$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/3UkFcFzakObTV3C0OZWsOmSBm_M.roa File: 3UkFcFzakObTV3C0OZWsOmSBm_M.roa (raw, json) Hash identifier: vvyC1W7RipIl6TwXMly2MyYg0Htd77NG7J4Ofl8GmoI= Subject key identifier: DD:49:05:70:5C:DA:90:E6:D3:57:70:B4:39:95:AC:3A:64:81:9B:F3 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 080F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3UkFcFzakObTV3C0OZWsOmSBm_M.roa Signing time: Tue 30 Apr 2024 02:12:27 +0000 ROA not before: Tue 30 Apr 2024 02:12:27 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 220.159.60.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2063 (0x80f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:12:27 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=DD4905705CDA90E6D35770B43995AC3A64819BF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:53:96:7a:16:4f:fa:00:96:ba:3b:b9:d4:43: d7:02:ca:8c:20:77:e3:b6:ba:f5:98:b6:55:3c:e4: 14:2f:c0:d8:70:53:e9:b3:f2:83:2a:7b:0a:bc:f8: b9:0d:6c:78:91:4d:61:7c:3b:7a:ba:a6:eb:0d:99: 4b:a0:a5:3f:fa:08:74:59:4e:b7:ec:27:6b:ea:01: 54:a4:97:bb:b0:0f:b5:55:df:2c:33:5c:b9:72:ab: 76:75:b8:81:d7:fe:dd:2d:b5:e0:9b:9e:81:9c:9e: 79:8d:59:e5:cf:4a:33:c0:9d:76:77:f8:e1:05:73: 75:cd:1d:3e:39:e2:b8:5f:12:20:d3:b8:4b:ea:51: 20:01:3b:e1:42:cb:6d:5d:f7:da:38:e4:81:6b:40: 49:ee:b7:9b:aa:ad:7d:b6:5d:33:ba:ed:a2:ba:65: cd:46:e9:9c:09:6e:77:ba:e7:b2:64:04:82:de:11: 7d:0f:91:81:9f:aa:da:d5:fc:a6:0a:ef:f0:66:be: a1:0e:7d:44:30:3d:56:4f:c9:ba:2d:d4:b5:3e:a3: b9:20:6a:ea:a8:72:69:e4:71:51:1c:91:a7:04:56: 86:45:65:92:3a:86:99:26:6b:32:f5:c7:26:d7:fc: ed:75:9d:72:84:06:6d:a9:13:22:a5:0c:92:52:69: 1c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:49:05:70:5C:DA:90:E6:D3:57:70:B4:39:95:AC:3A:64:81:9B:F3 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3UkFcFzakObTV3C0OZWsOmSBm_M.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.60.0/22 Signature Algorithm: sha256WithRSAEncryption 92:42:0c:b8:aa:1d:30:7c:cf:5e:42:3c:a8:80:e6:04:f4:be: 1f:f7:3c:22:ae:23:de:18:ed:9f:6d:50:ac:26:57:32:c4:7c: 6f:4a:1b:ce:f6:49:88:eb:65:84:e6:85:5d:d7:a4:05:cf:1b: 77:d3:2f:9f:10:81:6d:76:84:04:4b:40:7f:6e:1b:92:24:3e: 6e:3d:59:6d:cd:98:19:68:2d:a0:d0:90:1a:32:a0:86:79:8b: 7f:d6:c4:a0:24:a5:ad:5f:be:e7:b5:54:7e:08:5a:40:89:28: 9a:4d:d5:1b:5f:64:45:87:08:1f:26:b0:17:0f:ef:22:24:88: 39:f9:eb:9b:a1:1b:68:1e:59:b0:af:25:63:75:b4:5e:a6:ef: 68:fe:d5:e6:ca:17:a5:39:3a:1b:75:6f:19:86:cd:e5:49:f7: a5:8b:26:bf:17:c5:06:7a:d1:1b:c9:e7:28:39:56:58:52:11: 2d:01:f6:4c:f0:44:89:3e:fc:b3:ef:e2:7b:a8:39:1f:6a:f9: 38:aa:1a:64:f1:f3:37:48:fb:de:41:59:3a:5f:ce:da:42:44: cd:5c:62:37:b8:af:eb:e8:20:36:82:bf:0e:c6:d4:1e:c3:43: e2:73:6a:30:22:9d:42:d6:a8:33:d8:72:54:47:ba:04:2e:da: a8:b8:5d:a1 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCA8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjEyMjdaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKERENDkwNTcwNUNEQTkw RTZEMzU3NzBCNDM5OTVBQzNBNjQ4MTlCRjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQU5Z6Fk/6AJa6O7nUQ9cCyowgd+O2uvWYtlU85BQvwNhwU+mz 8oMqewq8+LkNbHiRTWF8O3q6pusNmUugpT/6CHRZTrfsJ2vqAVSkl7uwD7VV3ywz XLlyq3Z1uIHX/t0tteCbnoGcnnmNWeXPSjPAnXZ3+OEFc3XNHT454rhfEiDTuEvq USABO+FCy21d99o45IFrQEnut5uqrX22XTO67aK6Zc1G6ZwJbne657JkBILeEX0P kYGfqtrV/KYK7/BmvqEOfUQwPVZPybot1LU+o7kgauqocmnkcVEckacEVoZFZZI6 hpkmazL1xybX/O11nXKEBm2pEyKlDJJSaRzTAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU3UkFcFzakObTV3C0OZWsOmSBm/MwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzNVa0ZjRnpha09iVFYzQzBPWldzT21TQm1fTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALcnzwwDQYJKoZIhvcNAQELBQADggEBAJJCDLiqHTB8z15CPKiA5gT0vh/3 PCKuI94Y7Z9tUKwmVzLEfG9KG872SYjrZYTmhV3XpAXPG3fTL58QgW12hARLQH9u G5IkPm49WW3NmBloLaDQkBoyoIZ5i3/WxKAkpa1fvue1VH4IWkCJKJpN1RtfZEWH CB8msBcP7yIkiDn565uhG2geWbCvJWN1tF6m72j+1ebKF6U5Oht1bxmGzeVJ96WL Jr8XxQZ60RvJ5yg5VlhSES0B9kzwRIk+/LPv4nuoOR9q+TiqGmTx8zdI+95BWTpf ztpCRM1cYje4r+voIDaCvw7G1B7DQ+JzajAinULWqDPYclRHugQu2qi4XaE= -----END CERTIFICATE-----Generated at Fri Nov 22 15:23:58 2024 by rpki-client on console-fra.rpki-client.org