$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ClTzFrhgLUJwsu8XHO5TUc54OBk.roa File: ClTzFrhgLUJwsu8XHO5TUc54OBk.roa (raw, json) Hash identifier: QYj5EgTLLXaO+goklj16KdngupOWCxbEfX0uYAU3hFI= Subject key identifier: 0A:54:F3:16:B8:60:2D:42:70:B2:EF:17:1C:EE:53:51:CE:78:38:19 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0689 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ClTzFrhgLUJwsu8XHO5TUc54OBk.roa Signing time: Tue 30 Apr 2024 01:38:05 +0000 ROA not before: Tue 30 Apr 2024 01:38:05 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 110.163.18.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1673 (0x689) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:38:05 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=0A54F316B8602D4270B2EF171CEE5351CE783819 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:22:66:98:ed:cf:51:2c:45:73:e9:10:08:8f: 9d:39:99:51:6f:fd:4a:7b:3a:72:02:3c:a9:6a:cf: d2:40:c2:a8:9c:81:6e:a9:0e:e8:f1:35:e5:19:98: 51:ee:ea:ae:32:68:67:65:13:6b:b8:f1:dc:50:fe: 48:ad:a5:14:dd:08:8c:6f:94:e6:bc:28:e3:ea:9b: 6b:da:4d:ce:f7:a1:1f:36:73:b8:7e:c2:50:e7:c5: 99:67:cd:7d:ed:6c:de:10:0e:c1:0d:95:54:f4:c3: e8:40:25:b4:f9:ee:9a:d7:ea:f2:b1:f7:46:74:e7: b4:af:4f:0e:cf:bc:c5:b9:9f:3d:9a:93:9a:05:aa: 91:a3:80:f9:df:0f:a4:90:36:bd:b5:1c:25:c3:de: 84:2f:40:05:ea:da:da:93:0a:78:b5:9e:6b:af:41: 85:9c:91:3e:de:bd:b3:b4:b2:8f:e3:1d:ae:be:b6: 37:db:cb:93:d8:28:e6:9e:4b:9e:70:77:a7:96:1a: ac:4c:d4:ed:f6:07:68:2f:20:e7:df:fd:82:4f:4b: b4:86:9c:48:64:d1:40:9b:7e:60:68:5b:27:f7:7c: d9:e8:0b:7e:8c:41:78:f3:27:00:2e:f1:a7:8d:d8: 0d:60:91:eb:97:48:bd:db:a0:d2:36:5b:93:ad:7d: 0d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:54:F3:16:B8:60:2D:42:70:B2:EF:17:1C:EE:53:51:CE:78:38:19 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ClTzFrhgLUJwsu8XHO5TUc54OBk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.163.18.0/23 Signature Algorithm: sha256WithRSAEncryption 2c:96:47:ed:17:20:a1:8f:71:14:f2:7e:71:09:82:a1:e6:3e: 99:50:52:8c:cf:a2:91:66:15:ad:42:c5:85:e1:83:c6:c4:9d: 08:f2:8d:3d:04:bd:f8:19:a9:c8:29:b4:92:be:76:04:cf:d9: 04:a1:4c:56:37:c1:d2:c6:c6:65:b5:c5:a9:8e:77:99:2d:88: 83:ca:12:aa:f9:aa:19:ac:8e:3e:79:bf:49:77:1e:65:a5:88: da:07:a2:54:26:d5:15:16:4f:b1:b4:96:c7:f8:d7:8f:59:ff: b9:42:35:18:fa:ce:cd:5f:37:26:e0:cb:7f:cd:62:cb:19:2a: b5:53:61:91:39:5f:4e:fb:b5:4d:af:a9:80:0c:b8:ec:7e:fb: 3a:62:eb:6f:02:03:bf:42:7e:22:d3:f9:82:e2:06:a3:46:fb: 32:86:3a:23:de:cc:c2:1c:bb:c4:66:ec:43:80:95:96:7e:9a: 57:d5:71:eb:12:0c:a3:3c:47:bb:ae:54:97:4a:ac:26:cf:8b: 35:b0:00:5f:43:1b:c3:43:dd:0a:e7:c9:82:34:c6:7e:59:bd: c4:e8:6e:23:60:ae:e1:dd:56:47:9b:40:7f:a3:91:5b:1d:78: bd:07:16:d2:e5:a8:bf:c8:84:8b:79:97:e7:6b:77:bd:a4:e1: 76:b1:55:81 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBokwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTM4MDVaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDBBNTRGMzE2Qjg2MDJE NDI3MEIyRUYxNzFDRUU1MzUxQ0U3ODM4MTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsImaY7c9RLEVz6RAIj505mVFv/Up7OnICPKlqz9JAwqicgW6p DujxNeUZmFHu6q4yaGdlE2u48dxQ/kitpRTdCIxvlOa8KOPqm2vaTc73oR82c7h+ wlDnxZlnzX3tbN4QDsENlVT0w+hAJbT57prX6vKx90Z057SvTw7PvMW5nz2ak5oF qpGjgPnfD6SQNr21HCXD3oQvQAXq2tqTCni1nmuvQYWckT7evbO0so/jHa6+tjfb y5PYKOaeS55wd6eWGqxM1O32B2gvIOff/YJPS7SGnEhk0UCbfmBoWyf3fNnoC36M QXjzJwAu8aeN2A1gkeuXSL3boNI2W5OtfQ0LAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUClTzFrhgLUJwsu8XHO5TUc54OBkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0NsVHpGcmhnTFVKd3N1OFhITzVUVWM1NE9Cay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFuoxIwDQYJKoZIhvcNAQELBQADggEBACyWR+0XIKGPcRTyfnEJgqHmPplQ UozPopFmFa1CxYXhg8bEnQjyjT0EvfgZqcgptJK+dgTP2QShTFY3wdLGxmW1xamO d5ktiIPKEqr5qhmsjj55v0l3HmWliNoHolQm1RUWT7G0lsf4149Z/7lCNRj6zs1f Nybgy3/NYssZKrVTYZE5X077tU2vqYAMuOx++zpi628CA79CfiLT+YLiBqNG+zKG OiPezMIcu8Rm7EOAlZZ+mlfVcesSDKM8R7uuVJdKrCbPizWwAF9DG8ND3QrnyYI0 xn5ZvcTobiNgruHdVkebQH+jkVsdeL0HFtLlqL/IhIt5l+drd72k4XaxVYE= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:46 2024 by rpki-client on console-fra.rpki-client.org