$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Cj0g4-2FJK5tMJCc858pijzA_eM.roa File: Cj0g4-2FJK5tMJCc858pijzA_eM.roa (raw, json) Hash identifier: ThFvGTTzsfHd/Xp938tmaFZt7mDx+Y/jmrKz7aBs71Y= Subject key identifier: 0A:3D:20:E3:ED:85:24:AE:6D:30:90:9C:F3:9F:29:8A:3C:C0:FD:E3 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 068E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Cj0g4-2FJK5tMJCc858pijzA_eM.roa Signing time: Tue 30 Apr 2024 01:38:08 +0000 ROA not before: Tue 30 Apr 2024 01:38:08 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 220.159.224.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1678 (0x68e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:38:08 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=0A3D20E3ED8524AE6D30909CF39F298A3CC0FDE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8f:0b:6a:31:09:21:f2:fa:80:26:54:a6:82: 39:e1:a0:c0:4f:ae:09:69:b7:22:64:93:a1:41:53: 17:a0:a0:12:d6:ce:c1:bc:0f:f0:69:d6:8d:6d:7e: 1f:81:3f:88:7d:6e:78:dc:50:11:b8:0f:a0:bd:eb: c6:6b:97:69:c7:49:3e:29:0c:c2:cd:1e:0b:8f:4d: 50:bb:69:ad:6e:63:5f:98:54:4b:7d:88:54:43:84: 2b:be:ec:da:52:f2:94:83:84:79:89:13:bb:3f:42: f1:13:9f:ab:6f:f8:42:16:2b:5c:17:fe:29:cc:11: 22:57:27:2c:68:b6:18:57:13:f9:98:ea:79:28:06: b5:b6:18:89:5c:87:e4:2f:3e:82:7b:7b:6c:34:fa: 43:3a:22:b4:11:4a:57:d5:97:6c:bd:bf:a0:8f:ca: d7:bb:7c:79:7a:91:b9:b1:84:e5:c3:81:d3:c4:83: 63:c1:1e:02:80:a9:af:5b:34:8d:b3:b6:16:c3:d5: 93:92:6d:c3:1a:02:fb:52:ea:a2:b3:60:e1:d3:8b: 11:8d:b0:03:d4:67:da:30:d4:2c:ab:63:53:e9:c9: 4e:43:f9:2a:51:0a:85:70:30:31:e0:99:4f:42:33: a6:a3:54:72:f5:08:33:a9:8b:72:e2:ad:ce:7c:ac: 1c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:3D:20:E3:ED:85:24:AE:6D:30:90:9C:F3:9F:29:8A:3C:C0:FD:E3 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Cj0g4-2FJK5tMJCc858pijzA_eM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.224.0/22 Signature Algorithm: sha256WithRSAEncryption b4:ba:18:b5:68:20:7d:7c:8e:86:44:63:75:f8:83:03:b5:c5: a9:b2:51:0f:31:5e:83:31:f2:69:11:68:6a:ab:60:c2:b8:9b: a1:f6:9a:f9:34:c5:94:ed:9d:dc:85:8f:43:b8:e6:80:5d:14: 28:bc:1e:ec:43:74:00:be:88:15:74:6f:98:22:e1:38:37:38: 55:94:db:ad:fa:55:51:cd:a2:79:3b:9a:1a:12:35:b3:39:df: 15:4e:d6:b5:07:2a:ee:a7:1d:5c:ac:bf:84:2f:38:e6:58:ab: b4:1d:c1:7e:1d:d8:17:bd:fc:e9:cf:3c:97:8a:8b:17:30:e8: 36:bb:45:dd:d9:15:78:1e:28:a6:0f:f6:cd:06:c6:cd:b1:80: f9:9d:d6:16:ed:78:24:f7:d9:2a:c8:f9:06:11:8b:64:c5:89: ec:53:ca:d3:6a:b0:16:fe:04:5d:af:17:6d:88:0c:4b:a8:6b: 05:c2:49:ad:d0:7c:f6:b6:26:5f:a5:70:3f:f1:f6:31:1c:a1: ca:d0:f9:29:6e:17:e0:41:d2:27:33:d1:1f:49:5b:72:cc:08: 7c:4b:15:13:68:5d:c5:64:41:d0:ec:2f:c5:7f:b4:a0:9c:5b: e7:06:22:19:1d:8e:37:99:f8:6a:58:a0:93:15:12:a3:9f:e1: 95:d9:18:f6 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBo4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTM4MDhaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDBBM0QyMEUzRUQ4NTI0 QUU2RDMwOTA5Q0YzOUYyOThBM0NDMEZERTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5jwtqMQkh8vqAJlSmgjnhoMBPrglptyJkk6FBUxegoBLWzsG8 D/Bp1o1tfh+BP4h9bnjcUBG4D6C968Zrl2nHST4pDMLNHguPTVC7aa1uY1+YVEt9 iFRDhCu+7NpS8pSDhHmJE7s/QvETn6tv+EIWK1wX/inMESJXJyxothhXE/mY6nko BrW2GIlch+QvPoJ7e2w0+kM6IrQRSlfVl2y9v6CPyte7fHl6kbmxhOXDgdPEg2PB HgKAqa9bNI2zthbD1ZOSbcMaAvtS6qKzYOHTixGNsAPUZ9ow1CyrY1PpyU5D+SpR CoVwMDHgmU9CM6ajVHL1CDOpi3Lirc58rBwZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUCj0g4+2FJK5tMJCc858pijzA/eMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0NqMGc0LTJGSks1dE1KQ2M4NThwaWp6QV9lTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALcn+AwDQYJKoZIhvcNAQELBQADggEBALS6GLVoIH18joZEY3X4gwO1xamy UQ8xXoMx8mkRaGqrYMK4m6H2mvk0xZTtndyFj0O45oBdFCi8HuxDdAC+iBV0b5gi 4Tg3OFWU2636VVHNonk7mhoSNbM53xVO1rUHKu6nHVysv4QvOOZYq7QdwX4d2Be9 /OnPPJeKixcw6Da7Rd3ZFXgeKKYP9s0Gxs2xgPmd1hbteCT32SrI+QYRi2TFiexT ytNqsBb+BF2vF22IDEuoawXCSa3QfPa2Jl+lcD/x9jEcocrQ+SluF+BB0icz0R9J W3LMCHxLFRNoXcVkQdDsL8V/tKCcW+cGIhkdjjeZ+GpYoJMVEqOf4ZXZGPY= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:39 2024 by rpki-client on console-ams.rpki-client.org