$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/D88BBRH9MFBTZAbwqYdcSAI7thc.roa File: D88BBRH9MFBTZAbwqYdcSAI7thc.roa (raw, json) Hash identifier: XPVITi2+ZxSnvEphdKrjRwhw1pYjjPIj4RL6nGHOZ8I= Subject key identifier: 0F:CF:01:05:11:FD:30:50:53:64:06:F0:A9:87:5C:48:02:3B:B6:17 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 09D1 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/D88BBRH9MFBTZAbwqYdcSAI7thc.roa Signing time: Sun 30 Jun 2024 01:40:30 +0000 ROA not before: Sun 30 Jun 2024 01:40:30 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 220.210.76.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:58:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2513 (0x9d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:40:30 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=0FCF010511FD3050536406F0A9875C48023BB617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:49:03:26:89:a3:6e:b5:11:b8:41:a0:54:13: 97:c2:95:0b:61:8b:eb:6a:80:c2:53:20:6a:ad:38: eb:c8:ea:63:de:c9:01:2a:42:34:c3:c5:c9:0f:3b: dd:8d:97:d6:7e:41:29:80:43:c0:83:1f:77:c7:14: 2e:47:8e:e5:1c:9f:ef:cd:4b:e5:dc:d8:3d:0d:b2: b8:27:eb:77:a1:b7:9a:ec:c2:55:7c:54:2c:3e:a2: b7:d3:a2:c4:e5:3b:dc:61:c4:a7:35:35:33:0d:34: 09:2d:94:7d:10:dc:ee:3b:01:85:2a:7e:66:24:40: b2:1b:a6:b2:16:53:06:d8:65:8b:a1:1f:8f:d9:44: 41:ec:9e:1a:5a:b0:99:b3:2b:a4:5b:57:76:5d:6b: 09:69:26:39:49:7f:15:a3:52:0b:4c:1e:a3:05:02: 79:c5:54:34:cc:16:f1:95:fc:fb:69:f3:f0:08:62: 42:83:50:a8:75:07:f8:c7:89:b7:4a:e6:dc:ff:32: fa:c8:e4:d2:27:db:64:46:5d:f1:26:fc:9f:22:71: 5d:53:af:3a:ac:33:5f:10:a7:b4:89:9c:d8:6c:61: 9a:21:32:81:28:ea:ed:59:53:47:0e:0a:c4:39:08: e5:d9:21:93:85:eb:ca:b5:02:f0:99:74:ac:6e:66: 10:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:CF:01:05:11:FD:30:50:53:64:06:F0:A9:87:5C:48:02:3B:B6:17 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/D88BBRH9MFBTZAbwqYdcSAI7thc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.76.0/23 Signature Algorithm: sha256WithRSAEncryption 09:df:4f:98:fb:50:61:fe:81:20:31:23:df:e8:7f:ff:41:1d: 69:50:87:ce:82:7c:e1:f7:62:78:b4:2e:a6:da:d3:1f:98:45: 21:e8:4e:ae:c6:d9:29:fe:dc:14:ea:fe:bd:8e:08:79:b9:4d: f3:f5:a9:fe:47:6f:dd:07:8a:31:79:00:89:39:9c:14:ae:0d: 98:8c:44:9a:b5:70:6b:7e:84:9b:f5:f6:43:96:e3:5c:a5:ba: 69:e4:cc:8a:4a:2d:36:45:11:5a:db:48:58:c9:1e:2a:59:8d: 52:fa:9f:a5:c7:8f:d3:51:10:3f:34:86:23:29:e5:6d:d6:7f: d3:1e:61:c4:9c:d1:d0:e9:9f:c2:00:20:ba:fa:cb:27:01:4c: 86:92:2e:a4:e3:90:ff:55:93:a4:79:ea:6f:e2:6c:40:8c:f1: 18:74:f6:4a:c5:d0:72:31:21:b3:57:72:93:89:22:34:76:0e: 5b:97:7d:3b:aa:b5:d0:60:12:ba:fa:8f:a5:78:a4:e9:03:1d: c8:33:10:47:f4:a4:37:2e:22:d3:4c:c0:ac:54:66:48:a7:ba: f7:65:7e:ac:6a:0e:a0:35:1c:07:97:31:90:1f:73:2f:f6:ff: 31:02:29:d1:d7:90:37:bc:40:83:90:bc:7d:30:d8:a8:21:37: 3d:34:4f:38 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCdEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQwMzBaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDBGQ0YwMTA1MTFGRDMw NTA1MzY0MDZGMEE5ODc1QzQ4MDIzQkI2MTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHSQMmiaNutRG4QaBUE5fClQthi+tqgMJTIGqtOOvI6mPeyQEq QjTDxckPO92Nl9Z+QSmAQ8CDH3fHFC5HjuUcn+/NS+Xc2D0Nsrgn63eht5rswlV8 VCw+orfTosTlO9xhxKc1NTMNNAktlH0Q3O47AYUqfmYkQLIbprIWUwbYZYuhH4/Z REHsnhpasJmzK6RbV3ZdawlpJjlJfxWjUgtMHqMFAnnFVDTMFvGV/Ptp8/AIYkKD UKh1B/jHibdK5tz/MvrI5NIn22RGXfEm/J8icV1TrzqsM18Qp7SJnNhsYZohMoEo 6u1ZU0cOCsQ5COXZIZOF68q1AvCZdKxuZhC3AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUD88BBRH9MFBTZAbwqYdcSAI7thcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0Q4OEJCUkg5TUZCVFpBYndxWWRjU0FJN3RoYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHc0kwwDQYJKoZIhvcNAQELBQADggEBAAnfT5j7UGH+gSAxI9/of/9BHWlQ h86CfOH3Yni0Lqba0x+YRSHoTq7G2Sn+3BTq/r2OCHm5TfP1qf5Hb90HijF5AIk5 nBSuDZiMRJq1cGt+hJv19kOW41ylumnkzIpKLTZFEVrbSFjJHipZjVL6n6XHj9NR ED80hiMp5W3Wf9MeYcSc0dDpn8IAILr6yycBTIaSLqTjkP9Vk6R56m/ibECM8Rh0 9krF0HIxIbNXcpOJIjR2DluXfTuqtdBgErr6j6V4pOkDHcgzEEf0pDcuItNMwKxU ZkinuvdlfqxqDqA1HAeXMZAfcy/2/zECKdHXkDe8QIOQvH0w2KghNz00Tzg= -----END CERTIFICATE-----Generated at Fri Nov 22 14:21:19 2024 by rpki-client on console-ams.rpki-client.org