$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/zaIju_2653ajpLlTYBCukPJESU4.roa File: zaIju_2653ajpLlTYBCukPJESU4.roa (raw, json) Hash identifier: CBp0zTzqnyQYYOuB2WbLkLgjECarTfisoA4+Qn+kA1c= Subject key identifier: CD:A2:23:BB:FD:BA:E7:76:A3:A4:B9:53:60:10:AE:90:F2:44:49:4E Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B15 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/zaIju_2653ajpLlTYBCukPJESU4.roa Signing time: Fri 31 Jan 2025 01:34:29 +0000 ROA not before: Fri 31 Jan 2025 01:34:29 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.12.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2837 (0xb15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:34:29 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=CDA223BBFDBAE776A3A4B9536010AE90F244494E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:84:4f:32:32:a6:b8:99:d8:33:a0:4e:0d:88: 32:9a:f4:0a:20:7b:19:51:0c:ae:37:b4:47:19:3e: 41:36:b7:3c:ba:6e:e4:89:6b:5c:18:da:54:13:4c: 30:28:25:2c:c5:08:07:7e:37:9e:ba:16:93:80:1f: ce:72:f5:60:aa:fb:30:7a:ec:dd:61:91:ec:d4:0e: 33:ac:6a:3e:53:14:a0:c9:f3:25:6a:24:5e:bb:d6: aa:01:b8:7a:aa:94:85:1c:76:05:c8:f7:3e:d5:8f: 13:56:63:3e:6f:07:cc:be:35:e6:bf:2f:a5:5d:fe: 39:e1:05:02:18:18:a8:84:a3:dd:0c:8e:8d:9a:fe: 4b:0f:0b:2d:e1:c5:1e:c3:c8:ac:7f:0a:0d:f6:e8: 99:12:a8:a3:f6:fc:31:b7:da:74:c1:e6:10:6f:68: 17:9a:4d:38:5e:f0:ab:96:f9:f9:cc:1c:2e:60:88: 33:20:dc:4a:85:6d:ec:a7:84:1d:d8:b2:cd:59:c1: 85:39:81:cd:25:e8:05:45:fb:82:0f:9b:2f:a8:04: aa:fc:35:e2:46:4e:d4:41:9d:d4:e8:a3:11:ed:31: 1b:1c:7f:c5:7d:48:d8:12:c7:8b:2b:89:b4:e8:85: bc:c0:60:c5:a0:23:85:55:fe:d2:ec:d5:35:5b:1a: 83:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:A2:23:BB:FD:BA:E7:76:A3:A4:B9:53:60:10:AE:90:F2:44:49:4E X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/zaIju_2653ajpLlTYBCukPJESU4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.12.0/23 Signature Algorithm: sha256WithRSAEncryption 49:28:13:39:3d:48:44:69:13:3f:d1:b1:f9:86:22:43:2e:4c: e1:b2:bb:8a:89:e4:8a:39:51:92:7b:9c:5f:e4:51:88:34:1c: 89:38:04:14:e1:17:0e:0d:af:61:29:18:76:fb:6c:02:36:1b: 3d:4b:ba:a3:d2:26:58:d0:c8:c7:37:b9:87:3e:04:37:79:0d: 28:d6:f0:83:cc:3f:00:1e:44:7c:fb:ed:f4:e0:44:4a:0c:05: 90:6b:b5:5d:07:09:09:0e:cb:5b:b7:5a:6d:66:db:0d:ae:a1: 16:17:0d:64:71:30:89:b3:b4:e2:6c:10:9e:b9:67:55:19:c9: 17:6b:a4:8f:52:da:2c:cb:54:4e:e1:b2:82:3c:fa:d1:39:ea: 6a:45:1f:d3:02:95:67:61:82:b3:3d:3a:fb:12:39:bd:31:30: b6:ce:c6:e6:e5:0b:e4:a9:7d:1c:e7:11:f2:d0:56:f6:ca:29: 63:70:93:e0:a2:a6:8f:3a:26:0d:72:b1:6d:84:85:d7:fd:ef: af:fb:7f:e0:35:f6:a4:a2:73:07:18:c6:e3:30:82:52:c8:53: b8:e0:c2:08:5c:2d:01:99:c1:77:de:7b:34:7a:da:61:e2:c1: 5a:48:70:e7:6f:99:45:fd:08:a4:83:e2:09:15:22:97:9d:e9: 3a:07:3b:d9 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCxUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTM0MjlaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKENEQTIyM0JCRkRCQUU3 NzZBM0E0Qjk1MzYwMTBBRTkwRjI0NDQ5NEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqhE8yMqa4mdgzoE4NiDKa9AogexlRDK43tEcZPkE2tzy6buSJ a1wY2lQTTDAoJSzFCAd+N566FpOAH85y9WCq+zB67N1hkezUDjOsaj5TFKDJ8yVq JF671qoBuHqqlIUcdgXI9z7VjxNWYz5vB8y+Nea/L6Vd/jnhBQIYGKiEo90Mjo2a /ksPCy3hxR7DyKx/Cg326JkSqKP2/DG32nTB5hBvaBeaTThe8KuW+fnMHC5giDMg 3EqFbeynhB3Yss1ZwYU5gc0l6AVF+4IPmy+oBKr8NeJGTtRBndTooxHtMRscf8V9 SNgSx4sribTohbzAYMWgI4VV/tLs1TVbGoNFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUzaIju/2653ajpLlTYBCukPJESU4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3phSWp1XzI2NTNhanBMbFRZQkN1a1BKRVNVNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBSwwwDQYJKoZIhvcNAQELBQADggEBAEkoEzk9SERpEz/RsfmGIkMuTOGy u4qJ5Io5UZJ7nF/kUYg0HIk4BBThFw4Nr2EpGHb7bAI2Gz1LuqPSJljQyMc3uYc+ BDd5DSjW8IPMPwAeRHz77fTgREoMBZBrtV0HCQkOy1u3Wm1m2w2uoRYXDWRxMImz tOJsEJ65Z1UZyRdrpI9S2izLVE7hsoI8+tE56mpFH9MClWdhgrM9OvsSOb0xMLbO xublC+SpfRznEfLQVvbKKWNwk+Cipo86Jg1ysW2Ehdf976/7f+A19qSicwcYxuMw glLIU7jgwghcLQGZwXfeezR62mHiwVpIcOdvmUX9CKSD4gkVIped6ToHO9k= -----END CERTIFICATE-----Generated at Wed Feb 19 22:43:36 2025 by rpki-client