$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ctwn3Vi00brwCH5vrJqhm_OKzKc.roa File: Ctwn3Vi00brwCH5vrJqhm_OKzKc.roa (raw, json) Hash identifier: Fm5L1GpgmufH/jL7EIakpJvdJsad2SJEH+bmOVS/2NE= Subject key identifier: 0A:DC:27:DD:58:B4:D1:BA:F0:08:7E:6F:AC:9A:A1:9B:F3:8A:CC:A7 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 075A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ctwn3Vi00brwCH5vrJqhm_OKzKc.roa Signing time: Tue 30 Apr 2024 02:01:36 +0000 ROA not before: Tue 30 Apr 2024 02:01:36 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 110.158.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1882 (0x75a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:01:36 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=0ADC27DD58B4D1BAF0087E6FAC9AA19BF38ACCA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:55:0f:df:0b:41:18:f4:83:fd:2e:fd:34:29: bb:e9:ef:67:27:d0:df:ea:e6:0a:43:95:17:96:71: 71:4d:1a:88:49:3b:4e:e3:96:65:e3:ec:b5:0d:ca: ce:3a:47:20:14:a3:77:4a:29:63:a2:61:bb:cc:69: 96:df:68:42:5a:48:3f:d7:41:60:b2:29:88:da:b5: 19:14:d5:1c:d3:c7:ad:82:20:ca:7e:74:1c:98:35: 9c:8c:57:3f:c6:d7:85:33:a0:28:6d:00:98:91:00: cf:36:0c:a9:16:d2:15:8e:0a:7c:7f:da:32:ca:b6: a5:e4:cd:15:10:b5:d7:d0:73:ab:72:65:16:f6:f2: 9d:a0:f9:06:1a:56:09:42:12:f8:d8:f8:2f:01:40: 42:b5:c7:cd:5a:4e:52:55:f9:19:68:98:e6:0f:34: 0e:73:6a:90:23:fd:66:d2:dd:cb:ab:a3:3c:db:bc: 65:10:b7:2d:ae:dc:ae:72:39:5f:c8:ba:9d:ba:06: 28:84:70:46:61:5b:0d:e5:9f:68:81:39:91:d4:ce: 6f:38:ab:28:49:04:75:3a:5e:e1:fc:36:2c:ef:59: 70:78:91:ab:44:cc:1b:f4:a6:e1:ad:dd:2c:dd:d5: 35:83:70:4c:20:74:11:db:71:93:3d:5f:67:35:6f: c8:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:DC:27:DD:58:B4:D1:BA:F0:08:7E:6F:AC:9A:A1:9B:F3:8A:CC:A7 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ctwn3Vi00brwCH5vrJqhm_OKzKc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.158.131.0/24 Signature Algorithm: sha256WithRSAEncryption c0:1a:ae:bb:59:a2:c1:ea:a9:97:da:88:87:96:5f:84:fb:45: 8f:30:7f:fa:ce:2e:5d:24:d9:a2:e1:55:2b:69:01:ee:f1:aa: 17:98:46:98:84:09:b7:a1:f0:26:d4:e4:09:4c:b9:ee:47:e5: ca:e8:70:89:00:bb:ba:33:af:35:a1:2b:ce:76:c2:b0:fd:86: 00:76:13:c4:d3:01:89:c4:08:b4:f8:af:0b:2d:e5:9f:87:f3: 52:c6:31:f8:69:51:bf:9f:e4:f0:dc:36:0f:9f:9f:b2:ca:66: a3:7c:e0:be:e6:56:84:d0:e2:b0:be:70:a6:b6:f2:5d:01:4e: 25:ca:99:33:61:3c:e2:c1:6d:7a:ff:03:26:7c:fb:3e:0f:ec: 35:ff:39:93:e7:bb:a6:34:cc:42:0f:c8:b1:e6:0a:03:36:86: 4d:36:3f:e2:59:56:db:cd:43:e7:d1:b7:42:d3:ed:14:c2:2c: e0:db:0f:37:6c:77:79:81:c6:ec:5f:ff:12:74:18:82:ec:50: 79:0d:84:70:48:84:46:a2:bf:62:0d:e4:4a:2a:ca:2e:c1:92: 2e:0d:bd:0a:3d:e8:68:65:88:6f:03:e1:5f:fa:fc:8e:50:6c: 70:cc:c3:10:86:a2:2a:6f:97:2f:0d:f1:6e:5c:1e:19:3c:0d: 01:fa:20:78 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB1owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjAxMzZaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDBBREMyN0RENThCNEQx QkFGMDA4N0U2RkFDOUFBMTlCRjM4QUNDQTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgVQ/fC0EY9IP9Lv00Kbvp72cn0N/q5gpDlReWcXFNGohJO07j lmXj7LUNys46RyAUo3dKKWOiYbvMaZbfaEJaSD/XQWCyKYjatRkU1RzTx62CIMp+ dByYNZyMVz/G14UzoChtAJiRAM82DKkW0hWOCnx/2jLKtqXkzRUQtdfQc6tyZRb2 8p2g+QYaVglCEvjY+C8BQEK1x81aTlJV+RlomOYPNA5zapAj/WbS3curozzbvGUQ ty2u3K5yOV/Iup26BiiEcEZhWw3ln2iBOZHUzm84qyhJBHU6XuH8NizvWXB4katE zBv0puGt3Szd1TWDcEwgdBHbcZM9X2c1b8g3AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUCtwn3Vi00brwCH5vrJqhm/OKzKcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0N0d24zVmkwMGJyd0NINXZySnFobV9PS3pLYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABunoMwDQYJKoZIhvcNAQELBQADggEBAMAarrtZosHqqZfaiIeWX4T7RY8w f/rOLl0k2aLhVStpAe7xqheYRpiECbeh8CbU5AlMue5H5crocIkAu7ozrzWhK852 wrD9hgB2E8TTAYnECLT4rwst5Z+H81LGMfhpUb+f5PDcNg+fn7LKZqN84L7mVoTQ 4rC+cKa28l0BTiXKmTNhPOLBbXr/AyZ8+z4P7DX/OZPnu6Y0zEIPyLHmCgM2hk02 P+JZVtvNQ+fRt0LT7RTCLODbDzdsd3mBxuxf/xJ0GILsUHkNhHBIhEaiv2IN5Eoq yi7Bki4NvQo96GhliG8D4V/6/I5QbHDMwxCGoipvly8N8W5cHhk8DQH6IHg= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:46 2024 by rpki-client on console-fra.rpki-client.org