$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/-rn0mMFihh5gbDVMmvfAjv8YtL8.roa File: -rn0mMFihh5gbDVMmvfAjv8YtL8.roa (raw, json) Hash identifier: Iwcb/DhlqHQjcKssjID9bakjm92O9V56fZP4v3ipbA0= Subject key identifier: FA:B9:F4:98:C1:62:86:1E:60:6C:35:4C:9A:F7:C0:8E:FF:18:B4:BF Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A9D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-rn0mMFihh5gbDVMmvfAjv8YtL8.roa Signing time: Sun 30 Jun 2024 01:52:45 +0000 ROA not before: Sun 30 Jun 2024 01:52:45 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.76.72.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2717 (0xa9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:52:45 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=FAB9F498C162861E606C354C9AF7C08EFF18B4BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d0:b3:3a:70:f4:41:ca:5f:38:19:b7:90:d2: 8b:a4:7f:09:85:20:eb:b1:ed:28:c7:c8:8b:f1:ba: 70:8c:bc:f6:53:01:2d:2b:7d:70:dc:7b:67:6f:54: 30:7c:1a:36:1f:8b:45:c8:14:14:76:1d:f5:f2:5a: b4:0c:b5:17:1b:79:98:10:38:3b:13:21:53:c7:37: b2:ac:11:57:50:df:1d:dc:3d:dc:12:20:1c:24:2f: a2:06:c9:b8:3a:3b:25:76:00:b3:dc:44:50:41:05: eb:17:b9:a9:89:c6:9f:a4:6c:e1:59:b8:03:13:a4: e5:11:d4:4b:19:91:14:ce:15:98:8b:c4:b4:44:c0: 3e:36:a4:6f:aa:fe:bc:ba:c4:b9:07:ea:0d:fe:2e: 65:2c:2c:c7:c1:d2:bc:08:38:30:94:71:12:d7:f9: 2a:45:75:2b:da:b7:37:c1:67:71:bf:d6:6f:4c:09: eb:5d:da:53:77:d0:e6:e5:8d:11:72:05:30:69:9e: 1c:99:ab:21:84:76:fa:c6:1b:00:b8:ab:e4:be:dd: 12:42:ea:2a:a8:55:19:2a:a1:dd:ad:75:a4:f9:bf: f6:24:a0:37:75:5f:ec:77:7a:73:96:e5:bf:99:13: 55:61:3a:4d:8c:a3:b2:b6:60:c0:a5:54:af:e0:10: 07:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:B9:F4:98:C1:62:86:1E:60:6C:35:4C:9A:F7:C0:8E:FF:18:B4:BF X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-rn0mMFihh5gbDVMmvfAjv8YtL8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.72.0/23 Signature Algorithm: sha256WithRSAEncryption a1:dc:6c:a7:da:3e:5c:94:cc:2f:bb:7c:fd:af:6a:2e:89:e4: e1:6e:03:bc:ff:40:1a:73:9c:48:8a:4e:1c:76:8a:f2:0c:24: 6c:2e:65:4d:fb:88:7e:5e:2d:05:e9:5c:b5:89:21:cb:97:0c: 69:0d:40:b3:d4:62:09:55:5a:a7:03:f4:d6:83:58:f4:3d:11: 65:f0:a2:24:7b:e0:4b:55:2c:fc:dc:da:b1:ba:1f:c9:79:06: d4:d5:93:bd:41:b9:15:a9:88:50:eb:5b:0c:bb:7d:51:af:26: 07:b4:1c:26:c4:9f:72:53:a4:6b:e2:b0:35:23:26:17:7e:3d: ba:08:58:d3:dd:e5:ed:76:c8:e4:8b:92:82:5e:32:87:4a:89: 88:b5:15:3f:6b:15:67:ff:2e:e5:27:c5:98:5b:2e:4d:af:be: f2:40:12:7f:a6:6a:e4:cd:06:ce:35:c2:f7:a3:8a:68:0b:3b: 7f:af:22:81:fa:df:27:a3:db:16:e9:a5:c9:a3:49:b0:b1:0d: 8e:fd:ec:a1:2e:d8:57:41:3a:19:57:ff:41:97:b6:ce:2a:da: 88:08:83:47:1a:1f:38:7a:b7:5c:a1:0f:8d:9d:6b:ee:fd:94: 54:86:5f:4c:bb:9c:e5:fc:c3:30:5d:53:27:73:b5:55:0d:e6: 84:84:6a:10 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCp0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTUyNDVaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEZBQjlGNDk4QzE2Mjg2 MUU2MDZDMzU0QzlBRjdDMDhFRkYxOEI0QkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDC0LM6cPRByl84GbeQ0oukfwmFIOux7SjHyIvxunCMvPZTAS0r fXDce2dvVDB8GjYfi0XIFBR2HfXyWrQMtRcbeZgQODsTIVPHN7KsEVdQ3x3cPdwS IBwkL6IGybg6OyV2ALPcRFBBBesXuamJxp+kbOFZuAMTpOUR1EsZkRTOFZiLxLRE wD42pG+q/ry6xLkH6g3+LmUsLMfB0rwIODCUcRLX+SpFdSvatzfBZ3G/1m9MCetd 2lN30ObljRFyBTBpnhyZqyGEdvrGGwC4q+S+3RJC6iqoVRkqod2tdaT5v/YkoDd1 X+x3enOW5b+ZE1VhOk2Mo7K2YMClVK/gEAepAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU+rn0mMFihh5gbDVMmvfAjv8YtL8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5Ly1ybjBtTUZpaGg1Z2JEVk1tdmZBanY4WXRMOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBTEgwDQYJKoZIhvcNAQELBQADggEBAKHcbKfaPlyUzC+7fP2vai6J5OFu A7z/QBpznEiKThx2ivIMJGwuZU37iH5eLQXpXLWJIcuXDGkNQLPUYglVWqcD9NaD WPQ9EWXwoiR74EtVLPzc2rG6H8l5BtTVk71BuRWpiFDrWwy7fVGvJge0HCbEn3JT pGvisDUjJhd+PboIWNPd5e12yOSLkoJeModKiYi1FT9rFWf/LuUnxZhbLk2vvvJA En+mauTNBs41wvejimgLO3+vIoH63yej2xbppcmjSbCxDY797KEu2FdBOhlX/0GX ts4q2ogIg0caHzh6t1yhD42da+79lFSGX0y7nOX8wzBdUydztVUN5oSEahA= -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:35 2024 by rpki-client on console-ams.rpki-client.org