$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/wQrl7rtxNmIPgo4qn-JBYVZ36Wc.roa File: wQrl7rtxNmIPgo4qn-JBYVZ36Wc.roa (raw, json) Hash identifier: ytB9OEtf9JIlhXeTwByCfTAyuh7+rSzYwhJT+2Ch8sk= Subject key identifier: C1:0A:E5:EE:BB:71:36:62:0F:82:8E:2A:9F:E2:41:61:56:77:E9:67 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 06B0 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/wQrl7rtxNmIPgo4qn-JBYVZ36Wc.roa Signing time: Tue 30 Apr 2024 01:43:22 +0000 ROA not before: Tue 30 Apr 2024 01:43:22 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.32.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 23:55:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1712 (0x6b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:43:22 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=C10AE5EEBB7136620F828E2A9FE241615677E967 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:c2:01:1c:6e:f2:e0:c0:12:a5:dd:1a:08:fd: 8c:48:e1:41:b8:c6:a2:38:33:7c:89:e3:43:d4:1f: a1:76:5f:82:04:d9:99:2e:3b:29:f6:38:19:a9:e1: 3b:cb:30:75:13:97:5f:e9:76:a5:ce:73:a6:f4:0a: 3e:0e:d0:3b:6c:92:e5:8f:ca:f7:8b:47:eb:41:96: 88:1e:27:1f:dd:d5:d6:73:aa:a3:88:2f:8a:20:53: 8d:2a:12:af:74:42:85:f3:da:cd:08:05:70:ca:b6: 8d:94:57:41:55:bd:15:8f:ae:17:a3:fc:a2:f8:cb: 7f:76:9e:42:cb:4f:44:be:09:90:de:86:57:7f:0e: 5f:0f:ed:2d:9d:a4:9d:a4:ca:21:b5:53:5e:98:3e: f0:31:e0:41:4f:75:db:41:29:bf:80:35:c2:07:8c: b8:f4:de:23:f8:b2:c0:52:a5:94:7d:ad:b8:51:2a: 27:0c:af:e0:02:ea:a0:35:d0:f8:20:c2:7b:97:bd: 0f:e2:f5:58:7b:e3:94:a5:2f:6c:7c:24:81:2b:b7: 00:04:50:1c:fb:81:9f:17:77:83:cc:cc:6f:e6:34: c7:2b:0c:8d:d3:d4:2c:ef:c8:99:15:82:50:a5:00: 42:fb:6b:73:37:6f:81:bc:80:db:4e:2d:31:b6:72: 93:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:0A:E5:EE:BB:71:36:62:0F:82:8E:2A:9F:E2:41:61:56:77:E9:67 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/wQrl7rtxNmIPgo4qn-JBYVZ36Wc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.32.0/22 Signature Algorithm: sha256WithRSAEncryption 8a:cd:29:96:2e:22:0a:b8:78:3d:ad:a8:ee:55:b0:a5:89:19: 35:6b:9a:58:60:a2:d0:85:a6:ec:4c:8a:23:8a:40:f3:04:c0: 43:81:e9:c0:97:ba:9e:51:ef:d4:c5:32:7a:e1:3c:40:47:78: b3:f9:26:44:c8:26:1b:93:a2:b6:37:4b:cd:e6:c6:fc:e3:aa: 50:50:e3:71:1f:8c:7a:30:4a:2c:88:2c:62:56:0b:7a:09:a2: 70:98:ec:6d:f6:71:3a:9e:a2:98:ad:9d:ae:58:ca:e4:d5:ce: ee:e8:a4:a4:9c:d5:99:4a:c0:b9:af:56:af:53:1e:4d:49:ef: 61:0a:4e:e9:0c:32:a3:4e:1b:22:df:1d:ff:72:f5:01:9a:95: b8:33:05:39:a5:2b:af:4d:72:bc:b7:63:54:5b:2f:52:a7:8c: b9:b0:2c:f9:e2:10:d3:7c:e4:22:d0:76:5a:ea:5b:ee:89:92: 16:e5:ab:2d:f5:8e:a1:80:d0:cc:31:d7:8a:d2:28:5b:cd:75: 91:02:27:17:bc:d2:68:57:3b:ef:5f:22:d0:da:b2:b6:47:86: 2b:68:45:43:a8:b7:79:93:df:ee:20:ea:dc:76:37:45:15:64: 0b:9e:3a:71:fa:ae:69:cd:1d:ec:80:dc:73:b8:67:21:3b:18: 06:1e:f0:ab -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBrAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTQzMjJaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEMxMEFFNUVFQkI3MTM2 NjIwRjgyOEUyQTlGRTI0MTYxNTY3N0U5NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnwgEcbvLgwBKl3RoI/YxI4UG4xqI4M3yJ40PUH6F2X4IE2Zku Oyn2OBmp4TvLMHUTl1/pdqXOc6b0Cj4O0DtskuWPyveLR+tBlogeJx/d1dZzqqOI L4ogU40qEq90QoXz2s0IBXDKto2UV0FVvRWPrhej/KL4y392nkLLT0S+CZDehld/ Dl8P7S2dpJ2kyiG1U16YPvAx4EFPddtBKb+ANcIHjLj03iP4ssBSpZR9rbhRKicM r+AC6qA10PggwnuXvQ/i9Vh745SlL2x8JIErtwAEUBz7gZ8Xd4PMzG/mNMcrDI3T 1CzvyJkVglClAEL7a3M3b4G8gNtOLTG2cpMZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUwQrl7rtxNmIPgo4qn+JBYVZ36WcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3dRcmw3cnR4Tm1JUGdvNHFuLUpCWVZaMzZXYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBTyAwDQYJKoZIhvcNAQELBQADggEBAIrNKZYuIgq4eD2tqO5VsKWJGTVr mlhgotCFpuxMiiOKQPMEwEOB6cCXup5R79TFMnrhPEBHeLP5JkTIJhuTorY3S83m xvzjqlBQ43EfjHowSiyILGJWC3oJonCY7G32cTqeopitna5YyuTVzu7opKSc1ZlK wLmvVq9THk1J72EKTukMMqNOGyLfHf9y9QGalbgzBTmlK69Ncry3Y1RbL1KnjLmw LPniENN85CLQdlrqW+6Jkhblqy31jqGA0Mwx14rSKFvNdZECJxe80mhXO+9fItDa srZHhitoRUOot3mT3+4g6tx2N0UVZAueOnH6rmnNHeyA3HO4ZyE7GAYe8Ks= -----END CERTIFICATE-----Generated at Thu Mar 13 01:52:41 2025 by rpki-client