$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/w6TyVnGLvuQqhEDw4LZXyKjQpAc.roa File: w6TyVnGLvuQqhEDw4LZXyKjQpAc.roa (raw, json) Hash identifier: Sc10kzA2lulB6pZ6mPEJLZi0ZAEGgHHUfK+9iDX+/hM= Subject key identifier: C3:A4:F2:56:71:8B:BE:E4:2A:84:40:F0:E0:B6:57:C8:A8:D0:A4:07 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0989 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/w6TyVnGLvuQqhEDw4LZXyKjQpAc.roa Signing time: Sun 30 Jun 2024 01:36:24 +0000 ROA not before: Sun 30 Jun 2024 01:36:24 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 220.159.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 23:55:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2441 (0x989) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:36:24 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=C3A4F256718BBEE42A8440F0E0B657C8A8D0A407 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b4:5a:8e:e5:d5:c6:ae:0f:6d:d9:ab:40:11: a9:95:75:f7:39:ca:ce:81:11:0f:41:af:14:d6:fb: e8:85:0b:f3:26:e7:a8:10:0e:62:8c:bb:57:a9:f0: e3:ff:f7:da:ab:d8:00:17:05:16:9e:8f:77:1b:d1: b6:0a:64:ea:9c:ae:3f:e9:84:5e:23:c9:7f:1c:16: 15:61:04:cf:8c:5f:50:79:12:03:e0:30:52:94:84: 20:50:06:9a:fe:27:c1:bc:22:aa:93:4c:ff:03:13: 89:b1:a8:12:93:08:d4:75:45:3f:15:36:1c:64:f7: ba:51:e8:d2:be:61:7d:14:dd:43:43:7c:8e:93:e7: e5:20:b6:cb:10:a6:0a:fb:4a:65:67:aa:01:e1:54: be:6a:59:d9:3a:f7:8b:bc:3f:9a:79:69:f7:f7:ce: 04:3a:de:0d:69:55:1b:eb:df:c9:89:ac:6d:a4:9d: c5:40:0c:60:3d:e7:b9:06:2d:c1:6a:62:46:6f:94: 02:ec:b6:3f:e1:06:e1:ad:af:f7:bc:75:7e:bb:2e: e6:c2:53:c4:1b:83:16:d4:09:eb:7d:33:23:92:da: 64:47:39:26:b4:ee:88:e6:0b:89:e0:4f:e9:6d:c4: 00:40:81:72:6f:33:1b:51:d5:90:9d:10:da:7b:4c: 43:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:A4:F2:56:71:8B:BE:E4:2A:84:40:F0:E0:B6:57:C8:A8:D0:A4:07 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/w6TyVnGLvuQqhEDw4LZXyKjQpAc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.231.0/24 Signature Algorithm: sha256WithRSAEncryption bf:74:76:55:5c:b1:0a:60:3b:03:12:b8:54:5e:87:f3:0f:98: c5:a7:90:80:2d:60:e7:f6:a2:62:f4:49:4b:b1:24:9f:c3:d6: ec:f3:6e:54:28:7b:c4:d2:04:5f:9b:fe:69:4e:40:ed:c4:05: 46:b3:fb:63:b4:54:61:c4:ac:2e:31:47:3d:80:dc:0d:23:7e: 37:bf:f7:f5:77:58:0e:50:9d:d8:21:d3:84:ce:17:5d:fa:6a: 01:3a:0b:c1:91:7b:92:93:fb:3f:44:3c:0b:15:7d:96:0c:50: b3:47:70:7f:3c:de:4c:97:76:a4:95:08:75:e1:06:8f:c5:79: 9a:47:68:13:bb:5f:0d:fe:09:77:b1:4e:dd:20:62:36:39:ef: 6a:6b:92:a1:ec:48:03:72:85:b7:d8:26:50:85:fb:97:70:5b: b3:60:54:f1:4e:36:ec:4e:c6:68:e9:78:75:28:08:2f:fb:62: e7:ff:cc:e1:af:6e:d2:3b:4d:d3:46:f6:8f:d7:3d:86:16:52: 78:c2:5e:c4:cd:68:9f:93:f6:61:71:70:9c:1c:84:f1:a5:77: 66:ad:d4:b0:97:fb:50:d1:a6:6a:c0:06:63:9d:1e:16:d5:5f: cb:54:08:d1:18:8c:e7:20:68:cb:3e:c3:d5:a3:5b:10:c7:16: b4:2a:6c:e8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCYkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTM2MjRaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEMzQTRGMjU2NzE4QkJF RTQyQTg0NDBGMEUwQjY1N0M4QThEMEE0MDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKtFqO5dXGrg9t2atAEamVdfc5ys6BEQ9BrxTW++iFC/Mm56gQ DmKMu1ep8OP/99qr2AAXBRaej3cb0bYKZOqcrj/phF4jyX8cFhVhBM+MX1B5EgPg MFKUhCBQBpr+J8G8IqqTTP8DE4mxqBKTCNR1RT8VNhxk97pR6NK+YX0U3UNDfI6T 5+UgtssQpgr7SmVnqgHhVL5qWdk694u8P5p5aff3zgQ63g1pVRvr38mJrG2kncVA DGA957kGLcFqYkZvlALstj/hBuGtr/e8dX67LubCU8QbgxbUCet9MyOS2mRHOSa0 7ojmC4ngT+ltxABAgXJvMxtR1ZCdENp7TEPlAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUw6TyVnGLvuQqhEDw4LZXyKjQpAcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3c2VHlWbkdMdnVRcWhFRHc0TFpYeUtqUXBBYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADcn+cwDQYJKoZIhvcNAQELBQADggEBAL90dlVcsQpgOwMSuFReh/MPmMWn kIAtYOf2omL0SUuxJJ/D1uzzblQoe8TSBF+b/mlOQO3EBUaz+2O0VGHErC4xRz2A 3A0jfje/9/V3WA5Qndgh04TOF136agE6C8GRe5KT+z9EPAsVfZYMULNHcH883kyX dqSVCHXhBo/FeZpHaBO7Xw3+CXexTt0gYjY572prkqHsSANyhbfYJlCF+5dwW7Ng VPFONuxOxmjpeHUoCC/7Yuf/zOGvbtI7TdNG9o/XPYYWUnjCXsTNaJ+T9mFxcJwc hPGld2at1LCX+1DRpmrABmOdHhbVX8tUCNEYjOcgaMs+w9WjWxDHFrQqbOg= -----END CERTIFICATE-----Generated at Thu Mar 13 01:56:06 2025 by rpki-client