$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/FCuIjpEjWhmetY2GQM0yAd1V4RQ.roa File: FCuIjpEjWhmetY2GQM0yAd1V4RQ.roa (raw, json) Hash identifier: 04QEIcovpMpbsMMMlC3Lpv+N/xMVNdyiGMfJm3N+Z44= Subject key identifier: 14:2B:88:8E:91:23:5A:19:9E:B5:8D:86:40:CD:32:01:DD:55:E1:14 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A10 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/FCuIjpEjWhmetY2GQM0yAd1V4RQ.roa Signing time: Sun 30 Jun 2024 01:44:19 +0000 ROA not before: Sun 30 Jun 2024 01:44:19 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.76.84.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2576 (0xa10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:44:19 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=142B888E91235A199EB58D8640CD3201DD55E114 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:16:1d:9a:ad:63:b5:d8:19:af:ac:67:c3:97: 8b:c3:32:94:df:96:5c:cf:4e:fa:0b:db:8d:20:fe: 50:c2:2a:b9:0d:f1:c4:6e:82:18:49:f9:93:ba:ad: 6f:b2:30:e7:ad:18:46:f4:19:26:b1:69:ac:c2:07: bf:89:5e:f5:63:8e:cd:ac:84:6c:7c:d0:cc:ef:a9: 04:ae:1a:d0:90:30:7c:6e:3f:07:61:50:28:45:15: 35:a7:45:07:42:44:62:f0:30:48:56:ea:63:49:7e: f2:6b:67:aa:12:c8:5a:31:60:1e:25:68:b6:82:60: 61:a2:70:f9:36:ff:64:b0:69:81:98:36:41:d6:16: c9:fb:48:a9:e3:d4:1c:d8:5c:be:ad:15:dd:4c:7a: 9e:26:67:e9:c6:70:e9:38:b3:19:50:14:71:d8:a1: 31:9b:f6:d7:cb:d8:ab:a3:81:75:7d:94:7d:3b:83: f2:82:ec:fa:f1:33:9f:7c:d7:3b:3a:b8:b3:0c:2f: 71:6c:93:01:90:94:29:6b:74:0e:e4:da:cd:5c:b9: 7d:02:2c:3d:b8:75:c0:8d:db:d8:a6:83:9c:68:7d: 9b:21:9b:a1:71:d4:c6:1c:79:98:50:1d:e9:6e:aa: 0b:92:48:d1:f6:f9:0e:73:6c:71:cd:98:a4:66:5c: 52:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:2B:88:8E:91:23:5A:19:9E:B5:8D:86:40:CD:32:01:DD:55:E1:14 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/FCuIjpEjWhmetY2GQM0yAd1V4RQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.84.0/22 Signature Algorithm: sha256WithRSAEncryption 1f:c4:0c:63:82:86:44:4b:3a:84:cb:3b:d8:ae:e2:43:88:a3: 6a:4e:c7:b1:e9:21:45:11:f8:c6:bb:b5:16:a4:6b:89:58:a8: f5:48:ca:35:90:d5:7a:a0:ae:c8:3f:5b:75:e6:55:fc:5d:e1: 45:15:8e:65:67:ec:66:67:72:0b:b3:a9:27:c6:64:ad:de:3c: 77:db:28:6f:07:90:b8:ac:ae:a1:8d:6b:89:b9:91:79:a1:28: a7:31:5d:9e:cd:c0:37:00:04:d2:55:e7:90:a9:75:78:8c:a1: 59:6a:7d:73:07:02:33:d5:be:91:bf:9e:d2:6b:39:b4:9c:c1: a4:7a:a8:23:91:54:77:4c:66:5f:c0:ea:be:87:5e:66:29:35: 2f:72:7c:de:c0:ff:37:08:d8:ce:7e:7d:06:1c:a8:e2:12:d2: cf:a1:fe:dc:fa:4f:76:83:14:27:c5:70:b4:d9:ed:d2:82:15: 9d:d3:1a:b0:80:c1:a8:cb:e3:ca:6d:8a:e4:2a:9f:7e:4d:4c: 93:d6:5d:55:f7:9e:da:77:ea:31:41:77:59:da:6e:33:03:23: 1e:28:92:7e:43:b6:d7:91:ad:82:2d:27:aa:76:58:f7:dc:e3: 74:dc:0d:c7:28:57:77:c3:90:3e:c5:67:9b:fa:21:61:a1:07: 64:1a:87:2c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICChAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQ0MTlaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDE0MkI4ODhFOTEyMzVB MTk5RUI1OEQ4NjQwQ0QzMjAxREQ1NUUxMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyFh2arWO12BmvrGfDl4vDMpTfllzPTvoL240g/lDCKrkN8cRu ghhJ+ZO6rW+yMOetGEb0GSaxaazCB7+JXvVjjs2shGx80MzvqQSuGtCQMHxuPwdh UChFFTWnRQdCRGLwMEhW6mNJfvJrZ6oSyFoxYB4laLaCYGGicPk2/2SwaYGYNkHW Fsn7SKnj1BzYXL6tFd1Mep4mZ+nGcOk4sxlQFHHYoTGb9tfL2KujgXV9lH07g/KC 7PrxM5981zs6uLMML3FskwGQlClrdA7k2s1cuX0CLD24dcCN29img5xofZshm6Fx 1MYceZhQHeluqguSSNH2+Q5zbHHNmKRmXFKLAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUFCuIjpEjWhmetY2GQM0yAd1V4RQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0ZDdUlqcEVqV2htZXRZMkdRTTB5QWQxVjRSUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBTFQwDQYJKoZIhvcNAQELBQADggEBAB/EDGOChkRLOoTLO9iu4kOIo2pO x7HpIUUR+Ma7tRaka4lYqPVIyjWQ1Xqgrsg/W3XmVfxd4UUVjmVn7GZncguzqSfG ZK3ePHfbKG8HkLisrqGNa4m5kXmhKKcxXZ7NwDcABNJV55CpdXiMoVlqfXMHAjPV vpG/ntJrObScwaR6qCORVHdMZl/A6r6HXmYpNS9yfN7A/zcI2M5+fQYcqOIS0s+h /tz6T3aDFCfFcLTZ7dKCFZ3TGrCAwajL48ptiuQqn35NTJPWXVX3ntp36jFBd1na bjMDIx4okn5DtteRrYItJ6p2WPfc43TcDccoV3fDkD7FZ5v6IWGhB2Qahyw= -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:41 2024 by rpki-client on console-ams.rpki-client.org