$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/GDjU2NwO6NlcdXbEEll8gK3pyPY.roa File: GDjU2NwO6NlcdXbEEll8gK3pyPY.roa (raw, json) Hash identifier: tqstHpuzL78oFd0ZimzM1UiOUZo/9uGNVB8DtcHReCw= Subject key identifier: 18:38:D4:D8:DC:0E:E8:D9:5C:75:76:C4:12:59:7C:80:AD:E9:C8:F6 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A35 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/GDjU2NwO6NlcdXbEEll8gK3pyPY.roa Signing time: Sun 30 Jun 2024 01:46:35 +0000 ROA not before: Sun 30 Jun 2024 01:46:35 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.76.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2613 (0xa35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:46:35 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=1838D4D8DC0EE8D95C7576C412597C80ADE9C8F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:70:bd:db:be:c0:93:f1:36:fb:52:51:c6:26: 22:e4:b2:38:dc:91:d9:9f:fb:d4:e5:52:fe:c9:f4: 07:5e:99:6e:98:30:f3:97:75:35:84:ed:ef:a7:e6: c8:8e:b1:aa:89:77:4d:e2:7a:6e:a0:fe:76:b2:94: a7:ba:ac:24:af:16:27:fe:a9:1a:0b:9c:50:ae:e9: f1:c4:91:9f:8e:d3:b3:69:70:43:47:5e:91:b4:be: 74:4d:89:9d:f6:1c:22:d4:da:5e:2b:78:75:e5:6e: df:85:49:5c:22:f6:12:20:a2:60:16:cd:40:56:2a: 63:61:ee:7f:4a:49:ff:4f:76:f9:43:8d:a0:d7:03: 30:fd:94:73:59:fc:1b:a0:9a:63:4e:ad:d4:f6:34: 6e:24:c7:81:86:b9:26:ac:a3:26:81:6c:a0:af:02: 0c:8b:d9:21:1a:0b:7b:fe:e6:54:64:f9:db:42:cb: 81:22:93:91:10:15:8c:ed:f6:85:14:0c:33:8b:5d: c2:45:40:3e:0c:9b:3e:6e:10:03:00:28:e9:0c:fa: ac:43:67:a2:2c:c2:83:19:c6:14:ce:58:26:24:67: 15:7e:a8:a4:57:24:45:06:f2:36:a1:14:ef:ab:23: 92:e0:28:b5:96:29:0b:31:ea:66:d2:42:25:cd:8d: 21:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:38:D4:D8:DC:0E:E8:D9:5C:75:76:C4:12:59:7C:80:AD:E9:C8:F6 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/GDjU2NwO6NlcdXbEEll8gK3pyPY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.48.0/20 Signature Algorithm: sha256WithRSAEncryption 77:0f:cc:e4:38:39:f6:7b:85:de:83:dc:8c:3e:18:c7:13:14: 0a:5c:58:b7:64:13:bf:06:f8:a1:ac:29:02:83:89:52:ff:0e: 88:3e:fd:48:35:3b:98:95:50:fa:6a:83:37:81:dc:a6:b3:ce: 9f:e4:01:74:2c:2a:f7:00:fb:cc:bc:e5:d9:ac:ca:ba:0b:bb: 4b:8b:f0:28:f1:4a:6f:0e:ef:0a:6a:b0:d5:01:1a:d4:67:e5: 7b:2f:ee:17:b2:db:3e:09:8c:6f:e2:8a:84:0c:fa:34:8f:3f: 8b:ab:2e:a4:b1:d9:29:54:f4:e6:c4:15:33:5d:fe:28:6c:47: 6a:14:4e:c0:be:86:f3:a3:c7:f8:15:71:0d:31:49:46:16:30: b7:93:52:a8:a3:b0:84:f2:64:86:98:85:bc:a2:dc:a9:7f:4e: c4:86:00:79:e5:fc:c6:00:92:e5:41:09:cf:37:4c:8d:b4:75: 77:81:27:6e:e9:45:69:d3:92:2c:c1:a2:a3:d6:04:53:62:37: 16:21:9e:78:24:dd:0f:e1:39:99:e0:4d:75:bb:31:19:56:6b: 30:77:6c:65:1d:53:a4:7f:c5:c8:f6:6c:05:82:fb:12:8f:50: 46:2a:9f:ee:73:c7:39:91:f8:73:87:1e:e2:1d:70:9b:aa:16: bf:c6:a3:66 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCjUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQ2MzVaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDE4MzhENEQ4REMwRUU4 RDk1Qzc1NzZDNDEyNTk3QzgwQURFOUM4RjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7cL3bvsCT8Tb7UlHGJiLksjjckdmf+9TlUv7J9AdemW6YMPOX dTWE7e+n5siOsaqJd03iem6g/naylKe6rCSvFif+qRoLnFCu6fHEkZ+O07NpcENH XpG0vnRNiZ32HCLU2l4reHXlbt+FSVwi9hIgomAWzUBWKmNh7n9KSf9PdvlDjaDX AzD9lHNZ/BugmmNOrdT2NG4kx4GGuSasoyaBbKCvAgyL2SEaC3v+5lRk+dtCy4Ei k5EQFYzt9oUUDDOLXcJFQD4Mmz5uEAMAKOkM+qxDZ6IswoMZxhTOWCYkZxV+qKRX JEUG8jahFO+rI5LgKLWWKQsx6mbSQiXNjSGPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUGDjU2NwO6NlcdXbEEll8gK3pyPYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0dEalUyTndPNk5sY2RYYkVFbGw4Z0szcHlQWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQBTDAwDQYJKoZIhvcNAQELBQADggEBAHcPzOQ4OfZ7hd6D3Iw+GMcTFApc WLdkE78G+KGsKQKDiVL/Dog+/Ug1O5iVUPpqgzeB3Kazzp/kAXQsKvcA+8y85dms yroLu0uL8CjxSm8O7wpqsNUBGtRn5Xsv7hey2z4JjG/iioQM+jSPP4urLqSx2SlU 9ObEFTNd/ihsR2oUTsC+hvOjx/gVcQ0xSUYWMLeTUqijsITyZIaYhbyi3Kl/TsSG AHnl/MYAkuVBCc83TI20dXeBJ27pRWnTkizBoqPWBFNiNxYhnngk3Q/hOZngTXW7 MRlWazB3bGUdU6R/xcj2bAWC+xKPUEYqn+5zxzmR+HOHHuIdcJuqFr/Go2Y= -----END CERTIFICATE-----Generated at Fri Nov 22 15:23:59 2024 by rpki-client on console-fra.rpki-client.org