$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/vOaFhgejfl53-x4UINprdAL9hlA.roa File: vOaFhgejfl53-x4UINprdAL9hlA.roa (raw, json) Hash identifier: iGHuNh2EgGhsq6aI3Bc9B6N5aw8VBa1k0ZJgsk/UyRQ= Subject key identifier: BC:E6:85:86:07:A3:7E:5E:77:FB:1E:14:20:DA:6B:74:02:FD:86:50 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0AA9 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/vOaFhgejfl53-x4UINprdAL9hlA.roa Signing time: Sun 30 Jun 2024 01:54:26 +0000 ROA not before: Sun 30 Jun 2024 01:54:26 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 110.163.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2729 (0xaa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:54:26 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=BCE6858607A37E5E77FB1E1420DA6B7402FD8650 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:41:c9:b3:e4:1d:76:5a:d3:61:ab:3a:c3:82: bf:f0:b4:1e:fe:af:fc:b0:d7:bf:ca:25:0f:29:1e: e6:81:34:54:db:6d:ba:9a:f9:c4:da:23:0e:01:c0: 09:d6:77:ad:ab:72:1b:b8:e4:d4:f5:fe:a8:71:30: 63:4b:75:f8:1e:7e:c5:22:07:b9:77:03:66:86:f4: 49:a0:c0:61:c7:e1:8c:d9:c6:f0:6a:e0:5e:68:1b: e0:0c:db:d1:b3:35:34:2a:17:27:37:a5:cd:e9:28: 36:bb:fc:4c:9c:37:84:24:3f:34:64:a9:02:ad:2f: 03:ef:8b:66:1a:2e:c4:17:3f:55:36:92:87:92:ed: a9:f5:bc:e2:b2:ab:dd:08:c9:7a:46:29:5f:35:bf: 63:31:f5:2f:1f:39:f4:8c:42:32:4a:58:a5:e4:30: 5c:36:56:62:09:5f:39:e2:99:57:55:be:a9:5e:7e: 81:a9:4f:d4:6e:38:15:59:9b:b1:2a:b5:3d:ae:15: 0a:d3:58:88:78:2a:a7:4d:63:25:69:db:77:ea:b2: 3d:c6:5b:4b:a1:f2:f8:8b:31:6e:1b:2e:5c:a4:24: a1:2e:06:14:85:ba:67:b7:1f:a5:ab:fd:80:11:32: 80:5d:ba:1d:ae:bd:9a:24:a3:20:09:4a:ee:61:0c: a6:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:E6:85:86:07:A3:7E:5E:77:FB:1E:14:20:DA:6B:74:02:FD:86:50 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/vOaFhgejfl53-x4UINprdAL9hlA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.163.24.0/22 Signature Algorithm: sha256WithRSAEncryption 9a:fc:e5:75:89:68:4f:1d:9f:2d:d9:89:4c:2d:3c:8c:72:e3: 49:8e:49:c0:5e:53:e7:ae:30:27:f4:80:a5:e7:85:b5:4d:0c: 5f:bc:b2:8c:c9:ae:f1:ab:47:2e:a7:11:af:45:26:c1:3b:f0: 2e:a7:13:b2:7f:3b:63:5e:2c:10:e7:a7:ea:eb:a4:72:82:2a: 1f:84:e5:01:8a:a8:ce:86:01:4a:73:1e:b6:db:da:03:47:84: ce:df:b1:38:49:ac:25:86:b6:f8:a3:7e:c2:b6:3c:f8:21:d7: 79:a9:57:38:eb:a8:df:72:3d:c0:8b:04:01:36:a3:d5:85:6b: a0:76:d1:35:7f:be:b9:dc:9a:3d:e1:26:80:5d:f3:31:5a:e3: aa:8e:87:83:12:69:0c:c9:4a:46:44:de:b9:63:ba:78:06:9a: 11:0b:99:68:24:88:6b:db:56:43:17:dc:72:f8:e6:80:dc:57: 41:f3:2f:06:8a:79:4d:5c:e2:90:fc:d3:67:09:a8:d2:53:c1: d5:bd:e4:0d:47:b2:8d:71:c6:e4:55:27:a8:7e:ca:be:44:cd: e4:25:d2:4d:b6:07:de:95:3a:46:3a:32:d4:aa:57:cf:fe:91: 69:cf:e9:50:b3:ae:c8:b1:ab:98:21:d3:f6:ce:b0:92:ea:8e: 5e:d1:4d:45 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCqkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTU0MjZaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEJDRTY4NTg2MDdBMzdF NUU3N0ZCMUUxNDIwREE2Qjc0MDJGRDg2NTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEQcmz5B12WtNhqzrDgr/wtB7+r/yw17/KJQ8pHuaBNFTbbbqa +cTaIw4BwAnWd62rchu45NT1/qhxMGNLdfgefsUiB7l3A2aG9EmgwGHH4YzZxvBq 4F5oG+AM29GzNTQqFyc3pc3pKDa7/EycN4QkPzRkqQKtLwPvi2YaLsQXP1U2koeS 7an1vOKyq90IyXpGKV81v2Mx9S8fOfSMQjJKWKXkMFw2VmIJXznimVdVvqlefoGp T9RuOBVZm7EqtT2uFQrTWIh4KqdNYyVp23fqsj3GW0uh8viLMW4bLlykJKEuBhSF ume3H6Wr/YARMoBduh2uvZokoyAJSu5hDKb7AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUvOaFhgejfl53+x4UINprdAL9hlAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3ZPYUZoZ2VqZmw1My14NFVJTnByZEFMOWhsQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJuoxgwDQYJKoZIhvcNAQELBQADggEBAJr85XWJaE8dny3ZiUwtPIxy40mO ScBeU+euMCf0gKXnhbVNDF+8sozJrvGrRy6nEa9FJsE78C6nE7J/O2NeLBDnp+rr pHKCKh+E5QGKqM6GAUpzHrbb2gNHhM7fsThJrCWGtvijfsK2PPgh13mpVzjrqN9y PcCLBAE2o9WFa6B20TV/vrncmj3hJoBd8zFa46qOh4MSaQzJSkZE3rljungGmhEL mWgkiGvbVkMX3HL45oDcV0HzLwaKeU1c4pD802cJqNJTwdW95A1Hso1xxuRVJ6h+ yr5EzeQl0k22B96VOkY6MtSqV8/+kWnP6VCzrsixq5gh0/bOsJLqjl7RTUU= -----END CERTIFICATE-----Generated at Sun Feb 16 22:25:15 2025 by rpki-client