$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/zHPje4kSVFaVVQYe72q_YKO9FII.roa File: zHPje4kSVFaVVQYe72q_YKO9FII.roa (raw, json) Hash identifier: ol9GRU3ZTeh4X2pFi0gfZLR9dSyVD3S6yh+7NprvbzU= Subject key identifier: CC:73:E3:7B:89:12:54:56:95:55:06:1E:EF:6A:BF:60:A3:BD:14:82 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 06AD Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/zHPje4kSVFaVVQYe72q_YKO9FII.roa Signing time: Tue 30 Apr 2024 01:43:20 +0000 ROA not before: Tue 30 Apr 2024 01:43:20 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.168.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1709 (0x6ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:43:20 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=CC73E37B891254569555061EEF6ABF60A3BD1482 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d2:6e:3d:35:f4:b1:79:50:72:26:3b:3f:ad: f4:18:22:ae:cd:e4:81:80:b1:eb:e0:92:47:d4:cf: 3b:2c:24:1a:5a:e4:3e:b1:4f:76:4e:78:df:ff:2b: 15:d4:61:04:42:3a:84:f7:6e:46:a2:da:10:c9:75: 33:a7:7b:ea:21:de:95:85:61:e8:4b:4e:4a:17:d1: 26:0f:63:54:40:9b:32:6e:37:a9:e7:b1:1a:a3:e0: f8:00:dc:71:ed:97:ea:2c:f1:93:8b:d5:5e:4e:19: 5f:8c:4c:23:8f:4e:2c:2c:45:6e:34:65:3f:3c:d0: 58:d1:5f:d3:fd:a2:27:39:cb:57:cf:ea:c4:3c:4d: 03:df:c0:57:fb:3b:76:5e:42:32:09:2e:76:ce:7f: 12:73:91:ce:0f:f3:96:c6:cd:e2:54:28:68:52:91: e7:1c:7d:a8:04:3b:b2:26:e7:d9:0b:b7:7a:53:78: bc:cc:c8:78:e7:63:5d:8b:4f:4a:34:0a:15:e6:b7: 77:23:17:68:60:a1:34:08:8f:ee:f8:a0:ca:11:86: ef:29:c6:7c:79:d7:8c:43:bc:6a:64:69:05:93:18: ac:c9:12:74:b4:89:35:b2:de:3c:3e:33:a8:3e:43: fa:de:85:ab:e9:d2:13:2b:32:bc:6b:5d:30:2c:d3: 22:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:73:E3:7B:89:12:54:56:95:55:06:1E:EF:6A:BF:60:A3:BD:14:82 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/zHPje4kSVFaVVQYe72q_YKO9FII.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.168.0/22 Signature Algorithm: sha256WithRSAEncryption 0e:5b:b2:cc:24:44:0e:5b:48:6a:63:a1:14:c5:07:56:e0:b4: 2a:cc:09:5c:7e:65:36:c7:93:56:77:e8:77:42:7c:9e:14:88: 21:c9:50:6d:c8:c1:60:10:ad:6c:80:76:81:a8:fa:71:35:37: e8:db:18:d6:6f:97:2c:86:29:ac:14:55:20:ed:01:ce:49:53: c6:45:d6:e7:8c:99:af:bf:b6:a7:89:15:3a:65:22:6c:e7:4a: bf:23:57:0c:01:7d:38:3e:ff:57:50:b4:cd:10:60:fb:50:6a: 4f:94:39:c6:c9:9f:fe:2c:d4:27:e7:9d:9c:58:74:6d:da:3f: 2c:bb:1e:e0:f5:b2:5f:8d:56:98:45:cc:56:4e:b4:b7:14:9d: c2:76:ac:0b:41:86:09:ac:09:bf:e6:97:0d:36:a5:f0:78:1a: 53:e5:5b:d5:ab:b5:f5:92:2e:f5:2f:eb:8e:fc:e5:e8:18:79: 00:d0:68:22:97:bb:26:3e:75:f6:ad:2d:0b:35:83:10:11:3a: 55:03:78:8f:e5:ea:75:6d:8d:04:72:e5:ea:8c:4f:13:7c:15: dc:53:1b:3b:3b:02:db:dc:eb:cf:e9:71:5e:a1:8b:31:2a:4b: 85:21:1b:00:5d:75:97:ec:f3:3b:09:8c:f6:57:5c:74:6a:92: ec:b2:88:a0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBq0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTQzMjBaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKENDNzNFMzdCODkxMjU0 NTY5NTU1MDYxRUVGNkFCRjYwQTNCRDE0ODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDa0m49NfSxeVByJjs/rfQYIq7N5IGAsevgkkfUzzssJBpa5D6x T3ZOeN//KxXUYQRCOoT3bkai2hDJdTOne+oh3pWFYehLTkoX0SYPY1RAmzJuN6nn sRqj4PgA3HHtl+os8ZOL1V5OGV+MTCOPTiwsRW40ZT880FjRX9P9oic5y1fP6sQ8 TQPfwFf7O3ZeQjIJLnbOfxJzkc4P85bGzeJUKGhSkeccfagEO7Im59kLt3pTeLzM yHjnY12LT0o0ChXmt3cjF2hgoTQIj+74oMoRhu8pxnx514xDvGpkaQWTGKzJEnS0 iTWy3jw+M6g+Q/rehavp0hMrMrxrXTAs0yL5AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUzHPje4kSVFaVVQYe72q/YKO9FIIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3pIUGplNGtTVkZhVlZRWWU3MnFfWUtPOUZJSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBT6gwDQYJKoZIhvcNAQELBQADggEBAA5bsswkRA5bSGpjoRTFB1bgtCrM CVx+ZTbHk1Z36HdCfJ4UiCHJUG3IwWAQrWyAdoGo+nE1N+jbGNZvlyyGKawUVSDt Ac5JU8ZF1ueMma+/tqeJFTplImznSr8jVwwBfTg+/1dQtM0QYPtQak+UOcbJn/4s 1CfnnZxYdG3aPyy7HuD1sl+NVphFzFZOtLcUncJ2rAtBhgmsCb/mlw02pfB4GlPl W9WrtfWSLvUv64785egYeQDQaCKXuyY+dfatLQs1gxAROlUDeI/l6nVtjQRy5eqM TxN8FdxTGzs7Atvc68/pcV6hizEqS4UhGwBddZfs8zsJjPZXXHRqkuyyiKA= -----END CERTIFICATE-----Generated at Sun Feb 16 22:27:11 2025 by rpki-client