$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/w-v5gyWstYG5xp4ZeLiTvPA5FEc.roa File: w-v5gyWstYG5xp4ZeLiTvPA5FEc.roa (raw, json) Hash identifier: FbqWn2EJMd+I7DeHO+YNrN8sMCAT2Uo/hrEXfBgWfeo= Subject key identifier: C3:EB:F9:83:25:AC:B5:81:B9:C6:9E:19:78:B8:93:BC:F0:39:14:47 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0AEE Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/w-v5gyWstYG5xp4ZeLiTvPA5FEc.roa Signing time: Fri 31 Jan 2025 01:28:32 +0000 ROA not before: Fri 31 Jan 2025 01:28:32 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.97.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2798 (0xaee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:28:32 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=C3EBF98325ACB581B9C69E1978B893BCF0391447 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:69:79:92:3b:b8:58:6a:3d:71:c7:7e:f0:b7: 02:f1:78:79:c4:bb:c7:97:dd:2d:fb:95:ff:b8:12: ee:d3:b3:45:90:90:50:45:16:67:1f:09:df:18:4a: 97:a0:f9:dd:64:78:f0:be:cd:8e:ff:fc:3e:7c:7a: 15:01:99:71:0d:bc:f2:99:5b:9e:ed:21:bc:1b:da: fc:dd:7a:27:99:8b:9d:c9:3f:7a:cb:69:ec:96:b9: fc:25:71:4e:f3:65:20:0a:7a:84:f4:25:f2:d6:85: 3c:bf:72:f9:e7:a5:cc:10:26:5f:73:12:ed:28:30: ca:3b:c1:0e:2c:75:77:b2:55:8d:d1:a6:1a:ad:43: 87:a2:d6:ba:9f:e5:21:3f:87:31:0e:23:b5:27:9f: cf:10:8a:fc:e2:16:9f:08:46:11:48:ab:93:21:8d: 1d:1c:b7:6d:40:4c:d8:40:78:a3:68:82:65:d5:ca: 83:e8:4f:32:3d:a8:b4:d6:b7:b3:af:1f:12:11:e5: df:f7:d9:06:e0:0b:5d:b5:c9:54:db:1d:2d:a8:fe: 53:24:92:1b:bc:5c:33:ba:f3:10:98:99:a0:4d:8c: 2d:c7:60:55:dd:90:ba:5c:40:1b:67:b1:5f:18:34: 7b:d5:b3:cf:66:0f:53:3e:0f:db:f9:f7:07:d6:8e: f9:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:EB:F9:83:25:AC:B5:81:B9:C6:9E:19:78:B8:93:BC:F0:39:14:47 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/w-v5gyWstYG5xp4ZeLiTvPA5FEc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.97.5.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:17:9e:07:1e:02:fc:7a:bb:89:20:11:52:a5:e5:5a:41:89: 0a:aa:3d:5b:56:5f:94:6e:e6:36:ed:70:e4:1b:f4:16:ed:41: 46:91:1b:02:cb:8d:ad:52:77:58:e1:eb:89:48:ca:23:69:5c: 54:63:36:d4:ef:da:e6:69:3e:99:fe:c5:7c:6c:84:57:e1:2f: 4c:b1:90:af:b7:02:c5:de:bf:49:28:96:f5:52:ad:d3:90:b5: 20:77:13:54:d2:78:67:c8:40:7f:40:01:65:2a:2e:6a:b9:f2: b9:aa:67:db:a4:c4:b3:f8:f5:e0:fa:87:64:92:66:18:6b:e9: 12:d3:5e:6c:e8:bb:60:31:c0:06:4c:cd:d4:2d:4b:64:2f:60: 12:e8:80:22:93:59:54:a5:1f:ca:79:e8:68:a0:7e:e0:ea:c7: fe:c2:46:08:02:45:73:db:02:77:55:a8:22:9f:12:4f:ff:bf: ea:a1:bf:b9:6b:ac:3c:e0:52:f4:26:22:bb:69:48:30:37:22: d5:36:29:69:8d:a3:d1:2e:5e:ef:b7:6b:3d:10:8b:7c:87:4e: 3c:56:bb:79:1f:e6:fc:01:ff:ea:90:28:e2:19:97:cd:0b:91: a6:9a:58:2c:4b:2f:42:65:cb:21:16:a7:15:7b:73:35:3f:0c: 5e:6e:8a:1e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCu4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTI4MzJaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEMzRUJGOTgzMjVBQ0I1 ODFCOUM2OUUxOTc4Qjg5M0JDRjAzOTE0NDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDiaXmSO7hYaj1xx37wtwLxeHnEu8eX3S37lf+4Eu7Ts0WQkFBF FmcfCd8YSpeg+d1kePC+zY7//D58ehUBmXENvPKZW57tIbwb2vzdeieZi53JP3rL aeyWufwlcU7zZSAKeoT0JfLWhTy/cvnnpcwQJl9zEu0oMMo7wQ4sdXeyVY3Rphqt Q4ei1rqf5SE/hzEOI7Unn88QivziFp8IRhFIq5MhjR0ct21ATNhAeKNogmXVyoPo TzI9qLTWt7OvHxIR5d/32QbgC121yVTbHS2o/lMkkhu8XDO68xCYmaBNjC3HYFXd kLpcQBtnsV8YNHvVs89mD1M+D9v59wfWjvl3AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUw+v5gyWstYG5xp4ZeLiTvPA5FEcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3ctdjVneVdzdFlHNXhwNFplTGlUdlBBNUZFYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxYQUwDQYJKoZIhvcNAQELBQADggEBAJ8XngceAvx6u4kgEVKl5VpBiQqq PVtWX5Ru5jbtcOQb9BbtQUaRGwLLja1Sd1jh64lIyiNpXFRjNtTv2uZpPpn+xXxs hFfhL0yxkK+3AsXev0kolvVSrdOQtSB3E1TSeGfIQH9AAWUqLmq58rmqZ9ukxLP4 9eD6h2SSZhhr6RLTXmzou2AxwAZMzdQtS2QvYBLogCKTWVSlH8p56GigfuDqx/7C RggCRXPbAndVqCKfEk//v+qhv7lrrDzgUvQmIrtpSDA3ItU2KWmNo9EuXu+3az0Q i3yHTjxWu3kf5vwB/+qQKOIZl80LkaaaWCxLL0JlyyEWpxV7czU/DF5uih4= -----END CERTIFICATE-----Generated at Wed Feb 19 22:45:39 2025 by rpki-client