$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/2lNZFsJ3JA-hTASN3tl0D58hUI4.roa File: 2lNZFsJ3JA-hTASN3tl0D58hUI4.roa (raw, json) Hash identifier: wFux/s/emkqcP4NF3gvhB0orRRIt6ia7hTzmFgRmw7c= Subject key identifier: DA:53:59:16:C2:77:24:0F:A1:4C:04:8D:DE:D9:74:0F:9F:21:50:8E Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A12 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2lNZFsJ3JA-hTASN3tl0D58hUI4.roa Signing time: Sun 30 Jun 2024 01:44:20 +0000 ROA not before: Sun 30 Jun 2024 01:44:20 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 211.14.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2578 (0xa12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:44:20 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=DA535916C277240FA14C048DDED9740F9F21508E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f6:e5:c6:7b:5a:f5:6c:fe:d8:97:d2:06:d6: 96:48:d0:c6:f1:6f:36:c0:0d:63:b2:e2:f5:65:c5: 63:81:5c:a3:be:3f:20:65:fa:58:56:01:5e:36:ee: e7:1e:f8:f0:15:f4:6d:18:d2:6a:c8:18:64:7a:0e: 2a:46:72:3a:5f:35:2d:6c:a5:6f:8c:44:b0:47:4d: f5:7a:29:67:e4:32:18:51:18:13:48:a5:ad:b6:af: 59:3c:85:e5:68:fa:57:a6:c8:fd:08:b1:06:76:d1: 58:2f:4b:be:02:e8:94:17:0b:4b:81:3a:01:b1:4b: 6d:07:b6:f6:f4:b6:03:73:35:30:7c:86:7f:3c:a0: 9b:44:49:ee:71:62:47:bd:e8:8a:37:bd:ca:dd:3b: d5:74:f7:1c:6f:4b:8b:18:5f:50:56:cb:6d:cc:c3: 45:f5:f3:ed:19:9c:41:69:de:c0:01:5f:83:16:45: d6:e4:a1:51:81:59:8a:29:07:83:bc:ca:ea:72:48: 21:02:9b:9a:ea:a8:16:35:c7:0c:93:55:6e:b3:44: ff:56:b7:9d:75:44:53:85:6b:05:7b:f2:29:3e:26: 2e:50:a9:fc:c9:9b:bd:30:69:c2:5f:f9:f8:d1:9d: 8a:1b:a4:25:c4:8c:f1:e6:a2:d7:fe:6f:ac:d4:5d: 61:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:53:59:16:C2:77:24:0F:A1:4C:04:8D:DE:D9:74:0F:9F:21:50:8E X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2lNZFsJ3JA-hTASN3tl0D58hUI4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.74.0/24 Signature Algorithm: sha256WithRSAEncryption 94:e3:9e:d5:4e:f4:6a:21:04:18:15:d9:6f:5f:2d:dc:8d:d4: d7:41:15:0e:51:73:b1:09:78:68:3f:9b:8f:c0:13:a6:70:d4: 5d:1c:2d:e0:ed:fb:2f:ab:c3:79:6f:7b:07:b8:d8:f0:b8:33: 54:cb:0d:0e:4f:8c:3b:e9:cf:2c:3f:f6:19:5c:cc:a8:21:26: 62:31:ef:62:bf:ea:65:c6:d6:e3:15:a2:f2:2a:15:bc:2c:11: 8c:3c:02:78:38:d4:b6:6f:52:09:38:b5:0f:2d:05:8e:ca:f1: 32:95:2e:b8:dd:d3:e6:76:04:38:1e:c5:5f:b8:b6:20:8c:aa: 39:52:a3:d1:40:86:0f:d4:89:6b:a1:30:9f:c5:43:54:4d:e6: dd:d7:11:ac:bd:62:4d:b8:2f:2a:3e:0c:01:ab:ef:37:e2:dd: 8e:98:f3:fb:fe:0b:9e:b0:c8:e1:b4:a1:54:07:c0:b0:5d:65: d3:dc:a8:82:c6:e5:39:a6:ff:f1:c8:ea:a0:f0:a6:77:36:6b: 79:f1:52:f1:79:43:49:40:e4:66:c2:6f:b9:4b:2d:eb:6e:7c: c4:2b:9f:35:59:e6:9b:54:5e:fd:7e:8b:17:13:57:b3:a6:09: 1b:02:74:ad:4c:db:93:3c:16:bf:3a:48:93:c7:00:3b:03:47: b1:3d:48:55 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICChIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQ0MjBaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKERBNTM1OTE2QzI3NzI0 MEZBMTRDMDQ4RERFRDk3NDBGOUYyMTUwOEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDR9uXGe1r1bP7Yl9IG1pZI0MbxbzbADWOy4vVlxWOBXKO+PyBl +lhWAV427uce+PAV9G0Y0mrIGGR6DipGcjpfNS1spW+MRLBHTfV6KWfkMhhRGBNI pa22r1k8heVo+lemyP0IsQZ20VgvS74C6JQXC0uBOgGxS20Htvb0tgNzNTB8hn88 oJtESe5xYke96Io3vcrdO9V09xxvS4sYX1BWy23Mw0X18+0ZnEFp3sABX4MWRdbk oVGBWYopB4O8yupySCECm5rqqBY1xwyTVW6zRP9Wt511RFOFawV78ik+Ji5QqfzJ m70wacJf+fjRnYobpCXEjPHmotf+b6zUXWGJAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU2lNZFsJ3JA+hTASN3tl0D58hUI4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzJsTlpGc0ozSkEtaFRBU04zdGwwRDU4aFVJNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADTDkowDQYJKoZIhvcNAQELBQADggEBAJTjntVO9GohBBgV2W9fLdyN1NdB FQ5Rc7EJeGg/m4/AE6Zw1F0cLeDt+y+rw3lvewe42PC4M1TLDQ5PjDvpzyw/9hlc zKghJmIx72K/6mXG1uMVovIqFbwsEYw8Ang41LZvUgk4tQ8tBY7K8TKVLrjd0+Z2 BDgexV+4tiCMqjlSo9FAhg/UiWuhMJ/FQ1RN5t3XEay9Yk24Lyo+DAGr7zfi3Y6Y 8/v+C56wyOG0oVQHwLBdZdPcqILG5Tmm//HI6qDwpnc2a3nxUvF5Q0lA5GbCb7lL LetufMQrnzVZ5ptUXv1+ixcTV7OmCRsCdK1M25M8Fr86SJPHADsDR7E9SFU= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:39 2024 by rpki-client on console-ams.rpki-client.org