$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/2NEriATYZuxe7fr7P-mRQNN-EF8.roa File: 2NEriATYZuxe7fr7P-mRQNN-EF8.roa (raw, json) Hash identifier: ng0qj+0b3myIPDxF05AtlesMsNqHwABv9jYP8OlTlrw= Subject key identifier: D8:D1:2B:88:04:D8:66:EC:5E:ED:FA:FB:3F:E9:91:40:D3:7E:10:5F Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0AB3 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2NEriATYZuxe7fr7P-mRQNN-EF8.roa Signing time: Sun 30 Jun 2024 01:54:32 +0000 ROA not before: Sun 30 Jun 2024 01:54:32 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 220.210.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2739 (0xab3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:54:32 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=D8D12B8804D866EC5EEDFAFB3FE99140D37E105F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c7:c3:d7:07:37:4a:19:d9:b0:8c:f1:af:ef: 00:60:4c:4c:9b:88:6a:6f:37:3e:4f:e8:f4:75:7e: 1d:c1:db:db:04:65:e6:2d:0d:ed:ed:10:42:3d:f2: 9d:af:d5:a5:ac:1a:f8:f2:80:3e:c7:af:33:fd:bc: c6:44:c1:a4:63:ef:c2:fd:8f:c0:82:67:6c:7e:af: 61:c5:4f:aa:ff:3f:a8:e8:bb:35:ce:f8:2f:42:79: f4:55:bb:76:d0:e3:6d:aa:2a:7a:69:7c:52:d6:2a: e9:f4:02:25:75:47:36:8d:34:f8:69:8d:10:c0:6b: ae:11:aa:96:8c:cf:73:c2:54:80:02:ae:cb:19:d6: e0:29:bb:30:a1:0a:88:58:ff:8e:d6:67:dc:0c:2d: c2:c7:52:c2:20:9e:5a:0b:7b:33:33:ff:69:96:3c: 3c:44:8f:9d:a8:77:38:52:c7:14:bd:21:b2:a5:c4: 66:39:d7:fc:6d:23:24:ca:54:9e:34:0a:9e:37:56: da:85:63:2b:43:42:a3:44:74:79:dd:b8:d9:6a:72: 44:b6:9f:8a:6c:ef:b1:91:53:4f:37:b4:f6:d0:31: f1:40:91:3d:67:9e:ca:8a:b8:2a:50:d8:7a:04:e5: 47:52:d8:21:b0:2b:7c:fc:e1:e8:ef:f0:57:48:73: 17:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:D1:2B:88:04:D8:66:EC:5E:ED:FA:FB:3F:E9:91:40:D3:7E:10:5F X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2NEriATYZuxe7fr7P-mRQNN-EF8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.21.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:6f:e5:65:ae:10:b1:8a:6b:82:7d:79:c6:86:58:85:0e:c0: 4b:2e:e9:ce:91:25:72:95:0b:2c:8e:f2:18:6d:b7:d6:01:99: 97:9d:7f:93:6a:bc:01:e0:fa:04:8a:9c:59:34:e8:81:f9:b5: e4:18:1c:7b:02:0f:fa:99:0f:11:55:d2:00:c5:42:16:0a:63: 7d:5b:59:d5:0b:7d:ee:08:be:e8:50:12:b8:e4:2e:29:8e:62: d1:ae:e5:ef:81:e1:05:96:c9:90:eb:25:66:c8:f3:cf:bc:ed: 01:5f:3f:49:be:69:ca:1e:14:b3:76:38:ee:14:1e:cf:ff:82: 29:4c:45:b0:72:c0:2c:9d:7a:d4:0b:a1:74:e0:5d:5a:11:25: fa:3c:07:80:10:2b:a3:1f:df:c7:e3:1b:a5:af:6b:50:68:61: 1a:c8:a6:15:d9:0d:cb:30:17:19:f8:51:51:6b:32:ea:e3:80: 73:c7:2b:87:b4:28:b2:74:4b:78:99:8a:81:49:8e:51:53:10: 6a:7a:4a:45:da:17:46:24:d2:b1:6a:f5:56:b0:cb:23:a7:22: 7c:01:ad:e4:9f:5d:4f:df:0c:e7:72:a1:8f:55:bc:f4:1b:67: 22:20:73:31:52:aa:e7:d5:e6:04:33:8d:8c:27:6a:31:03:53: 42:ca:44:d3 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCrMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTU0MzJaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEQ4RDEyQjg4MDREODY2 RUM1RUVERkFGQjNGRTk5MTQwRDM3RTEwNUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/x8PXBzdKGdmwjPGv7wBgTEybiGpvNz5P6PR1fh3B29sEZeYt De3tEEI98p2v1aWsGvjygD7HrzP9vMZEwaRj78L9j8CCZ2x+r2HFT6r/P6jouzXO +C9CefRVu3bQ422qKnppfFLWKun0AiV1RzaNNPhpjRDAa64RqpaMz3PCVIACrssZ 1uApuzChCohY/47WZ9wMLcLHUsIgnloLezMz/2mWPDxEj52odzhSxxS9IbKlxGY5 1/xtIyTKVJ40Cp43VtqFYytDQqNEdHnduNlqckS2n4ps77GRU083tPbQMfFAkT1n nsqKuCpQ2HoE5UdS2CGwK3z84ejv8FdIcxftAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU2NEriATYZuxe7fr7P+mRQNN+EF8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzJORXJpQVRZWnV4ZTdmcjdQLW1SUU5OLUVGOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADc0hUwDQYJKoZIhvcNAQELBQADggEBAH1v5WWuELGKa4J9ecaGWIUOwEsu 6c6RJXKVCyyO8hhtt9YBmZedf5NqvAHg+gSKnFk06IH5teQYHHsCD/qZDxFV0gDF QhYKY31bWdULfe4IvuhQErjkLimOYtGu5e+B4QWWyZDrJWbI88+87QFfP0m+acoe FLN2OO4UHs//gilMRbBywCydetQLoXTgXVoRJfo8B4AQK6Mf38fjG6Wva1BoYRrI phXZDcswFxn4UVFrMurjgHPHK4e0KLJ0S3iZioFJjlFTEGp6SkXaF0Yk0rFq9Vaw yyOnInwBreSfXU/fDOdyoY9VvPQbZyIgczFSqufV5gQzjYwnajEDU0LKRNM= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:39 2024 by rpki-client on console-ams.rpki-client.org