$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/440/gukgBlUTG6YMKvbsrhQ_0_UFYYM.roa File: gukgBlUTG6YMKvbsrhQ_0_UFYYM.roa (raw, json) Hash identifier: z1X7m4qHL1twosGvjPg1bHODjo8Si9qqTA6kDF8ncY4= Subject key identifier: 82:E9:20:06:55:13:1B:A6:0C:2A:F6:EC:AE:14:3F:D3:F5:05:61:83 Certificate issuer: /CN=E62338DE332C6F4B9E2596EE5DC379A25EFE58CF Certificate serial: 72 Authority key identifier: E6:23:38:DE:33:2C:6F:4B:9E:25:96:EE:5D:C3:79:A2:5E:FE:58:CF Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/gukgBlUTG6YMKvbsrhQ_0_UFYYM.roa Signing time: Sat 30 Nov 2024 01:31:48 +0000 ROA not before: Sat 30 Nov 2024 01:31:48 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 17676 IP address blocks: 61.114.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/5iM43jMsb0ueJZbuXcN5ol7-WM8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/5iM43jMsb0ueJZbuXcN5ol7-WM8.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E62338DE332C6F4B9E2596EE5DC379A25EFE58CF Validity Not Before: Nov 30 01:31:48 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=82E9200655131BA60C2AF6ECAE143FD3F5056183 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c4:40:a2:54:df:8c:dc:f8:25:fe:59:7f:bf: 5b:a1:d1:23:e2:e9:63:47:b1:78:0b:0e:bf:3e:d4: 67:68:df:4a:47:d0:6a:07:58:74:50:eb:cb:63:6d: c1:ca:12:34:71:e0:a2:8a:c8:2b:b5:c5:52:d0:9f: 6b:37:ac:b8:6f:47:d7:c2:ac:ac:e2:57:55:77:e6: 1e:14:77:a6:1e:ce:b8:6a:ab:56:07:04:6d:46:81: e3:48:40:e2:a2:cd:8e:03:9e:68:16:88:3c:cc:e3: cb:ff:4c:cb:bb:2e:81:8f:2d:ad:37:13:6b:c8:c1: ef:7d:7d:43:11:a5:fd:fc:fb:fd:0c:e6:53:33:3b: aa:92:d9:a4:d6:f6:fb:2c:f2:ce:65:69:2c:5a:35: d2:ce:a0:7b:28:ae:fb:c6:3b:c9:03:d5:3b:3d:7e: 67:45:7d:0b:a8:b4:5d:12:69:85:95:8e:ba:24:98: b5:8d:83:42:3f:8a:30:40:34:ed:43:ac:ca:18:a7: 5d:d7:b3:35:6b:2f:fe:19:ca:af:90:95:a1:7e:2a: da:c9:1f:81:3a:04:38:47:56:f7:9a:97:6e:59:39: 09:6a:1b:9a:f5:3e:9a:a7:ef:cb:9c:e3:11:32:76: 5a:fc:a0:6c:b5:f7:6b:f7:a4:0a:86:76:02:c8:4f: 6c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:E9:20:06:55:13:1B:A6:0C:2A:F6:EC:AE:14:3F:D3:F5:05:61:83 X509v3 Authority Key Identifier: keyid:E6:23:38:DE:33:2C:6F:4B:9E:25:96:EE:5D:C3:79:A2:5E:FE:58:CF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/5iM43jMsb0ueJZbuXcN5ol7-WM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/gukgBlUTG6YMKvbsrhQ_0_UFYYM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.114.240.0/20 Signature Algorithm: sha256WithRSAEncryption 