$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/9BflMATznxJWNyTm0uFILZcNnoE.roa File: 9BflMATznxJWNyTm0uFILZcNnoE.roa (raw, json) Hash identifier: v2bumRe+sUTSl4XLXLEJHktukuRyMVuX4HBWxXh4ZoE= Subject key identifier: F4:17:E5:30:04:F3:9F:12:56:37:24:E6:D2:E1:48:2D:97:0D:9E:81 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 07ED Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/9BflMATznxJWNyTm0uFILZcNnoE.roa Signing time: Tue 30 Apr 2024 02:10:34 +0000 ROA not before: Tue 30 Apr 2024 02:10:34 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.75.212.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2029 (0x7ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:10:34 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=F417E53004F39F12563724E6D2E1482D970D9E81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1c:5d:3e:2a:44:47:e9:2c:5e:9f:30:32:cb: 5f:6d:eb:74:50:03:e6:f0:0e:65:2d:09:62:df:fc: c2:b6:63:89:96:11:09:14:af:27:43:79:f4:72:d5: 7b:53:65:bf:40:b1:e6:15:8d:94:b4:08:0b:d6:66: f2:16:96:03:99:b5:a5:16:b1:84:71:dc:0a:38:95: 17:51:69:f3:24:12:23:a9:50:38:a6:9d:6b:a5:d1: 4d:17:35:81:2b:83:72:94:37:6a:44:f9:e9:8f:37: 98:88:fd:35:40:51:d8:47:3d:20:e7:c2:1b:ce:32: a9:c2:62:58:d0:fe:f8:3a:67:85:58:38:79:d3:39: 6a:03:23:68:89:e2:cb:8a:6c:6e:17:50:18:f0:05: e4:08:08:ec:d6:c2:53:ae:b0:f6:35:fc:3b:e1:7b: ae:4c:a3:a5:03:dd:c2:53:97:b5:17:e0:0b:80:4d: 43:95:e6:ff:f8:6c:66:47:62:c8:da:a5:b6:b3:d8: 88:cc:a2:83:75:d9:e2:15:3e:f5:84:c4:25:00:af: a6:3f:a8:80:b3:20:2a:7a:c2:57:71:79:13:12:07: 83:e3:10:7c:d4:7c:54:fd:10:0b:c8:a0:52:e1:4c: ef:fb:6a:ba:1d:11:c0:5a:f9:6c:ff:ed:b4:65:a7: c9:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:17:E5:30:04:F3:9F:12:56:37:24:E6:D2:E1:48:2D:97:0D:9E:81 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/9BflMATznxJWNyTm0uFILZcNnoE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.212.0/23 Signature Algorithm: sha256WithRSAEncryption 02:9b:51:44:62:ef:3d:eb:f6:41:5a:0f:18:28:a1:4d:3e:b9: 8c:17:84:68:6c:91:53:57:27:64:02:57:04:94:46:98:1d:3f: 7c:50:07:58:fa:fa:3d:05:ee:ad:f2:90:31:5d:69:29:64:f5: bb:27:8c:59:dc:be:56:d3:68:0f:54:47:45:df:64:88:4f:36: 1c:b0:2e:b3:a9:15:41:21:ae:35:ee:7a:49:84:d7:1f:6f:9e: 08:d3:4c:45:b1:e0:0c:32:5f:c9:28:03:ac:21:07:ef:1d:7a: 32:1b:cc:52:0f:9e:cc:81:86:62:50:43:87:9d:50:c4:70:39: d0:48:1b:22:66:32:ef:6e:f6:d4:2d:90:a0:c0:28:f0:d7:c5: 2a:ec:01:55:e1:9c:29:63:de:88:00:aa:55:26:96:9f:a9:98: db:66:4a:ef:27:0d:57:df:d6:07:c2:ac:62:7c:cb:f9:74:c0: 0d:a7:ea:b0:c0:41:cf:c7:51:ea:9d:09:a8:c8:6b:1a:84:14: 4e:24:90:4f:83:ff:4c:5e:3a:9d:0c:51:68:9a:d9:d9:cf:e9: 89:1d:01:7d:54:23:45:25:e1:56:84:a1:19:22:66:e1:a9:1f: c8:4e:95:b4:28:82:10:52:1f:4a:34:b3:d6:ff:ba:7a:c2:3e: 4c:6b:cb:38 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB+0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjEwMzRaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEY0MTdFNTMwMDRGMzlG MTI1NjM3MjRFNkQyRTE0ODJEOTcwRDlFODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoHF0+KkRH6SxenzAyy19t63RQA+bwDmUtCWLf/MK2Y4mWEQkU rydDefRy1XtTZb9AseYVjZS0CAvWZvIWlgOZtaUWsYRx3Ao4lRdRafMkEiOpUDim nWul0U0XNYErg3KUN2pE+emPN5iI/TVAUdhHPSDnwhvOMqnCYljQ/vg6Z4VYOHnT OWoDI2iJ4suKbG4XUBjwBeQICOzWwlOusPY1/Dvhe65Mo6UD3cJTl7UX4AuATUOV 5v/4bGZHYsjapbaz2IjMooN12eIVPvWExCUAr6Y/qICzICp6wldxeRMSB4PjEHzU fFT9EAvIoFLhTO/7arodEcBa+Wz/7bRlp8ltAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU9BflMATznxJWNyTm0uFILZcNnoEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzlCZmxNQVR6bnhKV055VG0wdUZJTFpjTm5vRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBS9QwDQYJKoZIhvcNAQELBQADggEBAAKbUURi7z3r9kFaDxgooU0+uYwX hGhskVNXJ2QCVwSURpgdP3xQB1j6+j0F7q3ykDFdaSlk9bsnjFncvlbTaA9UR0Xf ZIhPNhywLrOpFUEhrjXuekmE1x9vngjTTEWx4AwyX8koA6whB+8dejIbzFIPnsyB hmJQQ4edUMRwOdBIGyJmMu9u9tQtkKDAKPDXxSrsAVXhnClj3ogAqlUmlp+pmNtm Su8nDVff1gfCrGJ8y/l0wA2n6rDAQc/HUeqdCajIaxqEFE4kkE+D/0xeOp0MUWia 2dnP6YkdAX1UI0Ul4VaEoRkiZuGpH8hOlbQoghBSH0o0s9b/unrCPkxryzg= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:39 2024 by rpki-client on console-ams.rpki-client.org