$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/B2GyGIs4LW_OPshT5Uk1riizKSg.roa File: B2GyGIs4LW_OPshT5Uk1riizKSg.roa (raw, json) Hash identifier: KERcarnh57rpwn9yTIe5Cr0wAS1QR/MdfkHxOxxDlOU= Subject key identifier: 07:61:B2:18:8B:38:2D:6F:CE:3E:C8:53:E5:49:35:AE:28:B3:29:28 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 08C2 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/B2GyGIs4LW_OPshT5Uk1riizKSg.roa Signing time: Tue 30 Apr 2024 02:24:34 +0000 ROA not before: Tue 30 Apr 2024 02:24:34 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.75.232.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2242 (0x8c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:24:34 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=0761B2188B382D6FCE3EC853E54935AE28B32928 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:00:1a:95:ea:4b:e0:84:0c:7a:c4:c6:04:30: fa:f1:8e:8a:e3:8b:11:66:73:33:54:8d:14:64:ba: b4:e1:59:77:1f:0e:3e:3d:bf:4b:05:cc:36:4e:c8: 0d:96:78:d2:fe:cf:e8:fe:31:ba:3b:83:1d:af:90: 33:c9:79:a3:a7:7b:88:51:67:4e:95:30:2a:7f:e4: f6:d1:5e:68:8d:b0:6f:52:ba:55:74:cf:fb:64:d4: ae:f0:6d:fc:eb:63:bf:b6:87:42:8c:87:68:d1:b8: bd:07:84:69:d0:ef:03:81:f3:98:0d:b7:9e:b5:56: 5b:b8:17:a3:0e:90:3a:8f:0c:9d:66:a9:6f:8c:bb: 20:8d:8a:52:2b:b9:8f:49:fb:1c:4a:e0:90:e0:1b: 3b:25:59:f5:cf:b0:b2:95:67:66:b5:b9:23:56:d1: 6f:d1:cc:d7:73:99:ca:e9:b3:70:1b:23:4d:8f:95: 88:90:ec:7e:2d:09:4b:29:78:15:cf:bc:79:e1:68: 04:3a:5b:29:5a:61:aa:e7:c3:2d:d1:d2:fb:e9:5d: 90:2a:67:25:73:4a:60:0b:50:a5:2b:3f:c7:0e:bb: fe:76:90:cd:5f:9d:c3:f8:2a:b1:10:fe:55:fc:ef: 4e:d3:4a:df:bd:53:ae:3a:92:96:2b:29:72:5f:33: 71:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:61:B2:18:8B:38:2D:6F:CE:3E:C8:53:E5:49:35:AE:28:B3:29:28 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/B2GyGIs4LW_OPshT5Uk1riizKSg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.232.0/23 Signature Algorithm: sha256WithRSAEncryption 50:d8:82:30:2c:fe:56:56:12:1f:ed:1f:17:9b:c1:cd:c2:94: 03:e3:6e:13:40:a5:82:95:7b:8b:33:9a:57:ec:79:43:c0:68: 03:2d:52:51:e2:8f:ca:3d:f2:91:f9:97:d5:77:45:c6:ce:af: 8f:75:ee:db:1f:39:97:1d:6b:85:44:20:c7:6b:f9:7e:d3:9b: 7a:e4:1c:e0:bb:82:7e:84:71:11:a0:8c:d2:80:3a:66:bd:b7: 63:18:3a:9b:d3:a4:4b:e4:d2:a3:ec:8d:42:29:25:5e:29:b4: 16:d3:91:0e:f2:af:52:da:db:3a:3d:d4:a3:04:d9:3a:20:58: 72:1b:95:85:74:20:4d:b8:3b:fa:d0:b3:12:63:50:cf:1a:a5: e4:f1:f7:c6:18:76:54:47:d0:a3:56:34:33:ea:ca:79:1a:e4: 4f:2c:8f:89:69:f1:f5:7e:25:03:12:9e:a3:a9:c8:c6:2e:54: 55:85:d6:e7:f9:19:5e:f4:70:26:e6:33:df:d9:ef:fb:0e:07: dc:06:98:a9:8d:8e:97:9f:19:4e:c9:cb:ec:ad:dc:1d:84:d2: 27:db:e7:56:e4:d1:50:a4:c5:d6:a8:87:a2:87:27:29:44:d3: f8:ce:dc:b5:8b:b6:70:57:dc:63:ff:1c:6d:5b:2a:5d:91:14: a3:fc:fb:07 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCMIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjI0MzRaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDA3NjFCMjE4OEIzODJE NkZDRTNFQzg1M0U1NDkzNUFFMjhCMzI5MjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjABqV6kvghAx6xMYEMPrxjorjixFmczNUjRRkurThWXcfDj49 v0sFzDZOyA2WeNL+z+j+Mbo7gx2vkDPJeaOne4hRZ06VMCp/5PbRXmiNsG9SulV0 z/tk1K7wbfzrY7+2h0KMh2jRuL0HhGnQ7wOB85gNt561Vlu4F6MOkDqPDJ1mqW+M uyCNilIruY9J+xxK4JDgGzslWfXPsLKVZ2a1uSNW0W/RzNdzmcrps3AbI02PlYiQ 7H4tCUspeBXPvHnhaAQ6WylaYarnwy3R0vvpXZAqZyVzSmALUKUrP8cOu/52kM1f ncP4KrEQ/lX8707TSt+9U646kpYrKXJfM3EtAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUB2GyGIs4LW/OPshT5Uk1riizKSgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0IyR3lHSXM0TFdfT1BzaFQ1VWsxcmlpektTZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBS+gwDQYJKoZIhvcNAQELBQADggEBAFDYgjAs/lZWEh/tHxebwc3ClAPj bhNApYKVe4szmlfseUPAaAMtUlHij8o98pH5l9V3RcbOr4917tsfOZcda4VEIMdr +X7Tm3rkHOC7gn6EcRGgjNKAOma9t2MYOpvTpEvk0qPsjUIpJV4ptBbTkQ7yr1La 2zo91KME2TogWHIblYV0IE24O/rQsxJjUM8apeTx98YYdlRH0KNWNDPqynka5E8s j4lp8fV+JQMSnqOpyMYuVFWF1uf5GV70cCbmM9/Z7/sOB9wGmKmNjpefGU7Jy+yt 3B2E0ifb51bk0VCkxdaoh6KHJylE0/jO3LWLtnBX3GP/HG1bKl2RFKP8+wc= -----END CERTIFICATE-----Generated at Fri Nov 22 15:23:59 2024 by rpki-client on console-fra.rpki-client.org