$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/1ZDXaLs3r9BAtXi1iWde1GTJ5k4.roa File: 1ZDXaLs3r9BAtXi1iWde1GTJ5k4.roa (raw, json) Hash identifier: TusHkENYGgfFhsHu1NrUm0sFML9fSwnHvdyenHF8rlA= Subject key identifier: D5:90:D7:68:BB:37:AF:D0:40:B5:78:B5:89:67:5E:D4:64:C9:E6:4E Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 073D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/1ZDXaLs3r9BAtXi1iWde1GTJ5k4.roa Signing time: Tue 30 Apr 2024 01:58:45 +0000 ROA not before: Tue 30 Apr 2024 01:58:45 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 110.158.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1853 (0x73d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:58:45 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=D590D768BB37AFD040B578B589675ED464C9E64E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b8:95:06:80:01:03:78:42:55:47:1f:a1:04: 33:d0:44:5a:81:d3:eb:d2:d3:af:0d:d0:a9:fa:07: e2:4c:a5:9b:82:7d:7d:d8:49:4d:a6:bd:a2:1b:fa: 74:97:ea:a0:dc:f3:5f:ee:2f:21:99:36:87:bb:39: 57:d7:f2:ff:13:cb:9a:52:63:b2:c9:7c:08:bb:80: 92:6f:d3:fe:bc:2c:56:90:0b:2b:4d:ce:c0:7c:39: 32:49:02:e5:a4:4a:1c:97:be:6c:ed:0e:c6:61:8d: e0:ba:80:65:5c:4a:75:c7:d3:1e:a1:8d:df:21:1f: 47:7f:3f:0e:9b:10:fc:69:3b:a0:35:65:73:fc:05: 30:86:51:61:e2:bb:b9:41:67:1c:f9:88:be:2e:3e: 19:1f:1b:b2:d9:1d:dd:ba:22:f0:53:c4:7d:6c:8b: 5e:c1:d9:ca:0a:70:ec:2b:c4:a9:87:83:21:85:69: d5:46:66:77:14:ca:9a:6f:33:5e:ff:2c:36:bb:84: 52:06:68:2f:35:15:c6:6c:6b:ac:b2:21:c0:17:ed: e7:ff:c6:13:d6:5b:ba:c0:fb:75:6a:3e:dd:a4:30: 85:67:ba:c4:47:4e:56:6a:4e:9c:79:82:45:3f:40: 21:4b:6f:fd:0e:5d:c0:ac:7c:7c:03:14:9c:f6:40: d2:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:90:D7:68:BB:37:AF:D0:40:B5:78:B5:89:67:5E:D4:64:C9:E6:4E X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/1ZDXaLs3r9BAtXi1iWde1GTJ5k4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.158.144.0/20 Signature Algorithm: sha256WithRSAEncryption a0:8d:e4:e6:79:16:61:b0:35:86:62:aa:39:45:6b:1e:84:44: 8e:22:8e:df:72:c7:93:0a:28:43:25:1a:09:ee:7e:02:44:b5: d7:3b:ea:f5:8e:3c:06:3b:ff:9a:da:1d:88:e1:77:83:6b:1b: 4c:9d:2b:f3:d2:c5:de:e5:49:bf:f8:43:78:8d:6c:3b:73:8e: c7:79:31:41:f5:da:65:ec:10:ff:6e:eb:5f:08:e2:f9:4b:51: c6:f7:27:2c:82:a6:2f:44:91:a9:e7:1b:82:91:76:f0:be:1a: 06:1c:5c:75:9c:d4:06:33:37:38:0f:9a:d7:ce:e7:f4:46:96: a0:ab:02:d2:f7:b3:20:21:c5:b1:98:ae:78:e0:1a:b4:81:46: a8:2d:73:b0:8b:f7:29:bb:72:a3:9c:3a:3d:c8:ea:38:6b:b3: d4:9a:82:0d:3b:46:ce:10:84:75:e4:e5:23:8b:a7:3c:2c:79: 57:65:85:e9:c1:7c:c1:c0:be:16:c8:44:f8:31:bb:7c:6b:41: 47:61:d0:f7:84:b3:3e:44:c7:68:0f:4d:0e:7f:44:3e:51:dd: 9e:94:6c:12:94:29:6f:52:d9:7b:ed:c5:45:04:c6:da:72:4c: 31:f6:fa:89:76:11:3d:a6:a1:ed:42:88:cf:c4:79:13:da:00: dc:f1:db:14 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBz0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTU4NDVaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEQ1OTBENzY4QkIzN0FG RDA0MEI1NzhCNTg5Njc1RUQ0NjRDOUU2NEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUuJUGgAEDeEJVRx+hBDPQRFqB0+vS068N0Kn6B+JMpZuCfX3Y SU2mvaIb+nSX6qDc81/uLyGZNoe7OVfX8v8Ty5pSY7LJfAi7gJJv0/68LFaQCytN zsB8OTJJAuWkShyXvmztDsZhjeC6gGVcSnXH0x6hjd8hH0d/Pw6bEPxpO6A1ZXP8 BTCGUWHiu7lBZxz5iL4uPhkfG7LZHd26IvBTxH1si17B2coKcOwrxKmHgyGFadVG ZncUyppvM17/LDa7hFIGaC81FcZsa6yyIcAX7ef/xhPWW7rA+3VqPt2kMIVnusRH TlZqTpx5gkU/QCFLb/0OXcCsfHwDFJz2QNLtAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU1ZDXaLs3r9BAtXi1iWde1GTJ5k4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzFaRFhhTHMzcjlCQXRYaTFpV2RlMUdUSjVrNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARunpAwDQYJKoZIhvcNAQELBQADggEBAKCN5OZ5FmGwNYZiqjlFax6ERI4i jt9yx5MKKEMlGgnufgJEtdc76vWOPAY7/5raHYjhd4NrG0ydK/PSxd7lSb/4Q3iN bDtzjsd5MUH12mXsEP9u618I4vlLUcb3JyyCpi9EkannG4KRdvC+GgYcXHWc1AYz NzgPmtfO5/RGlqCrAtL3syAhxbGYrnjgGrSBRqgtc7CL9ym7cqOcOj3I6jhrs9Sa gg07Rs4QhHXk5SOLpzwseVdlhenBfMHAvhbIRPgxu3xrQUdh0PeEsz5Ex2gPTQ5/ RD5R3Z6UbBKUKW9S2XvtxUUExtpyTDH2+ol2ET2moe1CiM/EeRPaANzx2xQ= -----END CERTIFICATE-----Generated at Fri Nov 22 15:23:58 2024 by rpki-client on console-fra.rpki-client.org