$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/GgMHAT1C8Gy-DUpNMevdaJPT70w.roa File: GgMHAT1C8Gy-DUpNMevdaJPT70w.roa (raw, json) Hash identifier: snuztIcugOhDXaSLY30hnkIT93b/n1lTM2MHtQsL4+M= Subject key identifier: 1A:03:07:01:3D:42:F0:6C:BE:0D:4A:4D:31:EB:DD:68:93:D3:EF:4C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A3F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/GgMHAT1C8Gy-DUpNMevdaJPT70w.roa Signing time: Sun 30 Jun 2024 01:48:21 +0000 ROA not before: Sun 30 Jun 2024 01:48:21 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 220.159.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2623 (0xa3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:48:21 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=1A0307013D42F06CBE0D4A4D31EBDD6893D3EF4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:cb:df:a3:bc:a7:cf:e7:39:aa:0d:3a:b0:40: a2:2d:c2:3d:f0:77:53:d6:53:63:39:11:f9:75:d6: fc:c7:e8:bc:5f:d2:82:77:c9:e2:11:f4:ac:d0:41: b1:24:62:18:30:49:7c:9b:d6:d5:c6:a5:de:48:c6: 44:27:ab:76:bb:da:1a:06:0c:56:66:77:f1:a6:df: d5:77:80:ee:6b:e2:16:8f:79:1e:3f:74:7f:99:db: fb:8a:93:39:48:03:e6:5c:e3:d2:04:96:2b:4c:c6: aa:11:99:ac:d7:34:63:79:ad:31:88:89:23:3c:90: 20:ea:79:fc:d6:f4:d9:bc:74:5c:df:cf:ae:49:a0: 5d:23:bf:50:11:3d:38:05:a4:14:18:5f:e0:4a:c8: 2b:b1:1e:73:fa:69:07:a1:e9:98:be:33:04:28:66: db:01:ac:f3:ff:9c:e9:e8:a1:00:a7:79:3b:2b:4f: 83:20:6f:e6:bf:ef:19:a0:9e:cd:49:d3:85:9d:0b: 55:02:ed:e3:9a:3e:8e:24:9b:73:f7:da:a0:c5:54: 96:ca:e4:b3:00:ea:f4:90:e1:81:6c:7e:10:02:88: 7d:0e:fb:c1:1e:7d:75:43:52:2e:f5:a9:ed:10:65: 05:b9:66:4c:cf:e3:f9:11:bf:f1:d2:72:b3:ae:8e: 01:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:03:07:01:3D:42:F0:6C:BE:0D:4A:4D:31:EB:DD:68:93:D3:EF:4C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/GgMHAT1C8Gy-DUpNMevdaJPT70w.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.40.0/21 Signature Algorithm: sha256WithRSAEncryption 1e:c3:fa:ee:37:fd:bc:5a:f7:a7:43:bd:b5:ab:14:13:07:b8: 1a:e3:fb:da:e0:2e:17:28:d0:b5:74:68:b1:99:46:74:e6:27: 73:2b:87:6c:18:70:6d:02:c6:49:9f:bc:ce:c2:ea:12:e3:4c: 72:40:a8:42:7f:25:08:99:30:71:a6:04:2a:cd:ac:1a:93:51: 41:ff:a1:aa:4a:75:c2:c1:25:c7:bc:f8:9c:bf:0c:d9:cf:3c: bd:85:f6:d3:27:e5:e2:75:e1:0d:c9:8b:6d:e3:08:76:ca:f4: 0e:b9:1f:5e:b6:6e:54:cd:b7:df:19:ca:fd:15:04:7d:6d:17: c2:33:fe:fb:ea:fa:fb:b6:5e:68:2e:0d:ad:9f:aa:50:15:3e: ed:50:9f:b7:78:4e:e8:ad:77:91:23:57:37:c0:16:82:64:1c: d1:f7:dd:41:af:15:56:68:b0:a8:54:bb:4d:15:52:0f:32:aa: 46:f7:e7:86:1a:f8:95:2f:05:4c:6b:09:81:5f:34:04:8c:1c: 86:e8:01:d3:4b:6c:8c:fb:d0:c5:82:a5:bb:f9:a5:39:ca:79: e7:10:7a:22:b0:d9:fa:7d:c3:22:d1:b7:af:f9:4a:6d:28:9e: 90:22:c1:a0:c6:61:c1:cc:25:16:13:b0:50:46:6e:c4:4b:76: be:c3:7c:90 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCj8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQ4MjFaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDFBMDMwNzAxM0Q0MkYw NkNCRTBENEE0RDMxRUJERDY4OTNEM0VGNEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDey9+jvKfP5zmqDTqwQKItwj3wd1PWU2M5Efl11vzH6Lxf0oJ3 yeIR9KzQQbEkYhgwSXyb1tXGpd5IxkQnq3a72hoGDFZmd/Gm39V3gO5r4haPeR4/ dH+Z2/uKkzlIA+Zc49IElitMxqoRmazXNGN5rTGIiSM8kCDqefzW9Nm8dFzfz65J oF0jv1ARPTgFpBQYX+BKyCuxHnP6aQeh6Zi+MwQoZtsBrPP/nOnooQCneTsrT4Mg b+a/7xmgns1J04WdC1UC7eOaPo4km3P32qDFVJbK5LMA6vSQ4YFsfhACiH0O+8Ee fXVDUi71qe0QZQW5ZkzP4/kRv/HScrOujgErAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUGgMHAT1C8Gy+DUpNMevdaJPT70wwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0dnTUhBVDFDOEd5LURVcE5NZXZkYUpQVDcwdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPcnygwDQYJKoZIhvcNAQELBQADggEBAB7D+u43/bxa96dDvbWrFBMHuBrj +9rgLhco0LV0aLGZRnTmJ3Mrh2wYcG0CxkmfvM7C6hLjTHJAqEJ/JQiZMHGmBCrN rBqTUUH/oapKdcLBJce8+Jy/DNnPPL2F9tMn5eJ14Q3Ji23jCHbK9A65H162blTN t98Zyv0VBH1tF8Iz/vvq+vu2XmguDa2fqlAVPu1Qn7d4Tuitd5EjVzfAFoJkHNH3 3UGvFVZosKhUu00VUg8yqkb354Ya+JUvBUxrCYFfNASMHIboAdNLbIz70MWCpbv5 pTnKeecQeiKw2fp9wyLRt6/5Sm0onpAiwaDGYcHMJRYTsFBGbsRLdr7DfJA= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:39 2024 by rpki-client on console-ams.rpki-client.org