$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/75ocpaqcFY_bh3DLR0-6dpjiw7w.roa File: 75ocpaqcFY_bh3DLR0-6dpjiw7w.roa (raw, json) Hash identifier: LHc8nwrRfCWwvQBdvnjOGpzvMHaB2RDRtg1+aTbyu0k= Subject key identifier: EF:9A:1C:A5:AA:9C:15:8F:DB:87:70:CB:47:4F:BA:76:98:E2:C3:BC Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 06B5 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/75ocpaqcFY_bh3DLR0-6dpjiw7w.roa Signing time: Tue 30 Apr 2024 01:46:49 +0000 ROA not before: Tue 30 Apr 2024 01:46:49 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.105.64.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1717 (0x6b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:46:49 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=EF9A1CA5AA9C158FDB8770CB474FBA7698E2C3BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ae:9c:e3:9d:0f:7b:6b:fb:af:88:30:82:e6: fc:65:9c:24:f0:b6:6d:62:45:d4:c4:fa:df:cc:e2: 94:67:2e:d5:08:8a:f4:83:a3:ba:f3:70:e4:6c:0a: e4:f2:c2:95:9a:57:ad:c8:4c:d3:23:56:78:0e:50: 82:27:4d:af:77:b2:c0:95:47:1e:18:8b:16:b6:d6: bd:57:ad:e2:6b:8a:65:f5:d8:b7:10:37:5a:87:2b: 69:17:51:ba:f9:63:bb:3e:5f:a9:8f:b5:82:a7:bb: 89:ae:c1:ed:92:9e:21:2d:22:ca:a8:98:a5:53:1b: 87:00:91:d4:5b:d9:d2:50:87:9a:34:43:53:3e:67: 85:fa:14:c9:01:35:3a:08:d4:20:96:9c:12:da:ec: 00:c0:36:7e:09:e4:0f:3e:3b:c3:ea:9f:68:1f:f6: bc:7b:36:f9:4a:31:cc:75:6b:d4:de:5c:bb:65:06: 38:14:48:e6:49:37:a0:09:b8:bb:c6:ac:b7:06:da: 7b:46:f1:f0:14:24:d5:97:40:ab:31:cc:87:82:25: 09:f6:7a:16:84:3c:fc:7a:77:05:f3:ed:5d:6a:1e: 6f:5a:8f:30:2d:e2:83:1e:84:7d:e1:29:93:f1:a9: 73:e9:e3:48:f7:82:c7:3d:a8:d5:87:6c:5e:20:c8: 39:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:9A:1C:A5:AA:9C:15:8F:DB:87:70:CB:47:4F:BA:76:98:E2:C3:BC X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/75ocpaqcFY_bh3DLR0-6dpjiw7w.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.105.64.0/21 Signature Algorithm: sha256WithRSAEncryption 1b:f8:49:ce:3a:1e:07:22:71:74:d3:f1:b4:7d:e4:32:c1:28: 96:9a:ae:d4:5b:07:23:5f:6f:64:4f:d5:c4:a6:49:16:2c:11: 95:53:df:16:63:ac:36:8a:97:56:a0:70:09:5f:e0:f3:d5:e3: fe:47:0a:77:10:8b:a2:47:24:05:25:bf:36:71:3c:45:d9:fd: 58:c4:af:a0:2c:9e:00:18:24:b5:c0:f7:ad:25:b7:9b:3f:c1: 0c:ad:82:d0:cd:ac:d2:f8:0c:2c:1d:cd:5e:9a:da:ed:2a:20: 53:c8:fe:0f:ae:b2:9d:fc:44:d1:c6:32:64:41:cf:d2:89:b9: b8:27:23:ff:da:a9:89:21:40:80:f0:ad:9b:dd:90:e2:7a:94: 1e:cc:bf:e5:2d:96:56:5b:d2:f7:62:a8:7f:2d:c8:b3:f0:a1: 1c:f2:d8:d2:b0:d0:67:30:e7:e4:b3:9e:aa:2d:65:57:b0:af: 2f:6b:0f:cb:c0:99:23:e7:8e:bd:e8:f8:ab:d8:c2:e4:74:c4: a8:6f:0d:69:91:6c:b4:a9:ff:89:62:87:c3:c0:86:45:8d:46: 53:45:05:cb:79:11:97:f2:20:32:28:9b:22:e9:77:0a:f8:64: 2d:23:f6:9d:1f:f0:17:e8:0e:35:0d:a7:c7:1a:e1:bd:4e:a4: 37:c8:7e:74 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBrUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTQ2NDlaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEVGOUExQ0E1QUE5QzE1 OEZEQjg3NzBDQjQ3NEZCQTc2OThFMkMzQkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBrpzjnQ97a/uviDCC5vxlnCTwtm1iRdTE+t/M4pRnLtUIivSD o7rzcORsCuTywpWaV63ITNMjVngOUIInTa93ssCVRx4Yixa21r1XreJrimX12LcQ N1qHK2kXUbr5Y7s+X6mPtYKnu4muwe2SniEtIsqomKVTG4cAkdRb2dJQh5o0Q1M+ Z4X6FMkBNToI1CCWnBLa7ADANn4J5A8+O8Pqn2gf9rx7NvlKMcx1a9TeXLtlBjgU SOZJN6AJuLvGrLcG2ntG8fAUJNWXQKsxzIeCJQn2ehaEPPx6dwXz7V1qHm9ajzAt 4oMehH3hKZPxqXPp40j3gsc9qNWHbF4gyDmBAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU75ocpaqcFY/bh3DLR0+6dpjiw7wwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5Lzc1b2NwYXFjRllfYmgzRExSMC02ZHBqaXc3dy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMxaUAwDQYJKoZIhvcNAQELBQADggEBABv4Sc46HgcicXTT8bR95DLBKJaa rtRbByNfb2RP1cSmSRYsEZVT3xZjrDaKl1agcAlf4PPV4/5HCncQi6JHJAUlvzZx PEXZ/VjEr6AsngAYJLXA960lt5s/wQytgtDNrNL4DCwdzV6a2u0qIFPI/g+usp38 RNHGMmRBz9KJubgnI//aqYkhQIDwrZvdkOJ6lB7Mv+UtllZb0vdiqH8tyLPwoRzy 2NKw0Gcw5+SznqotZVewry9rD8vAmSPnjr3o+KvYwuR0xKhvDWmRbLSp/4lih8PA hkWNRlNFBct5EZfyIDIomyLpdwr4ZC0j9p0f8BfoDjUNp8ca4b1OpDfIfnQ= -----END CERTIFICATE-----Generated at Fri Nov 22 15:23:59 2024 by rpki-client on console-fra.rpki-client.org