$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ySGcdPa1aWB8CYsA8jew7ltZ3qs.roa File: ySGcdPa1aWB8CYsA8jew7ltZ3qs.roa (raw, json) Hash identifier: qj++Q8b2/NZXMRIXZB4GieDrA83OmWS3MZx29RFvDJQ= Subject key identifier: C9:21:9C:74:F6:B5:69:60:7C:09:8B:00:F2:37:B0:EE:5B:59:DE:AB Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0751 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ySGcdPa1aWB8CYsA8jew7ltZ3qs.roa Signing time: Tue 30 Apr 2024 01:58:56 +0000 ROA not before: Tue 30 Apr 2024 01:58:56 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1873 (0x751) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:58:56 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=C9219C74F6B569607C098B00F237B0EE5B59DEAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:6c:ac:23:27:9b:95:d8:a9:0d:c4:9f:e5:3b: 05:93:71:2b:48:fe:5b:10:85:4b:af:06:cf:d7:b1: 18:31:58:43:97:32:d1:81:84:c3:75:32:4d:ea:d6: 3e:e5:4f:30:fc:70:a4:14:58:d1:9a:10:cb:8e:a3: bb:c2:d7:e7:bf:87:54:d9:6e:dd:8d:05:4b:a3:21: c4:30:9a:38:4c:87:70:bd:3f:6d:ca:9e:a3:75:3a: a4:fa:fa:e4:0d:b5:62:ee:57:d1:77:e4:c4:e6:8b: a8:c1:2b:c2:b6:51:7b:93:e2:7b:41:0d:1b:3b:2e: 32:0f:d0:7f:da:2b:c1:a8:e8:51:d5:08:e8:8f:8a: 54:a1:d5:49:42:f3:ff:44:e0:18:ac:96:20:30:72: 18:fd:f8:83:82:13:55:be:a1:ca:51:84:4c:6a:e9: 24:a4:5f:97:d3:83:fb:92:8f:9f:fd:d8:7f:26:59: 28:f7:ba:8c:b8:c3:3a:04:8a:7d:d9:6d:62:24:bd: cb:3f:78:0d:dd:16:fc:a6:e3:70:83:dd:94:10:08: f0:d0:9d:ed:68:d9:bb:19:99:f0:ba:4c:55:87:c8: 32:51:61:6b:08:2b:b0:79:80:4a:36:b8:10:64:62: 95:84:03:85:fd:52:c1:50:2a:cb:72:36:81:b2:b0: 24:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:21:9C:74:F6:B5:69:60:7C:09:8B:00:F2:37:B0:EE:5B:59:DE:AB X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ySGcdPa1aWB8CYsA8jew7ltZ3qs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.230.0/24 Signature Algorithm: sha256WithRSAEncryption 34:91:a6:93:03:19:54:cd:51:33:61:ee:39:c9:86:14:22:86: 7f:ee:2c:94:08:ef:e6:70:16:6c:52:a6:e6:db:fb:fb:d9:bd: 31:71:c3:8f:be:52:fb:06:03:c0:75:d3:34:fd:b5:d8:de:73: 92:9c:f1:ac:14:01:77:17:c7:8d:1e:6b:7d:ad:a5:48:19:27: af:98:f9:0c:89:5c:1f:f1:0a:5b:b4:a6:5a:6c:f9:14:49:e7: 1c:1c:b9:16:e3:b4:85:5d:99:c6:e5:1c:a4:b3:c3:62:38:d5: 59:a8:e9:2d:b3:61:b7:59:d3:68:ec:0e:9f:ad:da:50:20:6c: e9:cb:38:71:94:ad:2c:aa:c0:36:10:50:30:3b:cc:50:00:20: 1e:4a:df:7f:40:1d:8b:c1:4b:3d:24:f5:fd:1a:03:e9:27:73: e7:e7:03:1e:7a:60:14:c7:3a:25:34:d8:77:9d:ad:6c:c8:4c: a7:a4:6a:4f:35:21:92:74:3d:31:46:b3:ff:8f:0b:9c:78:87: 9e:fd:68:be:76:49:55:bf:2c:25:19:61:c2:e4:13:4b:4a:53: 1f:ba:c1:2f:6f:1b:b7:12:05:c3:ff:fe:31:35:c6:de:c8:0e: 59:b6:94:4a:ac:75:2e:f1:3e:fc:f7:e1:db:c0:63:bb:0c:67: a6:2e:2e:a3 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB1EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTU4NTZaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEM5MjE5Qzc0RjZCNTY5 NjA3QzA5OEIwMEYyMzdCMEVFNUI1OURFQUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgbKwjJ5uV2KkNxJ/lOwWTcStI/lsQhUuvBs/XsRgxWEOXMtGB hMN1Mk3q1j7lTzD8cKQUWNGaEMuOo7vC1+e/h1TZbt2NBUujIcQwmjhMh3C9P23K nqN1OqT6+uQNtWLuV9F35MTmi6jBK8K2UXuT4ntBDRs7LjIP0H/aK8Go6FHVCOiP ilSh1UlC8/9E4BisliAwchj9+IOCE1W+ocpRhExq6SSkX5fTg/uSj5/92H8mWSj3 uoy4wzoEin3ZbWIkvcs/eA3dFvym43CD3ZQQCPDQne1o2bsZmfC6TFWHyDJRYWsI K7B5gEo2uBBkYpWEA4X9UsFQKstyNoGysCS9AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUySGcdPa1aWB8CYsA8jew7ltZ3qswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3lTR2NkUGExYVdCOENZc0E4amV3N2x0WjNxcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxYOYwDQYJKoZIhvcNAQELBQADggEBADSRppMDGVTNUTNh7jnJhhQihn/u LJQI7+ZwFmxSpubb+/vZvTFxw4++UvsGA8B10zT9tdjec5Kc8awUAXcXx40ea32t pUgZJ6+Y+QyJXB/xClu0plps+RRJ5xwcuRbjtIVdmcblHKSzw2I41Vmo6S2zYbdZ 02jsDp+t2lAgbOnLOHGUrSyqwDYQUDA7zFAAIB5K339AHYvBSz0k9f0aA+knc+fn Ax56YBTHOiU02HedrWzITKekak81IZJ0PTFGs/+PC5x4h579aL52SVW/LCUZYcLk E0tKUx+6wS9vG7cSBcP//jE1xt7IDlm2lEqsdS7xPvz34dvAY7sMZ6YuLqM= -----END CERTIFICATE-----Generated at Sun Feb 16 22:21:00 2025 by rpki-client