$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/DPSajfMdHbm2xfNzDqVgcg_grD8.roa File: DPSajfMdHbm2xfNzDqVgcg_grD8.roa (raw, json) Hash identifier: ICx+Bvah17kAwuXXxV9wcAQya89wdcFM0iv8+F1S1TI= Subject key identifier: 0C:F4:9A:8D:F3:1D:1D:B9:B6:C5:F3:73:0E:A5:60:72:0F:E0:AC:3F Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A28 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/DPSajfMdHbm2xfNzDqVgcg_grD8.roa Signing time: Sun 30 Jun 2024 01:46:29 +0000 ROA not before: Sun 30 Jun 2024 01:46:29 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.66.20.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2600 (0xa28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:46:29 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=0CF49A8DF31D1DB9B6C5F3730EA560720FE0AC3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3c:b8:db:b1:63:a5:66:29:09:fe:4b:f5:54: ed:91:18:bb:8e:96:48:97:05:15:0c:61:ef:73:3d: 25:a9:eb:cc:de:52:7c:70:f4:3c:59:e5:dd:d8:35: bd:e6:d6:04:71:da:6f:2e:c1:be:24:4a:4a:9b:d6: 71:ec:e0:98:26:2a:59:9f:35:3c:b6:39:ac:f9:5d: c5:7c:61:42:ed:65:28:03:d2:20:ec:fd:67:c7:fb: 4b:83:d1:91:6f:bf:08:22:c5:a5:fc:44:fe:ee:80: 8a:89:27:f9:2d:11:11:be:b6:7f:34:2c:f6:f8:dc: e0:ba:c8:f8:c6:8b:2d:21:11:1d:69:c4:ec:87:b5: ac:5d:56:7a:71:c5:28:7b:ad:16:3f:1a:6e:c3:93: b5:9c:89:1f:e3:32:c4:22:37:23:79:a3:7e:df:ee: 35:6a:ea:d5:dd:d0:e4:62:99:db:c2:48:f0:5e:00: a6:22:d1:08:b8:ce:d3:9f:7d:e7:46:81:a2:e9:20: 5d:54:ce:bb:ce:4e:7b:4f:91:75:d8:2b:b8:09:fa: cc:7d:20:96:1a:e8:10:ac:0b:10:45:13:3a:a8:98: 76:e4:3e:87:ba:26:76:0d:30:44:9e:50:02:43:0f: 70:49:45:58:17:94:fb:18:4f:3b:3a:55:00:fb:fa: 2c:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:F4:9A:8D:F3:1D:1D:B9:B6:C5:F3:73:0E:A5:60:72:0F:E0:AC:3F X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/DPSajfMdHbm2xfNzDqVgcg_grD8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.66.20.0/23 Signature Algorithm: sha256WithRSAEncryption 62:a7:a9:78:28:c7:d8:5b:35:6f:b7:9a:f3:bb:93:92:e4:52: 50:e6:37:d9:f3:cd:fe:b5:aa:5b:82:2c:37:b5:5c:d4:7b:75: 9b:16:30:58:2a:ed:3c:d3:05:e3:20:a3:59:4e:20:3e:a6:0f: 72:db:16:38:5d:7e:4f:83:75:37:78:04:c7:b0:ee:4b:19:c0: 08:bd:dc:23:37:28:3e:02:cb:2d:4a:f5:a5:91:71:62:be:c3: ae:ab:5a:f0:4d:a5:e5:e6:7a:5c:a2:44:70:ad:36:3a:fc:3e: de:01:cd:64:83:54:11:f6:ba:f1:ed:ab:60:ee:7a:06:d2:56: d6:de:a6:37:51:d6:e0:7f:17:81:fb:10:ae:8a:54:c1:60:45: 1c:6a:4c:0a:ee:ed:30:32:36:89:06:a5:8e:10:47:4e:fb:f4: f1:d5:bf:ff:8e:a1:b2:09:0d:6f:bc:16:f0:ac:35:e8:68:3a: 24:46:21:7e:30:4f:e6:f4:28:45:21:45:49:a2:de:98:24:dd: ee:f3:97:96:cd:e6:a9:6f:2f:45:22:8e:45:ac:9e:8a:4b:89: 51:3c:5e:16:38:33:09:36:b2:e9:6f:de:4e:19:de:68:02:2b: de:21:41:91:be:26:ee:11:47:9f:2b:60:a4:da:c8:56:55:b4: 04:a2:81:19 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCigwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQ2MjlaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDBDRjQ5QThERjMxRDFE QjlCNkM1RjM3MzBFQTU2MDcyMEZFMEFDM0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVPLjbsWOlZikJ/kv1VO2RGLuOlkiXBRUMYe9zPSWp68zeUnxw 9DxZ5d3YNb3m1gRx2m8uwb4kSkqb1nHs4JgmKlmfNTy2Oaz5XcV8YULtZSgD0iDs /WfH+0uD0ZFvvwgixaX8RP7ugIqJJ/ktERG+tn80LPb43OC6yPjGiy0hER1pxOyH taxdVnpxxSh7rRY/Gm7Dk7WciR/jMsQiNyN5o37f7jVq6tXd0ORimdvCSPBeAKYi 0Qi4ztOffedGgaLpIF1UzrvOTntPkXXYK7gJ+sx9IJYa6BCsCxBFEzqomHbkPoe6 JnYNMESeUAJDD3BJRVgXlPsYTzs6VQD7+iw9AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUDPSajfMdHbm2xfNzDqVgcg/grD8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0RQU2FqZk1kSGJtMnhmTnpEcVZnY2dfZ3JEOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBQhQwDQYJKoZIhvcNAQELBQADggEBAGKnqXgox9hbNW+3mvO7k5LkUlDm N9nzzf61qluCLDe1XNR7dZsWMFgq7TzTBeMgo1lOID6mD3LbFjhdfk+DdTd4BMew 7ksZwAi93CM3KD4Cyy1K9aWRcWK+w66rWvBNpeXmelyiRHCtNjr8Pt4BzWSDVBH2 uvHtq2DuegbSVtbepjdR1uB/F4H7EK6KVMFgRRxqTAru7TAyNokGpY4QR0779PHV v/+OobIJDW+8FvCsNehoOiRGIX4wT+b0KEUhRUmi3pgk3e7zl5bN5qlvL0UijkWs nopLiVE8XhY4Mwk2sulv3k4Z3mgCK94hQZG+Ju4RR58rYKTayFZVtASigRk= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:39 2024 by rpki-client on console-ams.rpki-client.org