$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/DRMGQe7bMjllWDiURrMgXXsrnPU.roa File: DRMGQe7bMjllWDiURrMgXXsrnPU.roa (raw, json) Hash identifier: FRC0Q9sLYawM1P2VdxFYQR3MmtNYVhpI+5wEW7kj8aw= Subject key identifier: 0D:13:06:41:EE:DB:32:39:65:58:38:94:46:B3:20:5D:7B:2B:9C:F5 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 045F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/DRMGQe7bMjllWDiURrMgXXsrnPU.roa Signing time: Thu 27 Jul 2023 16:43:20 +0000 ROA not before: Thu 27 Jul 2023 16:43:20 +0000 ROA not after: Sun 14 Jul 2024 01:30:03 +0000 asID: 9605 IP address blocks: 220.210.60.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1119 (0x45f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jul 27 16:43:20 2023 GMT Not After : Jul 14 01:30:03 2024 GMT Subject: CN=0D130641EEDB32396558389446B3205D7B2B9CF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:38:34:8e:b9:fc:ce:bd:94:a9:e7:e3:70:09: 75:ae:32:46:19:13:12:3c:fa:c9:58:10:45:1d:b9: 5c:0f:04:67:3e:5d:af:4b:66:f9:40:71:65:d7:dd: db:a9:59:7f:68:4c:76:32:7e:de:e3:db:27:d4:86: f3:b3:f7:1b:05:c6:86:31:fa:1b:09:cd:8c:2b:ba: 72:b6:c3:99:fb:8f:e2:01:51:12:b0:78:63:46:0d: 6a:1e:59:04:39:bb:ef:5a:28:a1:53:c1:3f:c9:76: c2:fa:7e:10:01:83:56:50:bf:9e:c5:a1:b8:d7:c2: 85:9d:bf:c3:e3:0c:dc:8b:59:5b:c6:32:09:5e:22: 82:b4:81:b5:bc:a5:f0:ac:29:d5:6d:ad:70:f8:0c: f0:1a:ee:03:6e:4c:1e:db:60:8d:e9:bf:a2:ae:8a: 58:e1:be:fb:f7:9e:ad:a2:ce:f8:c8:0b:0b:b8:e5: 5f:a1:d2:1c:e8:44:f3:87:88:a8:4c:29:c8:8c:b2: e8:a9:c2:41:8c:88:70:51:d8:d3:8f:a4:43:64:db: db:2d:3d:67:d6:f2:57:74:8f:d6:8b:b0:55:b0:30: 96:cb:6e:42:d5:ec:b2:9a:b2:c0:b4:e3:7f:ae:25: a2:a7:9d:4c:e1:54:2b:b6:f6:b0:ec:74:06:e3:0e: d9:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:13:06:41:EE:DB:32:39:65:58:38:94:46:B3:20:5D:7B:2B:9C:F5 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/DRMGQe7bMjllWDiURrMgXXsrnPU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.60.0/23 Signature Algorithm: sha256WithRSAEncryption e5:c5:47:c0:57:44:68:16:88:7a:1f:bc:19:33:89:ce:b4:cb: e5:5d:f5:79:2b:f9:a0:b2:af:cc:ad:aa:fe:08:38:12:35:3b: da:63:c5:12:93:f1:83:2f:c9:87:7b:bd:0c:ad:10:24:c1:31: d0:9d:af:20:e7:98:e4:48:12:3a:03:21:94:c5:af:ac:f4:f0: b0:99:e2:70:3f:85:e1:d9:15:3d:ba:0a:71:01:33:cb:e5:89: 0d:cd:04:5e:e8:55:20:3a:91:18:02:ce:1f:67:ec:25:00:73: b5:b6:b8:44:cd:5e:4e:f8:6e:7f:b3:06:8d:e4:5c:af:de:37: 41:77:e0:65:74:7e:93:d8:63:7d:eb:10:5f:b8:fc:e2:55:8f: 02:1a:81:84:9e:07:3a:77:e6:a1:f8:db:e9:fb:f3:e7:a9:3a: 02:f1:a3:fb:eb:9f:3f:0f:45:74:f9:90:b6:f4:c4:34:96:d4: eb:76:9f:1f:0b:05:1c:e2:c6:a2:62:17:16:5d:bc:fd:22:41: 7b:d3:23:19:87:50:71:df:64:11:08:d3:1e:43:06:26:0a:b6: 46:58:64:3b:78:3f:ca:4a:70:46:49:56:1d:e9:3f:7f:d3:3d: a9:ea:e5:65:d2:72:36:b3:6a:a2:79:04:7f:b3:90:d2:8c:70: d4:a7:95:b3 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBF8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA3Mjcx NjQzMjBaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDBEMTMwNjQxRUVEQjMy Mzk2NTU4Mzg5NDQ2QjMyMDVEN0IyQjlDRjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDaODSOufzOvZSp5+NwCXWuMkYZExI8+slYEEUduVwPBGc+Xa9L ZvlAcWXX3dupWX9oTHYyft7j2yfUhvOz9xsFxoYx+hsJzYwrunK2w5n7j+IBURKw eGNGDWoeWQQ5u+9aKKFTwT/JdsL6fhABg1ZQv57FobjXwoWdv8PjDNyLWVvGMgle IoK0gbW8pfCsKdVtrXD4DPAa7gNuTB7bYI3pv6Kuiljhvvv3nq2izvjICwu45V+h 0hzoRPOHiKhMKciMsuipwkGMiHBR2NOPpENk29stPWfW8ld0j9aLsFWwMJbLbkLV 7LKassC043+uJaKnnUzhVCu29rDsdAbjDtntAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUDRMGQe7bMjllWDiURrMgXXsrnPUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0RSTUdRZTdiTWpsbFdEaVVSck1nWFhzcm5QVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHc0jwwDQYJKoZIhvcNAQELBQADggEBAOXFR8BXRGgWiHofvBkzic60y+Vd 9Xkr+aCyr8ytqv4IOBI1O9pjxRKT8YMvyYd7vQytECTBMdCdryDnmORIEjoDIZTF r6z08LCZ4nA/heHZFT26CnEBM8vliQ3NBF7oVSA6kRgCzh9n7CUAc7W2uETNXk74 bn+zBo3kXK/eN0F34GV0fpPYY33rEF+4/OJVjwIagYSeBzp35qH42+n78+epOgLx o/vrnz8PRXT5kLb0xDSW1Ot2nx8LBRzixqJiFxZdvP0iQXvTIxmHUHHfZBEI0x5D BiYKtkZYZDt4P8pKcEZJVh3pP3/TPanq5WXScjazaqJ5BH+zkNKMcNSnlbM= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:46 2024 by rpki-client on console-fra.rpki-client.org