$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/vDurNUbJ4PF6CT2G7a8R_7KdUWo.roa File: vDurNUbJ4PF6CT2G7a8R_7KdUWo.roa (raw, json) Hash identifier: 1BCj3/6hAxRFQwyJuvzDP5vs3reXM9+jkfMsVveEUg8= Subject key identifier: BC:3B:AB:35:46:C9:E0:F1:7A:09:3D:86:ED:AF:11:FF:B2:9D:51:6A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0AD8 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/vDurNUbJ4PF6CT2G7a8R_7KdUWo.roa Signing time: Fri 31 Jan 2025 01:28:23 +0000 ROA not before: Fri 31 Jan 2025 01:28:23 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.97.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2776 (0xad8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:28:23 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=BC3BAB3546C9E0F17A093D86EDAF11FFB29D516A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f9:f2:28:aa:a7:01:8f:ae:4f:c1:d9:f5:2d: 6a:9e:6c:fc:b2:a8:07:e6:f2:6a:95:44:c7:30:5c: 4d:4e:1c:79:49:a7:d4:92:2d:43:98:7c:bd:2e:44: 5a:0a:60:7b:32:8b:ba:30:e6:63:84:b9:04:3e:66: 97:4b:61:cd:65:d8:89:e6:24:c9:38:12:37:7c:bb: 8b:f0:ac:57:42:42:6b:60:df:49:b1:3b:58:f1:88: 4c:74:6e:a7:d1:0a:22:8c:8e:a1:7d:bb:55:0c:16: 04:7a:73:d5:4b:14:df:e7:8a:18:33:88:f1:4d:fd: 85:c0:1f:14:39:d8:97:d1:17:60:5a:ec:22:87:e6: fe:0c:5b:15:0e:83:bc:fb:aa:d0:9a:39:82:62:0e: 09:85:64:c6:a9:6d:c1:63:e1:36:a4:e8:dc:f4:06: 59:f8:c6:7a:3f:6d:9b:b2:95:28:b3:79:29:3c:70: c7:dd:df:c1:64:ba:0f:b1:95:91:70:d4:24:d2:3b: e4:a4:a3:87:f8:39:c3:26:d1:43:55:ef:33:8b:dd: 2e:9c:20:ac:c3:45:c6:68:07:76:9e:a8:f3:f3:e0: c2:70:4d:57:db:a1:67:c3:9f:b4:8f:8f:d6:de:da: f9:9b:5a:23:33:a5:ed:4f:70:b4:c1:e2:46:17:b7: 0b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:3B:AB:35:46:C9:E0:F1:7A:09:3D:86:ED:AF:11:FF:B2:9D:51:6A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/vDurNUbJ4PF6CT2G7a8R_7KdUWo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.97.24.0/22 Signature Algorithm: sha256WithRSAEncryption b2:67:5c:fe:ef:b1:66:93:4d:44:16:67:0b:82:fc:e3:87:8e: eb:48:9a:cf:7e:bf:b3:5e:6c:71:00:dd:38:9f:e9:c9:b9:55: 84:52:a6:ca:72:4c:83:02:53:29:55:af:bc:98:88:93:e5:1a: a2:1b:7e:d3:84:06:18:04:ec:ec:fd:4c:9a:88:12:09:9e:13: 23:39:40:01:44:fb:77:0c:00:09:53:6e:b2:cf:2e:02:16:b2: 3c:2d:ca:32:f7:30:26:c4:e5:38:e6:da:e9:33:eb:5a:7b:5e: 63:cd:96:9c:f1:70:ed:cb:09:ed:12:a7:84:17:c0:a5:94:81: 34:4f:46:3b:24:d3:aa:cb:55:29:62:55:10:54:26:86:a3:22: 25:8d:fe:65:30:a2:96:6d:da:ae:a7:09:ad:02:03:3c:74:c5: 44:a4:b1:7e:ce:ab:ef:0c:70:be:16:02:70:81:3c:de:e1:96: 8b:72:09:48:85:cf:fc:7c:cc:38:9c:f4:b8:c9:df:20:12:d2: 2d:9e:44:3b:3c:11:b1:87:a3:be:7e:90:b7:0f:45:d6:d2:11: 8c:ac:c4:b9:c8:f8:c5:00:0b:d7:75:80:48:e4:cd:d1:26:57: 66:92:61:46:76:e9:23:0f:54:dd:6b:3c:cc:3f:57:f1:a8:47: 9e:03:83:d6 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCtgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTI4MjNaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEJDM0JBQjM1NDZDOUUw RjE3QTA5M0Q4NkVEQUYxMUZGQjI5RDUxNkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDS+fIoqqcBj65Pwdn1LWqebPyyqAfm8mqVRMcwXE1OHHlJp9SS LUOYfL0uRFoKYHsyi7ow5mOEuQQ+ZpdLYc1l2InmJMk4Ejd8u4vwrFdCQmtg30mx O1jxiEx0bqfRCiKMjqF9u1UMFgR6c9VLFN/nihgziPFN/YXAHxQ52JfRF2Ba7CKH 5v4MWxUOg7z7qtCaOYJiDgmFZMapbcFj4Tak6Nz0Bln4xno/bZuylSizeSk8cMfd 38Fkug+xlZFw1CTSO+Sko4f4OcMm0UNV7zOL3S6cIKzDRcZoB3aeqPPz4MJwTVfb oWfDn7SPj9be2vmbWiMzpe1PcLTB4kYXtwv9AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUvDurNUbJ4PF6CT2G7a8R/7KdUWowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3ZEdXJOVWJKNFBGNkNUMkc3YThSXzdLZFVXby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYRgwDQYJKoZIhvcNAQELBQADggEBALJnXP7vsWaTTUQWZwuC/OOHjutI ms9+v7NebHEA3Tif6cm5VYRSpspyTIMCUylVr7yYiJPlGqIbftOEBhgE7Oz9TJqI EgmeEyM5QAFE+3cMAAlTbrLPLgIWsjwtyjL3MCbE5Tjm2ukz61p7XmPNlpzxcO3L Ce0Sp4QXwKWUgTRPRjsk06rLVSliVRBUJoajIiWN/mUwopZt2q6nCa0CAzx0xUSk sX7Oq+8McL4WAnCBPN7hlotyCUiFz/x8zDic9LjJ3yAS0i2eRDs8EbGHo75+kLcP RdbSEYysxLnI+MUAC9d1gEjkzdEmV2aSYUZ26SMPVN1rPMw/V/GoR54Dg9Y= -----END CERTIFICATE-----Generated at Wed Feb 19 22:31:08 2025 by rpki-client