$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/z3624sJ6RK1-EvrhUTTWIa3lfIA.roa File: z3624sJ6RK1-EvrhUTTWIa3lfIA.roa (raw, json) Hash identifier: p1txqf28FnNGNEzi5bWXio79qODwdMZKPOiLq7b8aIY= Subject key identifier: CF:7E:B6:E2:C2:7A:44:AD:7E:12:FA:E1:51:34:D6:21:AD:E5:7C:80 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 08C3 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/z3624sJ6RK1-EvrhUTTWIa3lfIA.roa Signing time: Tue 30 Apr 2024 02:24:34 +0000 ROA not before: Tue 30 Apr 2024 02:24:34 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.16.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2243 (0x8c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:24:34 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=CF7EB6E2C27A44AD7E12FAE15134D621ADE57C80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d8:f8:45:ff:56:40:e6:0f:e7:74:22:02:f3: 1c:0a:92:a8:9e:38:d5:95:79:87:0a:a8:11:a9:00: 42:90:da:ed:3c:77:e8:58:61:26:d8:63:38:e0:1a: f4:81:d1:88:2d:73:be:92:21:b5:63:46:00:58:7c: f5:8b:93:e9:7f:26:b3:47:bc:49:12:7c:ae:63:e6: a3:c0:a3:40:f9:6a:0e:49:84:10:24:6b:7c:25:20: 62:bb:11:f0:9c:5a:b3:14:34:ad:c7:88:4d:12:fd: ec:6f:c2:ae:4b:42:ad:19:2a:85:9a:f8:c9:23:5a: 55:db:b5:d0:2d:e2:68:4a:80:c0:fb:0d:c1:df:de: cd:35:7a:bd:69:9c:be:ca:75:45:a3:c4:79:57:d6: da:fc:7e:1a:19:56:d3:db:44:26:6b:14:c4:49:a4: 31:07:d4:b3:9f:83:60:77:3c:87:3d:f4:8f:94:4d: 46:60:01:46:b1:5d:98:02:86:a0:ac:52:56:3b:7e: fe:87:c6:c6:86:96:54:e1:6b:66:36:66:7e:13:fb: e4:94:af:ee:9d:01:e9:1a:d6:55:c3:3e:ff:9c:d7: f3:b5:d9:ec:85:d5:8e:f7:d1:d5:7b:02:1d:bc:d5: 86:ac:94:15:47:4f:d4:61:70:94:cb:4d:b0:c9:9e: 6a:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:7E:B6:E2:C2:7A:44:AD:7E:12:FA:E1:51:34:D6:21:AD:E5:7C:80 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/z3624sJ6RK1-EvrhUTTWIa3lfIA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.16.0/22 Signature Algorithm: sha256WithRSAEncryption 8d:f3:5f:c0:e1:ae:f5:2e:43:d5:e1:ff:ef:0e:2c:ae:ed:47: 37:df:ce:ae:2e:04:0d:19:52:da:e8:4c:f3:9b:78:fb:cf:31: b7:cf:a5:a5:4d:5e:5a:b5:b7:52:ef:35:16:81:dd:c5:92:9d: 1b:80:b7:45:e5:ef:c4:b5:8e:a7:ea:48:d2:db:ab:6e:c4:e9: f6:4d:c0:47:0e:3e:08:f3:90:be:86:d6:2b:39:c8:ff:b4:14: 4b:b4:96:58:c1:50:52:69:71:33:88:d1:a6:5b:83:2e:ef:1e: b5:4e:83:e1:05:24:43:16:15:aa:2c:45:ee:29:37:d7:ee:7b: 3c:9c:53:b3:b6:c4:60:0f:c2:f3:ff:46:96:36:04:15:a9:5c: 74:87:be:ec:f9:8f:56:62:36:3c:e7:81:92:a6:f4:93:6f:3d: 1f:eb:8a:84:ca:45:44:61:fc:40:11:d5:c7:da:26:c8:8f:87: 4e:26:45:94:8a:3d:f4:9c:f5:2d:19:fa:c2:3d:89:54:ee:34: 2d:5a:47:51:b9:1e:3a:5e:b0:89:9f:c9:88:4e:47:27:d9:ba: f4:93:ba:ab:4a:94:0b:77:d8:7f:0a:f5:28:a4:94:b2:fa:86: 08:cc:0a:b6:27:1b:47:85:bc:56:6e:6b:b2:08:dc:57:78:e4: 2c:8f:e2:44 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCMMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjI0MzRaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKENGN0VCNkUyQzI3QTQ0 QUQ3RTEyRkFFMTUxMzRENjIxQURFNTdDODAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQ2PhF/1ZA5g/ndCIC8xwKkqieONWVeYcKqBGpAEKQ2u08d+hY YSbYYzjgGvSB0Ygtc76SIbVjRgBYfPWLk+l/JrNHvEkSfK5j5qPAo0D5ag5JhBAk a3wlIGK7EfCcWrMUNK3HiE0S/exvwq5LQq0ZKoWa+MkjWlXbtdAt4mhKgMD7DcHf 3s01er1pnL7KdUWjxHlX1tr8fhoZVtPbRCZrFMRJpDEH1LOfg2B3PIc99I+UTUZg AUaxXZgChqCsUlY7fv6HxsaGllTha2Y2Zn4T++SUr+6dAeka1lXDPv+c1/O12eyF 1Y730dV7Ah281YaslBVHT9RhcJTLTbDJnmrhAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUz3624sJ6RK1+EvrhUTTWIa3lfIAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3ozNjI0c0o2UksxLUV2cmhVVFRXSWEzbGZJQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBTxAwDQYJKoZIhvcNAQELBQADggEBAI3zX8DhrvUuQ9Xh/+8OLK7tRzff zq4uBA0ZUtroTPObePvPMbfPpaVNXlq1t1LvNRaB3cWSnRuAt0Xl78S1jqfqSNLb q27E6fZNwEcOPgjzkL6G1is5yP+0FEu0lljBUFJpcTOI0aZbgy7vHrVOg+EFJEMW FaosRe4pN9fuezycU7O2xGAPwvP/RpY2BBWpXHSHvuz5j1ZiNjzngZKm9JNvPR/r ioTKRURh/EAR1cfaJsiPh04mRZSKPfSc9S0Z+sI9iVTuNC1aR1G5HjpesImfyYhO RyfZuvSTuqtKlAt32H8K9SiklLL6hgjMCrYnG0eFvFZua7II3Fd45CyP4kQ= -----END CERTIFICATE-----Generated at Sun Feb 16 22:24:29 2025 by rpki-client