$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/7ebHXlL4hSZtMkXWt6-EBb2pPzo.roa File: 7ebHXlL4hSZtMkXWt6-EBb2pPzo.roa (raw, json) Hash identifier: 8y43KoNQJlrobChAkSAgt7/8Q++mKhtKl0mqTytARdE= Subject key identifier: ED:E6:C7:5E:52:F8:85:26:6D:32:45:D6:B7:AF:84:05:BD:A9:3F:3A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 06D0 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/7ebHXlL4hSZtMkXWt6-EBb2pPzo.roa Signing time: Tue 30 Apr 2024 01:47:02 +0000 ROA not before: Tue 30 Apr 2024 01:47:02 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.72.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1744 (0x6d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:47:02 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=EDE6C75E52F885266D3245D6B7AF8405BDA93F3A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:70:23:a8:93:60:f1:5f:9e:82:90:18:4a:24: 6f:5b:32:7d:13:4a:15:53:5d:e7:6f:c2:f8:e9:47: 85:54:7a:9f:d1:7c:d3:bd:cb:7e:9a:cc:63:81:9c: b7:27:77:0a:9b:e0:b4:af:d3:28:bd:c9:af:62:77: e1:c3:65:fe:f6:a5:60:cd:09:07:4f:e4:4a:35:fe: 8b:26:ff:a9:9e:f1:37:5a:73:25:a7:d6:b4:ce:d7: 97:9b:18:b7:6d:19:75:f4:ce:65:5d:ea:e7:f4:a9: bf:4b:6c:a7:c5:e2:8b:4d:23:eb:c9:65:a5:f4:1c: 4f:fd:96:b0:56:29:07:22:e1:9b:4b:fe:43:6a:c3: e1:88:d6:ce:8e:2a:06:14:94:a6:80:d5:f6:4e:3d: d7:7b:00:b0:4d:bd:dc:83:19:cb:8b:df:87:db:92: de:de:bc:69:2c:06:2e:ea:33:0e:4e:2d:99:74:cf: 27:4e:a6:8b:b5:2a:55:02:22:8c:cf:1e:12:a2:a5: f5:37:bb:fe:8a:a4:75:4c:e5:64:76:17:6f:e6:99: ad:c4:fc:d2:b9:73:95:28:14:12:dd:b7:77:d4:02: 7c:f9:d0:24:5c:d8:82:8c:53:02:04:5b:84:3d:8e: d9:92:c1:1d:fc:91:a9:14:75:1b:8e:33:e2:63:66: b5:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:E6:C7:5E:52:F8:85:26:6D:32:45:D6:B7:AF:84:05:BD:A9:3F:3A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/7ebHXlL4hSZtMkXWt6-EBb2pPzo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.128.0/18 Signature Algorithm: sha256WithRSAEncryption ac:13:14:41:23:33:5e:0a:f9:07:07:69:ce:2b:d8:5a:a3:44: f7:49:75:c4:af:cd:b5:d6:8a:81:ef:07:50:08:a4:a2:4e:26: 88:fb:04:c3:c1:e2:ae:ec:fa:0e:ae:44:30:02:1f:20:9d:16: 56:24:1c:d2:91:52:2b:57:dd:32:8b:9a:87:89:f0:d4:dd:0a: 32:a3:92:61:67:19:71:86:3f:16:5c:74:42:ad:17:59:76:81: af:c6:c1:d7:e1:25:a5:81:3e:97:6a:98:aa:01:d3:59:1c:b5: 5d:22:94:72:04:80:5a:e7:9f:50:a2:8a:97:a0:00:24:98:95: d4:45:21:f0:ff:61:01:66:e9:29:73:e6:1b:05:7f:68:fb:7c: 9c:f2:3d:4d:5a:fd:3f:2e:48:a4:06:57:f6:a4:92:21:4b:23: 34:1b:5e:9f:1c:da:e8:b8:3b:0c:b9:9d:c0:05:72:8e:30:5f: 9c:b7:1e:3e:b4:bc:5d:0d:53:db:5f:f0:fe:5b:43:2c:e8:7f: 6e:9e:4d:c6:9d:47:9a:5d:5f:04:ab:3e:0e:96:68:55:f6:2f: 56:6f:33:ac:7a:24:5f:c5:7c:b8:c9:5f:c1:1b:2d:69:45:29: ee:b7:0d:a3:8d:a9:29:9f:76:2b:07:dd:85:2a:d4:b0:84:6c: 97:c8:b8:33 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBtAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTQ3MDJaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEVERTZDNzVFNTJGODg1 MjY2RDMyNDVENkI3QUY4NDA1QkRBOTNGM0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5cCOok2DxX56CkBhKJG9bMn0TShVTXedvwvjpR4VUep/RfNO9 y36azGOBnLcndwqb4LSv0yi9ya9id+HDZf72pWDNCQdP5Eo1/osm/6me8TdacyWn 1rTO15ebGLdtGXX0zmVd6uf0qb9LbKfF4otNI+vJZaX0HE/9lrBWKQci4ZtL/kNq w+GI1s6OKgYUlKaA1fZOPdd7ALBNvdyDGcuL34fbkt7evGksBi7qMw5OLZl0zydO pou1KlUCIozPHhKipfU3u/6KpHVM5WR2F2/mma3E/NK5c5UoFBLdt3fUAnz50CRc 2IKMUwIEW4Q9jtmSwR38kakUdRuOM+JjZrXfAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU7ebHXlL4hSZtMkXWt6+EBb2pPzowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzdlYkhYbEw0aFNadE1rWFd0Ni1FQmIycFB6by5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYBSIAwDQYJKoZIhvcNAQELBQADggEBAKwTFEEjM14K+QcHac4r2FqjRPdJ dcSvzbXWioHvB1AIpKJOJoj7BMPB4q7s+g6uRDACHyCdFlYkHNKRUitX3TKLmoeJ 8NTdCjKjkmFnGXGGPxZcdEKtF1l2ga/GwdfhJaWBPpdqmKoB01kctV0ilHIEgFrn n1CiipegACSYldRFIfD/YQFm6Slz5hsFf2j7fJzyPU1a/T8uSKQGV/akkiFLIzQb Xp8c2ui4Owy5ncAFco4wX5y3Hj60vF0NU9tf8P5bQyzof26eTcadR5pdXwSrPg6W aFX2L1ZvM6x6JF/FfLjJX8EbLWlFKe63DaONqSmfdisH3YUq1LCEbJfIuDM= -----END CERTIFICATE-----Generated at Mon Nov 25 23:59:09 2024 by rpki-client on console-fra.rpki-client.org