$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/7u2KHCTxG5SbSGeMZDd3PxONrp8.roa File: 7u2KHCTxG5SbSGeMZDd3PxONrp8.roa (raw, json) Hash identifier: 0zuHwq30KCfg3zuSu/clkmkcWhsc4Sp4JEXRy9x5kiQ= Subject key identifier: EE:ED:8A:1C:24:F1:1B:94:9B:48:67:8C:64:37:77:3F:13:8D:AE:9F Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 086A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/7u2KHCTxG5SbSGeMZDd3PxONrp8.roa Signing time: Tue 30 Apr 2024 02:18:28 +0000 ROA not before: Tue 30 Apr 2024 02:18:28 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.75.208.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2154 (0x86a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:18:28 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=EEED8A1C24F11B949B48678C6437773F138DAE9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fc:cc:5b:3b:db:f7:de:5a:2d:ff:ea:36:b1: 54:ba:87:10:c1:60:3c:ea:02:f4:72:d5:bd:28:04: 71:80:93:d5:7b:90:73:3d:11:7b:3a:13:e0:70:5f: e3:ab:e2:3a:29:9c:b8:b3:0d:51:54:58:2a:77:42: 21:9a:55:c7:5a:76:ba:f9:5f:15:f2:3c:c3:2d:b4: cd:92:d3:ab:af:7a:eb:c9:b0:53:ae:6c:86:48:8f: fc:3e:18:4f:37:7e:0e:8e:bb:21:34:04:75:23:64: 6f:bf:4a:65:07:cd:79:59:9c:95:b1:54:c6:25:3c: 65:21:53:2c:8b:98:66:ff:79:2f:e7:b1:75:ae:73: ab:fb:f8:98:90:a0:5c:37:07:65:cc:0c:37:b4:56: 00:80:bd:8f:78:36:5a:7c:4f:f8:42:22:8e:cc:ea: b9:40:d1:e1:5e:a9:dc:f8:1c:8a:dc:ce:b6:59:c2: 20:9d:96:a9:0b:47:b5:fa:1a:c3:a1:a6:84:f1:e7: 0c:90:2f:50:cc:3d:4b:ba:ac:bf:72:62:bf:e4:89: e2:17:ab:10:e9:98:8b:c9:a4:75:cc:71:e7:b7:1d: 1c:82:2d:70:8e:14:0a:3f:bb:74:7d:1b:8a:c9:5d: 8c:6e:f5:50:f1:49:e2:7d:09:b7:9f:76:91:2e:3c: 18:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:ED:8A:1C:24:F1:1B:94:9B:48:67:8C:64:37:77:3F:13:8D:AE:9F X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/7u2KHCTxG5SbSGeMZDd3PxONrp8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.208.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:5e:c1:90:61:65:97:01:aa:01:33:f1:e7:a3:cf:f6:6f:5d: 80:73:94:0e:8a:2d:eb:02:5e:59:f1:8d:4c:2c:c7:bd:45:ac: 27:5f:e6:1f:ea:a0:82:7d:48:3d:df:a0:48:89:ee:7b:89:43: b1:bb:95:9d:da:10:e5:35:6e:82:74:73:77:d9:f0:52:94:de: b2:02:a8:50:64:b1:5b:e8:70:b5:9f:ea:09:88:2f:f5:f3:ee: 2f:66:ba:0b:15:93:50:1e:08:c2:b6:e6:e8:d9:6a:41:5f:ec: c8:cb:aa:1f:46:76:6e:ac:7c:ec:bd:8a:cd:b8:20:a7:a5:09: 9e:1c:82:18:dd:9e:48:aa:b0:c5:a4:e6:79:24:43:15:4d:18: d7:88:d8:e0:c2:94:35:bd:3d:a4:65:89:79:a0:a1:71:ed:40: f3:5c:92:21:28:b8:31:f0:0a:62:cb:89:c1:42:1c:1b:81:ae: 1c:04:08:f3:53:ba:5f:3b:de:f1:7c:41:0c:30:09:a1:9d:94: 1f:4b:18:6f:87:cb:fc:23:e3:6f:a2:a0:c9:51:24:16:3a:3a: cc:4d:93:49:28:54:eb:c4:3a:34:a5:6a:a2:18:c1:bc:24:94: 9c:72:33:c4:41:11:3a:01:bc:93:39:0a:2c:da:0b:24:67:82: 99:74:60:b6 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCGowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjE4MjhaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEVFRUQ4QTFDMjRGMTFC OTQ5QjQ4Njc4QzY0Mzc3NzNGMTM4REFFOUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1/MxbO9v33lot/+o2sVS6hxDBYDzqAvRy1b0oBHGAk9V7kHM9 EXs6E+BwX+Or4jopnLizDVFUWCp3QiGaVcdadrr5XxXyPMMttM2S06uveuvJsFOu bIZIj/w+GE83fg6OuyE0BHUjZG+/SmUHzXlZnJWxVMYlPGUhUyyLmGb/eS/nsXWu c6v7+JiQoFw3B2XMDDe0VgCAvY94Nlp8T/hCIo7M6rlA0eFeqdz4HIrczrZZwiCd lqkLR7X6GsOhpoTx5wyQL1DMPUu6rL9yYr/kieIXqxDpmIvJpHXMcee3HRyCLXCO FAo/u3R9G4rJXYxu9VDxSeJ9CbefdpEuPBghAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU7u2KHCTxG5SbSGeMZDd3PxONrp8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5Lzd1MktIQ1R4RzVTYlNHZU1aRGQzUHhPTnJwOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBS9AwDQYJKoZIhvcNAQELBQADggEBAFtewZBhZZcBqgEz8eejz/ZvXYBz lA6KLesCXlnxjUwsx71FrCdf5h/qoIJ9SD3foEiJ7nuJQ7G7lZ3aEOU1boJ0c3fZ 8FKU3rICqFBksVvocLWf6gmIL/Xz7i9mugsVk1AeCMK25ujZakFf7MjLqh9Gdm6s fOy9is24IKelCZ4cghjdnkiqsMWk5nkkQxVNGNeI2ODClDW9PaRliXmgoXHtQPNc kiEouDHwCmLLicFCHBuBrhwECPNTul873vF8QQwwCaGdlB9LGG+Hy/wj42+ioMlR JBY6OsxNk0koVOvEOjSlaqIYwbwklJxyM8RBEToBvJM5CizaCyRngpl0YLY= -----END CERTIFICATE-----Generated at Fri Nov 22 15:23:59 2024 by rpki-client on console-fra.rpki-client.org