$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ExOm32vuKFivwE7xmGj2si3R9so.roa File: ExOm32vuKFivwE7xmGj2si3R9so.roa (raw, json) Hash identifier: Xys8TIKpgnFZfAO8+p84EqMPOfU81puGhPTczJjF8KA= Subject key identifier: 13:13:A6:DF:6B:EE:28:58:AF:C0:4E:F1:98:68:F6:B2:2D:D1:F6:CA Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 09D4 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ExOm32vuKFivwE7xmGj2si3R9so.roa Signing time: Sun 30 Jun 2024 01:40:31 +0000 ROA not before: Sun 30 Jun 2024 01:40:31 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 110.158.160.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Dec 2024 00:11:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2516 (0x9d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:40:31 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=1313A6DF6BEE2858AFC04EF19868F6B22DD1F6CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a9:04:d9:58:24:c1:ed:a6:ae:83:a3:8c:b2: 1d:d9:d4:dc:9b:ea:a3:8d:19:b7:3f:02:f4:3c:55: be:b9:d0:ca:c9:75:74:f7:ee:6e:66:a8:f2:df:9e: 6d:e9:4e:0c:c9:1c:70:09:76:95:44:28:63:e6:42: 8a:23:12:83:c1:6f:30:d4:37:53:11:e9:f6:6d:3f: 47:59:c2:5e:09:7f:f6:7f:21:dd:5b:6f:11:6c:f9: 11:71:16:86:c4:13:3a:63:a3:c7:76:99:21:01:7c: 44:ff:d5:e2:15:f5:9f:02:8e:c2:f8:16:ca:4d:f0: 58:95:1e:8f:fc:f6:88:87:89:54:62:5f:7a:6d:f9: 7e:04:aa:69:29:76:6f:63:98:65:58:3c:81:18:f3: b1:a0:85:49:11:63:ae:c2:05:c6:17:09:77:13:9e: 5a:84:1b:bd:2b:06:a2:50:62:c5:e6:08:de:a9:c9: 57:6e:21:03:21:97:e0:ec:7c:2b:31:e4:80:b3:7d: 2a:f1:39:d0:3a:4b:e0:73:f7:f1:32:b8:62:6b:d5: be:52:02:07:67:2b:fc:b1:1f:21:03:4a:0f:f4:d9: 62:bd:da:46:c5:7d:79:2b:5a:af:ef:9e:86:db:23: 67:04:84:09:69:1a:9c:73:6e:6c:9e:8c:b4:9c:1a: 67:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:13:A6:DF:6B:EE:28:58:AF:C0:4E:F1:98:68:F6:B2:2D:D1:F6:CA X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ExOm32vuKFivwE7xmGj2si3R9so.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.158.160.0/21 Signature Algorithm: sha256WithRSAEncryption 67:dc:ac:f9:bd:bd:fd:ce:31:45:83:f6:03:57:4f:70:a0:6f: ec:dd:89:61:f7:02:af:b4:52:b3:74:e9:8c:08:8a:2e:e8:70: 1c:a5:0e:56:2a:f7:51:37:80:fb:74:19:ef:d2:70:39:66:26: 45:a8:84:fc:79:fe:39:97:83:ae:81:22:e1:e9:34:22:dc:93: a1:27:57:17:91:73:0c:e3:85:3e:2b:5f:a1:d4:b0:f8:75:f3: cd:e4:28:57:cb:3f:06:0b:51:fa:9b:c9:61:85:7b:6e:5c:96: 57:7e:c6:79:0d:7c:68:f8:af:52:e6:bf:2f:1f:9b:98:59:90: 1b:d9:43:8c:d4:86:7e:c3:3e:24:d6:9d:84:07:fe:59:a2:41: 00:df:85:ce:62:32:68:46:c2:40:e4:ec:99:e9:ca:31:84:9d: 48:68:30:84:ba:d0:e2:2f:0e:08:7c:f8:a5:c5:17:c8:65:4a: 4e:91:a3:bb:c8:b5:4e:a9:51:4c:98:79:7a:ef:ae:09:00:31: 18:ed:2a:c2:f4:4b:0a:fe:e0:66:58:bb:3b:89:00:68:a2:2b: 3f:e9:21:fc:8b:0a:7c:0f:6d:23:ff:01:9e:34:93:38:c1:9e: ca:cb:d7:af:69:22:cf:c1:65:6d:83:81:41:eb:b7:71:2f:40: c4:37:77:dc -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCdQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQwMzFaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDEzMTNBNkRGNkJFRTI4 NThBRkMwNEVGMTk4NjhGNkIyMkREMUY2Q0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5qQTZWCTB7aaug6OMsh3Z1Nyb6qONGbc/AvQ8Vb650MrJdXT3 7m5mqPLfnm3pTgzJHHAJdpVEKGPmQoojEoPBbzDUN1MR6fZtP0dZwl4Jf/Z/Id1b bxFs+RFxFobEEzpjo8d2mSEBfET/1eIV9Z8CjsL4FspN8FiVHo/89oiHiVRiX3pt +X4Eqmkpdm9jmGVYPIEY87GghUkRY67CBcYXCXcTnlqEG70rBqJQYsXmCN6pyVdu IQMhl+DsfCsx5ICzfSrxOdA6S+Bz9/EyuGJr1b5SAgdnK/yxHyEDSg/02WK92kbF fXkrWq/vnobbI2cEhAlpGpxzbmyejLScGmc1AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUExOm32vuKFivwE7xmGj2si3R9sowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0V4T20zMnZ1S0ZpdndFN3htR2oyc2kzUjlzby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANunqAwDQYJKoZIhvcNAQELBQADggEBAGfcrPm9vf3OMUWD9gNXT3Cgb+zd iWH3Aq+0UrN06YwIii7ocBylDlYq91E3gPt0Ge/ScDlmJkWohPx5/jmXg66BIuHp NCLck6EnVxeRcwzjhT4rX6HUsPh1883kKFfLPwYLUfqbyWGFe25clld+xnkNfGj4 r1Lmvy8fm5hZkBvZQ4zUhn7DPiTWnYQH/lmiQQDfhc5iMmhGwkDk7JnpyjGEnUho MIS60OIvDgh8+KXFF8hlSk6Ro7vItU6pUUyYeXrvrgkAMRjtKsL0Swr+4GZYuzuJ AGiiKz/pIfyLCnwPbSP/AZ40kzjBnsrL169pIs/BZW2DgUHrt3EvQMQ3d9w= -----END CERTIFICATE-----Generated at Tue Nov 26 02:27:14 2024 by rpki-client on console-ams.rpki-client.org