$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/xthpk_73QoBe-vulxjwYZcoKzL0.roa File: xthpk_73QoBe-vulxjwYZcoKzL0.roa (raw, json) Hash identifier: rqnvJmy0J4qXEVW1OXVPu49G4UHOGtNykPYYEu6Vavc= Subject key identifier: C6:D8:69:93:FE:F7:42:80:5E:FA:FB:A5:C6:3C:18:65:CA:0A:CC:BD Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 07CD Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/xthpk_73QoBe-vulxjwYZcoKzL0.roa Signing time: Tue 30 Apr 2024 02:08:51 +0000 ROA not before: Tue 30 Apr 2024 02:08:51 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.108.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1997 (0x7cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:08:51 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=C6D86993FEF742805EFAFBA5C63C1865CA0ACCBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0d:9c:22:34:51:3c:a3:9b:0b:25:04:f6:86: 42:9c:7b:ce:57:a4:81:05:89:4f:b7:8b:f1:70:48: 63:e4:f3:87:36:0e:9b:8b:55:31:a6:70:2b:51:89: 3f:d1:0c:5a:b4:80:0f:4a:14:77:99:ec:aa:88:79: 76:8a:fa:55:c3:8d:9e:a3:e5:7f:3b:d3:f5:44:85: af:77:e6:57:99:c0:ec:da:70:bf:ae:fd:4b:c0:24: 05:f2:19:67:77:b2:c0:cd:63:57:58:7d:89:87:8a: 51:dd:e7:ca:c2:eb:60:2b:d3:61:ae:fb:6c:b3:b0: 3f:12:33:a7:e6:61:61:8f:33:97:ae:d2:f3:36:6c: 0d:b9:74:12:f6:fc:92:ae:e9:d0:28:2a:a9:2e:7d: 99:e8:98:ed:b4:76:d7:b7:9e:cd:28:40:2d:3b:68: 1d:09:d1:70:a0:ad:85:94:00:10:0d:f6:d4:fb:1c: 5e:d4:65:03:23:bd:9b:6b:2e:61:4c:e9:eb:60:3d: 1b:57:72:40:5d:5b:07:c7:b0:c9:7f:9f:8d:2e:6f: 4f:31:f6:56:15:74:29:a8:46:a8:4b:2d:3c:d0:e4: 34:59:a5:4b:6c:a0:b0:34:42:7c:03:dc:a0:f2:90: 90:1c:ee:52:f8:c5:82:86:ca:0d:14:89:9c:bc:34: 81:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:D8:69:93:FE:F7:42:80:5E:FA:FB:A5:C6:3C:18:65:CA:0A:CC:BD X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/xthpk_73QoBe-vulxjwYZcoKzL0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.108.128.0/18 Signature Algorithm: sha256WithRSAEncryption 96:50:d4:f6:c3:68:41:55:61:3c:e2:df:4c:ff:c9:d1:83:aa: c1:81:7c:85:c2:ee:c4:11:8f:c7:fa:54:e7:f8:30:5a:90:e2: b7:71:b5:b0:18:83:e9:5d:cc:87:3e:33:76:aa:30:4a:1e:45: 1a:6d:5c:0d:bb:d8:87:c9:e2:2d:8d:2e:8e:a5:1c:69:e9:6a: c6:14:26:b0:04:68:63:df:9a:99:76:ed:ff:07:a8:db:1b:af: c3:9f:3a:af:a0:e9:67:84:10:14:1d:b0:f8:be:5e:e7:7b:85: 62:a8:4f:e9:86:c3:24:c1:b1:9a:bd:18:ce:92:8b:57:1d:89: 20:4d:0a:92:87:bf:cd:2b:c1:b4:de:0d:1b:68:7a:7d:05:f5: 61:15:35:ea:fb:ab:61:7f:8e:a7:3c:ed:26:bf:3c:91:5d:7b: fb:0f:e9:a5:77:46:6b:96:36:5c:b4:75:d1:aa:d2:28:90:48: 7c:bc:3a:da:15:58:c6:50:43:16:3e:7d:eb:2f:a7:28:75:5d: 5f:8d:8f:0c:27:38:7e:a9:8b:51:1c:fc:12:ec:75:27:b3:ba: d9:25:57:db:9a:e4:1d:f7:89:c0:a3:e7:69:1a:55:12:0b:0d: 9d:69:58:0b:84:70:f7:1a:c7:03:6d:73:23:86:7a:91:ef:6e: f2:b2:f2:a5 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB80wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjA4NTFaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEM2RDg2OTkzRkVGNzQy ODA1RUZBRkJBNUM2M0MxODY1Q0EwQUNDQkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDDZwiNFE8o5sLJQT2hkKce85XpIEFiU+3i/FwSGPk84c2DpuL VTGmcCtRiT/RDFq0gA9KFHeZ7KqIeXaK+lXDjZ6j5X870/VEha935leZwOzacL+u /UvAJAXyGWd3ssDNY1dYfYmHilHd58rC62Ar02Gu+2yzsD8SM6fmYWGPM5eu0vM2 bA25dBL2/JKu6dAoKqkufZnomO20dte3ns0oQC07aB0J0XCgrYWUABAN9tT7HF7U ZQMjvZtrLmFM6etgPRtXckBdWwfHsMl/n40ub08x9lYVdCmoRqhLLTzQ5DRZpUts oLA0QnwD3KDykJAc7lL4xYKGyg0UiZy8NIE9AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUxthpk/73QoBe+vulxjwYZcoKzL0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3h0aHBrXzczUW9CZS12dWx4andZWmNvS3pMMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYxbIAwDQYJKoZIhvcNAQELBQADggEBAJZQ1PbDaEFVYTzi30z/ydGDqsGB fIXC7sQRj8f6VOf4MFqQ4rdxtbAYg+ldzIc+M3aqMEoeRRptXA272IfJ4i2NLo6l HGnpasYUJrAEaGPfmpl27f8HqNsbr8OfOq+g6WeEEBQdsPi+Xud7hWKoT+mGwyTB sZq9GM6Si1cdiSBNCpKHv80rwbTeDRtoen0F9WEVNer7q2F/jqc87Sa/PJFde/sP 6aV3RmuWNly0ddGq0iiQSHy8OtoVWMZQQxY+fesvpyh1XV+NjwwnOH6pi1Ec/BLs dSezutklV9ua5B33icCj52kaVRILDZ1pWAuEcPcaxwNtcyOGepHvbvKy8qU= -----END CERTIFICATE-----Generated at Sun Feb 16 22:33:12 2025 by rpki-client