$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/u560t-MJRyHLaq2wG59V3OHSH7o.roa File: u560t-MJRyHLaq2wG59V3OHSH7o.roa (raw, json) Hash identifier: Y5qRXkJ55IXjisd5lvtdT93oZ4KFE2qBBfAOMgMpxoc= Subject key identifier: BB:9E:B4:B7:E3:09:47:21:CB:6A:AD:B0:1B:9F:55:DC:E1:D2:1F:BA Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0ADE Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/u560t-MJRyHLaq2wG59V3OHSH7o.roa Signing time: Fri 31 Jan 2025 01:28:26 +0000 ROA not before: Fri 31 Jan 2025 01:28:26 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.97.110.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2782 (0xade) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:28:26 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=BB9EB4B7E3094721CB6AADB01B9F55DCE1D21FBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:16:dc:4b:4a:83:1b:9c:3a:46:38:e6:c9:ce: 3d:6c:f4:52:78:a6:f4:f8:78:74:70:19:f9:66:d5: 1e:ed:a5:a6:26:34:98:1e:f5:cf:ed:dc:71:14:c4: be:8d:1f:70:c7:01:bf:5d:de:16:16:ac:97:98:f2: 1f:ed:5c:7f:30:d9:a7:70:67:da:3a:5d:41:2f:25: 4c:4e:63:68:4e:d9:db:c6:8c:03:c4:d1:45:00:30: 7a:19:b9:1f:60:b4:bf:e6:75:a7:ad:1c:aa:a0:1e: 10:21:83:39:0c:36:e6:61:f5:01:61:ce:63:b7:9c: ad:9e:b6:36:66:e0:4f:36:c1:f4:0b:36:9b:f7:f5: 82:21:f9:76:ff:b4:70:67:0e:22:55:4a:72:03:51: f3:99:4d:cd:65:ca:2a:b4:f6:3d:29:8e:55:a5:51: 2d:90:ec:3a:d6:b4:41:7b:d4:b6:98:a4:13:4f:ef: eb:2f:90:96:ed:3d:d9:a7:d2:f3:4e:55:02:ea:9c: cb:89:14:f3:c4:1c:39:e9:39:21:2a:da:6e:19:69: 3e:15:fe:6e:4f:e9:aa:64:a0:4d:f7:d4:3e:8a:10: 43:e4:a6:5a:56:c2:90:6e:d6:8c:4f:20:24:1f:2b: a4:d1:eb:a5:58:83:33:29:7d:dc:7a:63:f6:b2:41: 6e:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:9E:B4:B7:E3:09:47:21:CB:6A:AD:B0:1B:9F:55:DC:E1:D2:1F:BA X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/u560t-MJRyHLaq2wG59V3OHSH7o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.97.110.0/23 Signature Algorithm: sha256WithRSAEncryption be:17:07:40:b3:f6:a9:ec:62:b7:7e:8c:cc:b8:4d:9b:3f:0f: 7c:2c:05:ec:8c:b7:ca:9e:2b:52:80:0a:81:09:1a:e6:ae:c0: 09:38:cd:06:87:ab:96:51:d8:52:65:72:cf:e2:e7:0e:4a:30: 36:51:d8:ad:69:8f:9a:68:6a:24:4c:48:1e:e4:c4:12:42:59: ac:3a:db:65:01:53:dd:48:a1:6f:d9:78:53:dd:ef:c2:52:1f: e5:61:37:d5:df:0d:46:1f:6f:cd:f8:9f:05:3c:12:28:36:56: 27:fb:bc:ed:1c:74:a9:36:02:02:5a:a1:95:bc:5d:06:db:b5: 64:b5:6b:d3:3e:f9:b9:5e:60:e5:92:28:3d:84:19:9f:f5:a1: d3:c1:e1:03:7e:a0:d9:be:5b:90:9b:a2:34:f9:2d:cf:a3:66: 60:d1:b8:11:15:82:13:f0:d1:f9:14:b5:52:23:39:3d:ca:02: 36:e2:85:f3:ca:94:9b:b7:fc:8e:d4:e0:3e:2e:b7:be:a2:5c: 2e:be:2d:4a:3e:0e:cb:fc:a6:1c:06:de:f5:5e:14:a5:c2:3a: a7:c6:3f:67:8a:4b:ff:ec:c1:0f:f2:4c:d9:b4:a9:76:fe:8b: 16:c2:f0:e9:20:3d:56:91:9d:e2:9f:fc:28:8b:bc:4d:5c:ab: 11:1f:14:dc -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCt4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTI4MjZaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEJCOUVCNEI3RTMwOTQ3 MjFDQjZBQURCMDFCOUY1NURDRTFEMjFGQkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2FtxLSoMbnDpGOObJzj1s9FJ4pvT4eHRwGflm1R7tpaYmNJge 9c/t3HEUxL6NH3DHAb9d3hYWrJeY8h/tXH8w2adwZ9o6XUEvJUxOY2hO2dvGjAPE 0UUAMHoZuR9gtL/mdaetHKqgHhAhgzkMNuZh9QFhzmO3nK2etjZm4E82wfQLNpv3 9YIh+Xb/tHBnDiJVSnIDUfOZTc1lyiq09j0pjlWlUS2Q7DrWtEF71LaYpBNP7+sv kJbtPdmn0vNOVQLqnMuJFPPEHDnpOSEq2m4ZaT4V/m5P6apkoE331D6KEEPkplpW wpBu1oxPICQfK6TR66VYgzMpfdx6Y/ayQW5TAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUu560t+MJRyHLaq2wG59V3OHSH7owHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3U1NjB0LU1KUnlITGFxMndHNTlWM09IU0g3by5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYW4wDQYJKoZIhvcNAQELBQADggEBAL4XB0Cz9qnsYrd+jMy4TZs/D3ws BeyMt8qeK1KACoEJGuauwAk4zQaHq5ZR2FJlcs/i5w5KMDZR2K1pj5poaiRMSB7k xBJCWaw622UBU91IoW/ZeFPd78JSH+VhN9XfDUYfb834nwU8Eig2Vif7vO0cdKk2 AgJaoZW8XQbbtWS1a9M++bleYOWSKD2EGZ/1odPB4QN+oNm+W5CbojT5Lc+jZmDR uBEVghPw0fkUtVIjOT3KAjbihfPKlJu3/I7U4D4ut76iXC6+LUo+Dsv8phwG3vVe FKXCOqfGP2eKS//swQ/yTNm0qXb+ixbC8OkgPVaRneKf/CiLvE1cqxEfFNw= -----END CERTIFICATE-----Generated at Wed Feb 19 22:30:57 2025 by rpki-client