$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/wkl_kQrFxPgn8ciNal6cSWxeV24.roa File: wkl_kQrFxPgn8ciNal6cSWxeV24.roa (raw, json) Hash identifier: 5OISsx+ahoJZZ90BKSSIePAwnY6Wnyf+Co3jh/OWV1A= Subject key identifier: C2:49:7F:91:0A:C5:C4:F8:27:F1:C8:8D:6A:5E:9C:49:6C:5E:57:6E Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0ABE Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/wkl_kQrFxPgn8ciNal6cSWxeV24.roa Signing time: Wed 31 Jul 2024 01:28:57 +0000 ROA not before: Wed 31 Jul 2024 01:28:57 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.109.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2750 (0xabe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jul 31 01:28:57 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=C2497F910AC5C4F827F1C88D6A5E9C496C5E576E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:74:e2:2e:32:28:ab:54:5e:9f:8e:80:10:bd: 64:52:a0:9e:9a:bf:6c:92:6e:12:ad:9f:8b:79:a5: 91:a7:33:8a:51:33:8a:01:03:d0:38:55:74:62:92: d1:9b:83:3c:99:7c:dc:fc:40:73:57:06:5a:55:a8: 93:c9:c2:fe:68:a6:03:4b:28:07:b2:6e:c9:e5:2f: 3f:44:63:5f:ba:ee:0e:49:ac:0c:c5:7f:fb:11:74: 7e:7c:8a:2f:5a:e1:e9:43:4a:fa:a8:03:29:08:c8: a6:f6:c3:b5:68:12:0a:46:54:d6:d3:2d:8f:a6:16: db:cd:54:0f:82:0e:6a:9d:7a:1f:a9:ed:3d:95:c6: 52:db:0c:01:57:54:ba:d8:bf:25:5b:4b:e8:da:24: 6f:6b:70:c6:c7:f3:64:bc:e6:eb:0d:6b:a0:06:c0: ae:bb:08:cd:6d:af:45:0c:34:c1:34:ec:12:a8:cd: c5:4c:43:7a:ba:68:1f:2b:cf:8e:ee:ff:83:2c:25: c7:21:54:1d:09:cc:d7:2a:18:69:ed:e3:59:67:bd: b7:c5:4a:a7:3e:0e:80:89:9f:33:4b:1d:e3:3f:6f: 68:dd:8b:b8:90:df:64:50:f5:b1:ab:5f:fd:7f:08: d0:01:ee:d4:e6:29:59:d4:51:b4:56:71:d9:37:b1: 14:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:49:7F:91:0A:C5:C4:F8:27:F1:C8:8D:6A:5E:9C:49:6C:5E:57:6E X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/wkl_kQrFxPgn8ciNal6cSWxeV24.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.109.96.0/19 Signature Algorithm: sha256WithRSAEncryption ad:68:47:4c:45:93:24:47:42:c2:ff:45:5d:60:ab:e6:19:d5: a2:df:9e:f2:44:e5:cd:44:22:e0:0e:ef:76:95:44:5a:2f:0b: e0:67:04:dd:c6:47:e7:d5:d1:fb:05:0b:12:dc:a4:23:c3:80: 6f:ee:ce:f8:73:71:ac:24:d7:d8:4b:05:b0:e1:1f:7d:91:4b: c7:78:10:9c:d9:7c:df:f7:ad:9a:7d:d4:fa:5e:db:1d:86:df: 6b:92:b0:ab:7d:17:d6:1d:eb:43:8e:63:8e:8c:ff:a0:f9:a3: 1c:91:8e:e4:fb:52:6e:8b:51:63:0d:7e:f5:50:3b:fd:65:1d: 6a:71:49:5e:32:cc:8a:4a:87:a0:66:8e:95:04:f5:2a:06:99: 6a:f7:d2:f5:63:59:9c:4d:2e:75:29:db:50:f5:ad:ad:b8:d8: 34:7a:c0:de:cc:e1:8d:3e:2e:c6:53:99:30:ea:07:ef:1c:7e: bf:bc:86:90:d8:ee:8a:16:aa:8d:e4:5a:5d:95:16:99:2e:2c: e5:11:70:49:c4:5e:13:1e:bb:b4:65:9f:b1:8d:35:d4:33:7e: c1:7b:e4:94:e6:b1:1a:68:13:78:7a:e0:5e:ce:d3:3d:77:97: 45:24:a9:da:a7:20:03:9c:6a:c6:2d:30:5d:99:cb:67:97:cc: d3:90:b6:01 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCr4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA3MzEw MTI4NTdaFw0yNTA3MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEMyNDk3RjkxMEFDNUM0 RjgyN0YxQzg4RDZBNUU5QzQ5NkM1RTU3NkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDodOIuMiirVF6fjoAQvWRSoJ6av2ySbhKtn4t5pZGnM4pRM4oB A9A4VXRiktGbgzyZfNz8QHNXBlpVqJPJwv5opgNLKAeybsnlLz9EY1+67g5JrAzF f/sRdH58ii9a4elDSvqoAykIyKb2w7VoEgpGVNbTLY+mFtvNVA+CDmqdeh+p7T2V xlLbDAFXVLrYvyVbS+jaJG9rcMbH82S85usNa6AGwK67CM1tr0UMNME07BKozcVM Q3q6aB8rz47u/4MsJcchVB0JzNcqGGnt41lnvbfFSqc+DoCJnzNLHeM/b2jdi7iQ 32RQ9bGrX/1/CNAB7tTmKVnUUbRWcdk3sRSpAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUwkl/kQrFxPgn8ciNal6cSWxeV24wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3drbF9rUXJGeFBnbjhjaU5hbDZjU1d4ZVYyNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUxbWAwDQYJKoZIhvcNAQELBQADggEBAK1oR0xFkyRHQsL/RV1gq+YZ1aLf nvJE5c1EIuAO73aVRFovC+BnBN3GR+fV0fsFCxLcpCPDgG/uzvhzcawk19hLBbDh H32RS8d4EJzZfN/3rZp91Ppe2x2G32uSsKt9F9Yd60OOY46M/6D5oxyRjuT7Um6L UWMNfvVQO/1lHWpxSV4yzIpKh6BmjpUE9SoGmWr30vVjWZxNLnUp21D1ra242DR6 wN7M4Y0+LsZTmTDqB+8cfr+8hpDY7ooWqo3kWl2VFpkuLOURcEnEXhMeu7Rln7GN NdQzfsF75JTmsRpoE3h64F7O0z13l0UkqdqnIAOcasYtMF2Zy2eXzNOQtgE= -----END CERTIFICATE-----Generated at Sun Feb 16 22:07:08 2025 by rpki-client