$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/FcxtVzHzkNoILGnDRdBS5egYYKk.roa File: FcxtVzHzkNoILGnDRdBS5egYYKk.roa (raw, json) Hash identifier: +sSzxAN/IvwX03Y/q+a4B0l7FestAteA0XLVeqeY+iA= Subject key identifier: 15:CC:6D:57:31:F3:90:DA:08:2C:69:C3:45:D0:52:E5:E8:18:60:A9 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A9C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/FcxtVzHzkNoILGnDRdBS5egYYKk.roa Signing time: Sun 30 Jun 2024 01:52:44 +0000 ROA not before: Sun 30 Jun 2024 01:52:44 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.74.216.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 16:57:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2716 (0xa9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:52:44 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=15CC6D5731F390DA082C69C345D052E5E81860A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:16:ff:44:fb:bb:a2:02:5f:a6:85:26:88:d1: 39:5b:a2:fa:64:09:70:f8:99:4f:8b:ee:90:41:a5: 59:ba:13:22:7e:1d:51:54:b2:aa:c8:63:ca:78:89: 81:5d:a7:e7:22:52:b8:91:df:f7:b9:e8:77:99:c2: 87:27:ff:75:1b:ad:2f:29:98:43:17:ce:0c:84:11: 20:bc:85:cb:42:a0:93:a9:5e:56:58:96:12:68:94: 9e:b6:4d:1f:f4:40:44:a0:35:4d:1b:d0:d0:59:71: 67:87:72:26:c4:1a:ed:25:ff:2a:d5:90:d4:f6:9f: 61:c5:82:0a:2a:68:7d:15:10:73:95:b7:8f:e9:6a: cd:9e:55:7b:ef:43:c5:7c:dd:6d:3e:ac:e8:45:19: 4c:9f:c6:7d:b9:21:d1:d6:79:72:9f:0c:ef:de:73: 32:d4:7f:8e:4c:f9:9a:2e:eb:60:54:fc:f5:eb:9a: 10:bd:db:f7:a7:1e:e6:3a:f2:3d:d3:c8:de:e7:0c: 0b:1e:f1:88:b5:15:fe:44:fc:55:f3:dd:ae:63:eb: 16:25:bd:72:eb:66:c9:67:01:c5:d0:1d:45:de:bd: 30:fd:e7:33:da:ee:f7:36:fa:c0:02:0e:8f:57:a6: 3e:78:d0:47:89:e5:14:5a:77:2c:ff:81:56:98:32: 5c:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:CC:6D:57:31:F3:90:DA:08:2C:69:C3:45:D0:52:E5:E8:18:60:A9 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/FcxtVzHzkNoILGnDRdBS5egYYKk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.74.216.0/21 Signature Algorithm: sha256WithRSAEncryption 65:ef:87:8c:7f:77:e2:8e:d8:e1:0b:31:cb:75:56:87:33:ba: df:d2:58:d6:c6:e1:a4:96:ce:26:46:72:a9:80:5e:ea:a0:2a: d7:47:38:99:89:53:4b:ae:a2:ba:f7:6f:22:3f:49:ef:5b:59: 7f:87:be:78:85:df:23:34:92:1e:3b:c6:17:09:be:26:17:60: 5e:56:8e:db:00:0c:30:1a:9d:92:00:0d:8f:ef:e6:e6:17:bb: b5:35:95:1d:d2:34:6e:94:42:9f:5a:94:1d:6a:a9:01:70:f2: e1:22:c5:43:8c:98:29:92:72:e3:7c:07:0a:fc:ce:61:e7:81: 0f:a2:b9:be:9d:39:7b:5b:a5:d8:39:a5:f6:94:3d:d0:83:11: 1c:6d:71:d7:f3:44:a0:c5:56:14:63:e0:9d:9c:1f:2c:7d:86: 50:4b:c3:83:bc:07:a8:c1:0d:e6:3f:b6:09:13:90:6d:45:e4: 4a:73:95:24:08:cc:ae:ae:b7:6b:53:7c:76:13:f4:01:4e:11: 6d:58:04:15:e1:87:c5:26:22:a5:07:5a:2f:d5:1b:3d:a4:8f: f8:f8:e2:18:f6:72:1a:42:30:a9:24:fa:0c:89:59:71:3a:13: e2:34:4e:bd:29:b9:d0:90:4e:58:a2:44:23:20:5b:2a:53:91: d9:47:bc:e4 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCpwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTUyNDRaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDE1Q0M2RDU3MzFGMzkw REEwODJDNjlDMzQ1RDA1MkU1RTgxODYwQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBFv9E+7uiAl+mhSaI0TlbovpkCXD4mU+L7pBBpVm6EyJ+HVFU sqrIY8p4iYFdp+ciUriR3/e56HeZwocn/3UbrS8pmEMXzgyEESC8hctCoJOpXlZY lhJolJ62TR/0QESgNU0b0NBZcWeHcibEGu0l/yrVkNT2n2HFggoqaH0VEHOVt4/p as2eVXvvQ8V83W0+rOhFGUyfxn25IdHWeXKfDO/eczLUf45M+Zou62BU/PXrmhC9 2/enHuY68j3TyN7nDAse8Yi1Ff5E/FXz3a5j6xYlvXLrZslnAcXQHUXevTD95zPa 7vc2+sACDo9Xpj540EeJ5RRadyz/gVaYMlxdAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUFcxtVzHzkNoILGnDRdBS5egYYKkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0ZjeHRWekh6a05vSUxHbkRSZEJTNWVnWVlLay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBStgwDQYJKoZIhvcNAQELBQADggEBAGXvh4x/d+KO2OELMct1Voczut/S WNbG4aSWziZGcqmAXuqgKtdHOJmJU0uuorr3byI/Se9bWX+HvniF3yM0kh47xhcJ viYXYF5WjtsADDAanZIADY/v5uYXu7U1lR3SNG6UQp9alB1qqQFw8uEixUOMmCmS cuN8Bwr8zmHngQ+iub6dOXtbpdg5pfaUPdCDERxtcdfzRKDFVhRj4J2cHyx9hlBL w4O8B6jBDeY/tgkTkG1F5EpzlSQIzK6ut2tTfHYT9AFOEW1YBBXhh8UmIqUHWi/V Gz2kj/j44hj2chpCMKkk+gyJWXE6E+I0Tr0pudCQTliiRCMgWypTkdlHvOQ= -----END CERTIFICATE-----Generated at Sat Apr 26 19:46:39 2025 by rpki-client