3e:ea:34:37:38:2d:f6:d5:39:45:68:84:14:21:84:23:dd:04: 95:a5:64:31:f7:c2:f1:55:9c:76:e7:12:f4:a0:7c:4e:4a:da: 92:97:85:37:6c:94:54:ff:29:33:b4:fe:b4:cd:58:a7:07:12: 34:da:de:f4:2d:66:3a:00:cd:29:2a:09:a8:e2:0d:45:38:9b: 0b:2a:57:93:63:a4:51:a5:e4:6a:74:81:9d:78:6c:54:c7:06: 82:6a:0d:b5:17:93:26:71:5d:ea:40:15:95:2f:48:e4:f6:bc: 0a:38:b4:8d:36:f0:15:fc:dd:88:dd:84:fd:33:f1:36:0c:3e: 79:dd:a4:91:89:f5:2e:64:6a:f8:d1:5c:89:9b:c0:b2:33:7c: be:57:2c:74:ec:65:63:d0:47:4f:78:60:2c:ad:ec:43:87:96: 7b:bb:d4:59:68:3b:72:7a:ec:0d:f8:f5:3c:1d:16:b8:92:32: bd:26:fc:c2:09:6b:ca:55:2a:ce:2f:05:fe:9a:b1:23:5c:af: a6:c3:94:71:72:fb:47:e4:c1:8a:ab:93:dc:65:e6:b5:04:55: c8:9d:60:f7:3d:19:e1:54:21:f8:9f:55:38:20:23:4d:4e:20: d8:b3:d3:f8:10:9d:12:05:e1:07:6b:37:5c:02:68:79:fe:ce: a3:94:95:94 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBcjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFNjIz MzhERTMzMkM2RjRCOUUyNTk2RUU1REMzNzlBMjVFRkU1OENGMB4XDTI0MTEzMDAx MzE0OFoXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoODJFOTIwMDY1NTEzMUJB NjBDMkFGNkVDQUUxNDNGRDNGNTA1NjE4MzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMrEQKJU34zc+CX+WX+/W6HRI+LpY0exeAsOvz7UZ2jfSkfQagdY dFDry2NtwcoSNHHgoorIK7XFUtCfazesuG9H18KsrOJXVXfmHhR3ph7OuGqrVgcE bUaB40hA4qLNjgOeaBaIPMzjy/9My7sugY8trTcTa8jB7319QxGl/fz7/QzmUzM7 qpLZpNb2+yzyzmVpLFo10s6geyiu+8Y7yQPVOz1+Z0V9C6i0XRJphZWOuiSYtY2D Qj+KMEA07UOsyhinXdezNWsv/hnKr5CVoX4q2skfgToEOEdW95qXblk5CWobmvU+ mqfvy5zjETJ2WvygbLX3a/ekCoZ2AshPbPUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSC6SAGVRMbpgwq9uyuFD/T9QVhgzAfBgNVHSMEGDAWgBTmIzjeMyxvS54llu5d w3miXv5YzzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDQwLzVpTTQzak1zYjB1ZUpaYnVYY041b2w3LVdNOC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzVpTTQzak1zYjB1ZUpaYnVYY041b2w3 LVdNOC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80NDAvZ3VrZ0JsVVRHNllNS3Zic3JoUV8wX1VGWVlNLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBD1y8DANBgkqhkiG9w0BAQsFAAOCAQEAPuo0Nzgt9tU5RWiEFCGEI90ElaVk MffC8VWcducS9KB8TkrakpeFN2yUVP8pM7T+tM1YpwcSNNre9C1mOgDNKSoJqOIN RTibCypXk2OkUaXkanSBnXhsVMcGgmoNtReTJnFd6kAVlS9I5Pa8Cji0jTbwFfzd iN2E/TPxNgw+ed2kkYn1LmRq+NFciZvAsjN8vlcsdOxlY9BHT3hgLK3sQ4eWe7vU WWg7cnrsDfj1PB0WuJIyvSb8wglrylUqzi8F/pqxI1yvpsOUcXL7R+TBiquT3GXm tQRVyJ1g9z0Z4VQh+J9VOCAjTU4g2LPT+BCdEgXhB2s3XAJoef7Oo5SVlA== -----END CERTIFICATE-----Generated at Sat Apr 5 17:35:25 2025 by rpki-client