$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/8pRoAZLI4jQXghC3UkKLJmTgMCk.roa File: 8pRoAZLI4jQXghC3UkKLJmTgMCk.roa (raw, json) Hash identifier: liUkWeRu5ZEgVsDFsMIQIk/s8UXMBIIkfR+wNr8KyUw= Subject key identifier: F2:94:68:01:92:C8:E2:34:17:82:10:B7:52:42:8B:26:64:E0:30:29 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0750 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/8pRoAZLI4jQXghC3UkKLJmTgMCk.roa Signing time: Tue 30 Apr 2024 01:58:56 +0000 ROA not before: Tue 30 Apr 2024 01:58:56 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.72.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1872 (0x750) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:58:56 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=F294680192C8E234178210B752428B2664E03029 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:d6:91:77:2b:bc:95:3f:ed:15:a3:02:8e:09: 7b:3d:fc:ab:a1:ce:77:d6:b9:3a:c5:e6:dc:2a:7e: 19:2d:bc:48:08:8a:bd:ea:e1:9e:ac:c5:10:9f:16: 72:62:ad:18:cb:f3:ca:e0:e5:6c:b3:96:ea:ab:4c: cb:f1:ff:81:f1:e1:77:6b:a0:e7:76:ae:e1:2d:e9: 71:1c:00:b2:53:5a:42:b6:c6:fb:a1:d7:9c:d8:f2: af:cf:ed:26:b3:3f:f1:82:b6:39:4c:a8:80:a8:99: 9e:86:6d:42:53:3c:3b:31:10:35:1d:da:b8:e5:93: c2:e8:3e:dd:d5:6f:57:ed:f8:91:da:f1:f3:ba:5b: da:2b:b8:03:fe:b2:9e:40:b5:ef:f7:77:cd:1d:bc: f5:77:78:f0:70:f3:02:e5:bb:15:02:8b:03:1e:bd: df:ea:b6:a6:98:41:10:11:01:aa:8c:13:23:3c:fd: 60:ef:2b:3f:7d:49:6b:eb:cb:9d:42:81:7e:d9:b8: 6f:cf:16:dd:b8:b0:cb:eb:02:5e:e3:89:8a:c8:7d: 1e:12:41:02:66:d2:b5:ad:ed:3c:55:77:cb:9f:c5: 62:9e:c6:ed:48:15:f2:04:8e:2f:e0:b5:a4:90:d9: 0c:ff:78:27:5d:3a:01:fd:c2:c6:da:2d:20:ed:cf: 0a:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:94:68:01:92:C8:E2:34:17:82:10:B7:52:42:8B:26:64:E0:30:29 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/8pRoAZLI4jQXghC3UkKLJmTgMCk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.72.0/23 Signature Algorithm: sha256WithRSAEncryption c6:21:4e:5e:86:74:78:b3:fc:81:54:df:21:96:2b:ab:6c:22: 89:1d:06:15:45:8a:9d:17:cb:25:c3:e4:d0:4e:bd:0f:65:aa: bb:b7:27:7e:77:53:91:0c:f5:58:3f:27:c7:80:75:50:3e:44: 6a:34:c8:99:1e:21:48:88:b6:3b:6c:ce:99:bf:49:7e:6e:ac: ee:fd:73:52:4f:44:67:21:44:f7:8a:6d:0d:f5:7f:16:01:b5: 03:ff:b9:7a:9e:46:e3:7b:c7:ec:17:86:0e:39:f4:3e:87:db: 92:a7:27:35:44:93:b9:6b:56:ba:76:92:5c:46:f4:3e:33:96: c5:aa:48:79:8b:14:a0:3e:61:f1:26:9f:bd:6c:98:e5:8f:b7: 4f:23:7b:49:57:24:75:42:e1:0a:f8:52:86:0a:0f:14:ea:d6: d1:5a:c4:ee:88:91:37:a0:81:be:01:d6:54:89:cf:3b:be:95: cb:ae:bb:9f:99:7a:03:2a:88:88:f1:75:09:22:c1:21:32:c8: 9f:be:8a:68:25:3c:7e:2e:f4:10:43:19:90:bf:00:1f:b9:e3: 4b:bc:e4:5c:6b:0e:19:21:af:10:0a:35:8c:56:0d:e7:fa:da: 9e:05:29:5e:45:c7:4b:09:d0:dd:45:ce:59:6b:66:74:5a:fa: 35:03:56:12 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB1AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTU4NTZaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEYyOTQ2ODAxOTJDOEUy MzQxNzgyMTBCNzUyNDI4QjI2NjRFMDMwMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCZ1pF3K7yVP+0VowKOCXs9/KuhznfWuTrF5twqfhktvEgIir3q 4Z6sxRCfFnJirRjL88rg5WyzluqrTMvx/4Hx4XdroOd2ruEt6XEcALJTWkK2xvuh 15zY8q/P7SazP/GCtjlMqIComZ6GbUJTPDsxEDUd2rjlk8LoPt3Vb1ft+JHa8fO6 W9oruAP+sp5Ate/3d80dvPV3ePBw8wLluxUCiwMevd/qtqaYQRARAaqMEyM8/WDv Kz99SWvry51CgX7ZuG/PFt24sMvrAl7jiYrIfR4SQQJm0rWt7TxVd8ufxWKexu1I FfIEji/gtaSQ2Qz/eCddOgH9wsbaLSDtzwqDAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU8pRoAZLI4jQXghC3UkKLJmTgMCkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzhwUm9BWkxJNGpRWGdoQzNVa0tMSm1UZ01Day5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBT0gwDQYJKoZIhvcNAQELBQADggEBAMYhTl6GdHiz/IFU3yGWK6tsIokd BhVFip0XyyXD5NBOvQ9lqru3J353U5EM9Vg/J8eAdVA+RGo0yJkeIUiItjtszpm/ SX5urO79c1JPRGchRPeKbQ31fxYBtQP/uXqeRuN7x+wXhg459D6H25KnJzVEk7lr Vrp2klxG9D4zlsWqSHmLFKA+YfEmn71smOWPt08je0lXJHVC4Qr4UoYKDxTq1tFa xO6IkTeggb4B1lSJzzu+lcuuu5+ZegMqiIjxdQkiwSEyyJ++imglPH4u9BBDGZC/ AB+540u85FxrDhkhrxAKNYxWDef62p4FKV5Fx0sJ0N1FzllrZnRa+jUDVhI= -----END CERTIFICATE-----Generated at Fri Nov 22 15:23:59 2024 by rpki-client on console-fra.rpki-client.org