$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/FssTRYrHA0NC22ZBtS1VWRNif7U.roa File: FssTRYrHA0NC22ZBtS1VWRNif7U.roa (raw, json) Hash identifier: i9K0407xXtcXLbXw/nmsZjpCwOoDL7LLKey/IZl2Uz0= Subject key identifier: 16:CB:13:45:8A:C7:03:43:42:DB:66:41:B5:2D:55:59:13:62:7F:B5 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 09E7 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/FssTRYrHA0NC22ZBtS1VWRNif7U.roa Signing time: Sun 30 Jun 2024 01:42:21 +0000 ROA not before: Sun 30 Jun 2024 01:42:21 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 220.210.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:58:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2535 (0x9e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:42:21 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=16CB13458AC7034342DB6641B52D555913627FB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:3a:87:f6:51:7b:92:18:a7:ff:b8:7d:1c:1d: 7f:7f:30:2e:a6:ef:35:4e:e6:9b:77:bd:b0:86:2e: c9:40:78:36:e2:7b:db:ca:63:c2:5d:59:6f:47:40: aa:1f:08:60:d2:b3:9f:b6:c5:4f:22:7c:b5:86:32: 02:0a:1b:a7:1a:56:6a:d8:65:26:00:71:94:a8:fc: b9:46:fb:fd:14:27:1b:d9:c9:d0:8c:ad:08:d4:7b: b4:e1:77:08:9c:8f:04:ea:b7:24:55:a2:5d:d5:a2: 09:98:2b:52:d0:96:fc:c8:a9:ea:1f:bb:51:f3:90: a7:12:30:15:c5:c1:be:5a:1c:76:8b:10:58:1a:71: 49:4c:8d:16:a9:e8:0e:66:ea:8d:af:55:fc:b0:93: 4a:af:d5:f2:fc:92:89:1d:5c:ae:d3:07:64:6d:35: 88:f2:44:e5:66:38:9e:0b:ca:b0:80:66:74:8c:8a: 6a:25:de:99:b8:37:02:ab:1c:ad:db:55:51:4c:c8: 9e:be:9e:08:bd:77:fe:74:a7:ca:a1:68:ed:61:12: a2:2b:9f:48:ef:da:5c:44:9a:fd:0e:29:02:08:d5: 4b:6b:47:24:9d:98:d4:4d:e6:d2:ad:99:c6:71:22: 8e:76:00:67:50:3b:c5:33:57:d5:9b:40:9c:46:57: 55:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:CB:13:45:8A:C7:03:43:42:DB:66:41:B5:2D:55:59:13:62:7F:B5 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/FssTRYrHA0NC22ZBtS1VWRNif7U.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.104.0/24 Signature Algorithm: sha256WithRSAEncryption 10:fd:33:48:c3:6d:9e:cc:25:56:c3:16:71:d1:7e:9f:f4:d4: 9d:05:ba:bd:29:8e:ee:10:09:77:65:b2:1c:d1:fc:39:80:fe: 6b:45:bc:d5:ca:b2:bc:5a:38:8e:21:28:8a:6c:6a:11:ec:6c: c7:be:9c:d2:e6:7a:37:17:ca:07:30:e9:79:d0:55:4f:bc:06: 64:1c:32:9f:7e:88:42:77:13:e7:24:70:74:aa:97:39:98:b3: 99:6d:18:0d:b0:3c:0c:9d:be:22:1e:58:52:04:fa:29:05:91: 57:bf:22:ee:51:fc:b7:2f:3b:df:5d:22:0b:39:99:0f:56:35: 45:7e:2f:38:8e:69:2b:de:0c:5c:4d:dc:26:7c:6c:41:1d:12: 8d:e7:a7:0f:58:9d:c4:27:d5:70:28:df:71:3d:c8:6c:b6:4b: 5d:19:59:3c:6a:f6:a5:91:5c:27:cc:2e:bb:dc:d1:c6:0f:9b: d1:dd:cd:c2:8c:f1:86:18:25:dd:b7:d0:df:4b:a6:fb:94:0e: fe:03:b5:32:b3:cd:6a:a1:81:fa:d5:d7:ef:eb:be:60:d4:c9: c9:72:fb:d5:11:0a:d4:84:fd:f3:07:0d:aa:0f:0d:1d:b8:5f: 29:22:01:3b:db:60:c0:09:29:3a:9c:98:b1:22:17:59:66:d4: 24:86:c1:d9 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCecwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQyMjFaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDE2Q0IxMzQ1OEFDNzAz NDM0MkRCNjY0MUI1MkQ1NTU5MTM2MjdGQjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUOof2UXuSGKf/uH0cHX9/MC6m7zVO5pt3vbCGLslAeDbie9vK Y8JdWW9HQKofCGDSs5+2xU8ifLWGMgIKG6caVmrYZSYAcZSo/LlG+/0UJxvZydCM rQjUe7ThdwicjwTqtyRVol3VogmYK1LQlvzIqeofu1HzkKcSMBXFwb5aHHaLEFga cUlMjRap6A5m6o2vVfywk0qv1fL8kokdXK7TB2RtNYjyROVmOJ4LyrCAZnSMimol 3pm4NwKrHK3bVVFMyJ6+ngi9d/50p8qhaO1hEqIrn0jv2lxEmv0OKQII1UtrRySd mNRN5tKtmcZxIo52AGdQO8UzV9WbQJxGV1WHAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUFssTRYrHA0NC22ZBtS1VWRNif7UwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0Zzc1RSWXJIQTBOQzIyWkJ0UzFWV1JOaWY3VS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADc0mgwDQYJKoZIhvcNAQELBQADggEBABD9M0jDbZ7MJVbDFnHRfp/01J0F ur0pju4QCXdlshzR/DmA/mtFvNXKsrxaOI4hKIpsahHsbMe+nNLmejcXygcw6XnQ VU+8BmQcMp9+iEJ3E+ckcHSqlzmYs5ltGA2wPAydviIeWFIE+ikFkVe/Iu5R/Lcv O99dIgs5mQ9WNUV+LziOaSveDFxN3CZ8bEEdEo3npw9YncQn1XAo33E9yGy2S10Z WTxq9qWRXCfMLrvc0cYPm9HdzcKM8YYYJd230N9LpvuUDv4DtTKzzWqhgfrV1+/r vmDUycly+9URCtSE/fMHDaoPDR24XykiATvbYMAJKTqcmLEiF1lm1CSGwdk= -----END CERTIFICATE-----Generated at Fri Nov 22 14:21:23 2024 by rpki-client on console-ams.rpki-client.org