d:24:97:4e:34:f8:84:08:e5: 98:f5:ea:93:2a:af:a2:97:a5:1b:f8:87:a8:47:0b:8f:f8:d3: 68:39:6e:16:e2:05:54:67:76:e4:0c:76:35:3d:86:f9:32:12: 49:4b:64:a3:fe:34:89:b1:ef:76:62:45:4f:77:48:7e:cf:78: df:75:c1:74 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCykwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTM4MDJaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEI1NUUxRDEzNTY2RTI2 NUVFRDgwNDlENjEzMzQxM0EwMTJBMjJBRjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCeOjERFOjzoNPZbpkZmcWZuQ1X17g+kK9raJBlGwBzCU7o/aHg KUc0JcDHlwMjqX6/yiuLChe6qsqBsGY1p+tWJGbdGlFJNktDfnsP/mnNNo9zjFOX GyCVudDvurZR3PfJiQGL8PCio1cxjTCeNK1+xUdk7IYLmr9Br18O8A7IKgAl4loz H/VmOq3FuunyYxf5gS9dqlQ7FeWUN9DhvH6M2ge4w8kaZLAxmNSjPmOq2bH6Wz4j 8FTx+SzGXe0tsBeDNf/O2LliwwNfkUlvFlY8Xj3N1UoA6cz05oS14dTlXBaGA5RM Bm+ytwGAzMAaAHGth+7Aza0XJvQolRBy/7WvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUtV4dE1ZuJl7tgEnWEzQToBKiKvMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3RWNGRFMVp1Smw3dGdFbldFelFUb0JLaUt2TS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABSAUwDQYJKoZIhvcNAQELBQADggEBAGAbsHMYOFMwK9TFOVFYx0BtI9yh JkptgGBK6ZC720Ko+8WTRIvkPL7oz6CjqZ/jmqvc6vQRYZgTc97gfk+r8RZyxDLn 8icLoC2ITteKEvzTa7h1vqo76Va2X2vBloI+rg3+LDVKtyWtRhUkxLDjmEkq1wmq 6pJfpArdPYvYKkVPgskf+fEL311y+K8gydQUVyvy1/syGGfpgQm71LufvUskMAFq IQCgSrySvWpl7Iqtyv/XDT8vKWOM+cFkDZ0kl040+IQI5Zj16pMqr6KXpRv4h6hH C4/402g5bhbiBVRnduQMdjU9hvkyEklLZKP+NImx73ZiRU93SH7PeN91wXQ= -----END CERTIFICATE-----Generated at Wed Feb 19 22:30:49 2025 by rpki-client