$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/x7eCYRV0NYKLyIZg8iwoWbYnH0Q.roa File: x7eCYRV0NYKLyIZg8iwoWbYnH0Q.roa (raw, json) Hash identifier: ogLqgcSAGXpzBXonM8Jgk61b5Mp1cOY8UcEmpsx7zSY= Subject key identifier: C7:B7:82:61:15:74:35:82:8B:C8:86:60:F2:2C:28:59:B6:27:1F:44 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 095F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/x7eCYRV0NYKLyIZg8iwoWbYnH0Q.roa Signing time: Sun 30 Jun 2024 01:33:30 +0000 ROA not before: Sun 30 Jun 2024 01:33:30 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 220.210.60.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2399 (0x95f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:33:30 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=C7B78261157435828BC88660F22C2859B6271F44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:2d:20:cf:8b:e6:2d:61:1a:7e:ba:af:2f:e3: 0f:19:07:bf:6b:8d:9b:e7:6b:01:af:fb:18:17:41: f5:93:cd:7d:9e:50:92:cf:af:3c:de:80:f3:ed:0c: f4:37:0e:1e:2d:a7:a8:2f:0e:d3:00:32:d3:87:02: d8:dc:7a:55:f7:6f:75:a4:4a:39:24:e3:81:92:d4: 8b:97:51:99:ee:b1:e2:95:ea:a7:1e:75:ff:b5:35: 68:25:b7:7c:1a:4c:7a:ba:5f:6b:cc:b3:e3:25:a3: eb:4d:26:ea:e7:68:a2:e2:08:d6:8c:78:ff:c0:b3: 0e:49:93:d3:8f:00:6c:51:1a:48:be:d7:f5:c8:98: f7:b9:6f:13:e2:4a:c3:1a:b8:49:d8:fb:87:41:d1: 5f:0e:6d:46:83:b1:1f:6f:88:ed:34:82:e1:f2:d0: f8:61:c4:de:a3:d2:1d:78:9e:72:ac:8c:3e:1d:2f: 99:73:9b:3d:da:55:6e:e1:e9:40:63:d1:15:3f:4e: 37:46:5e:10:0f:54:6a:36:2c:5c:b7:25:88:b7:cf: fd:04:57:c5:0a:3b:4c:98:33:56:de:12:ed:4a:ff: 0c:d9:13:70:49:99:05:3e:ab:ee:2c:d9:35:41:f4: 52:c5:9e:0e:5d:81:12:e8:eb:e6:b4:2d:ae:f0:46: 5d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:B7:82:61:15:74:35:82:8B:C8:86:60:F2:2C:28:59:B6:27:1F:44 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/x7eCYRV0NYKLyIZg8iwoWbYnH0Q.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.60.0/23 Signature Algorithm: sha256WithRSAEncryption a6:b8:7a:6a:8a:1a:e3:f2:aa:4d:f7:00:41:3d:19:d1:ba:61: 8f:26:43:ac:8d:87:83:d4:1f:77:85:be:17:7b:3a:ba:43:08: fd:00:e6:aa:e8:c1:bd:64:b8:ac:f9:6d:c2:c1:e3:b5:91:ad: 04:29:5a:cd:50:5c:de:74:bb:4b:2e:d9:34:6d:43:0d:c4:78: e4:2e:db:6e:ca:7e:21:1b:4a:ce:7b:dc:24:b9:c9:3d:2a:aa: 61:af:d1:ec:a1:3c:e8:fd:c7:cd:b3:fc:f1:6e:82:ec:c0:7a: bd:ea:c9:ed:e9:d7:89:0b:d7:50:aa:ae:73:b0:65:00:62:b3: 17:f2:a9:54:58:fc:49:9b:74:5f:39:94:4d:fc:70:d1:c4:2e: 2a:5a:d3:bf:1d:2d:aa:9f:4d:5a:4a:e3:03:b7:fb:71:e6:32: 12:50:f6:8a:45:ac:e8:c1:50:ef:e5:eb:46:35:09:62:7a:f2: fd:c0:b1:1b:64:05:25:51:7f:ad:b9:9d:cc:95:ce:5d:25:79: 85:67:49:a1:0d:40:fd:69:6b:1f:bc:38:3a:0b:55:ec:d1:36: e1:48:66:3f:53:77:67:a3:cf:7a:55:bd:16:ef:dc:6f:04:2c: b0:7e:7d:f2:7e:c7:25:1a:a0:14:72:81:b9:0d:53:ad:3f:b1: 83:3b:b1:59 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCV8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTMzMzBaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEM3Qjc4MjYxMTU3NDM1 ODI4QkM4ODY2MEYyMkMyODU5QjYyNzFGNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbLSDPi+YtYRp+uq8v4w8ZB79rjZvnawGv+xgXQfWTzX2eUJLP rzzegPPtDPQ3Dh4tp6gvDtMAMtOHAtjcelX3b3WkSjkk44GS1IuXUZnuseKV6qce df+1NWglt3waTHq6X2vMs+Mlo+tNJurnaKLiCNaMeP/Asw5Jk9OPAGxRGki+1/XI mPe5bxPiSsMauEnY+4dB0V8ObUaDsR9viO00guHy0PhhxN6j0h14nnKsjD4dL5lz mz3aVW7h6UBj0RU/TjdGXhAPVGo2LFy3JYi3z/0EV8UKO0yYM1beEu1K/wzZE3BJ mQU+q+4s2TVB9FLFng5dgRLo6+a0La7wRl3JAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUx7eCYRV0NYKLyIZg8iwoWbYnH0QwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3g3ZUNZUlYwTllLTHlJWmc4aXdvV2JZbkgwUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHc0jwwDQYJKoZIhvcNAQELBQADggEBAKa4emqKGuPyqk33AEE9GdG6YY8m Q6yNh4PUH3eFvhd7OrpDCP0A5qrowb1kuKz5bcLB47WRrQQpWs1QXN50u0su2TRt Qw3EeOQu227KfiEbSs573CS5yT0qqmGv0eyhPOj9x82z/PFuguzAer3qye3p14kL 11CqrnOwZQBisxfyqVRY/EmbdF85lE38cNHELipa078dLaqfTVpK4wO3+3HmMhJQ 9opFrOjBUO/l60Y1CWJ68v3AsRtkBSVRf625ncyVzl0leYVnSaENQP1pax+8ODoL VezRNuFIZj9Td2ejz3pVvRbv3G8ELLB+ffJ+xyUaoBRygbkNU60/sYM7sVk= -----END CERTIFICATE-----Generated at Sun Feb 16 22:03:48 2025 by rpki-client