$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/GsYf7RpoDU9geSRR4pHqlQfn7Es.roa File: GsYf7RpoDU9geSRR4pHqlQfn7Es.roa (raw, json) Hash identifier: dbA8+J2EPkRVlsB9Pxzcbn3rFuVxGvUcKRPS2eu0xHw= Subject key identifier: 1A:C6:1F:ED:1A:68:0D:4F:60:79:24:51:E2:91:EA:95:07:E7:EC:4B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 07B4 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/GsYf7RpoDU9geSRR4pHqlQfn7Es.roa Signing time: Tue 30 Apr 2024 02:06:38 +0000 ROA not before: Tue 30 Apr 2024 02:06:38 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 110.161.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1972 (0x7b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:06:38 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=1AC61FED1A680D4F60792451E291EA9507E7EC4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d3:16:13:de:c0:4a:1e:38:0a:ce:48:41:c5: 51:a5:6a:80:86:ac:af:ed:c1:12:27:71:52:97:2b: 89:8a:f8:14:14:6d:c7:65:7e:85:ab:aa:ea:b3:d0: c2:f6:60:61:94:5b:b6:03:1d:bd:08:fe:6f:5d:85: 22:f3:4f:70:10:e2:4b:84:d4:ca:66:e2:ca:53:66: e5:1d:63:3e:75:fd:e7:6c:98:4a:74:ea:26:1d:82: 07:51:5b:45:5c:c9:c2:bf:c7:cc:3a:97:f5:b8:2a: 62:15:59:7e:99:2c:a7:b1:39:d7:95:56:d6:b5:dc: fe:a9:78:2a:9a:b1:95:82:78:dd:47:6d:31:55:92: 0f:41:53:11:aa:39:74:be:ac:c5:f2:93:04:ac:01: 0b:db:a4:91:7d:26:b0:be:36:6d:d2:1a:cc:b6:25: 92:9c:83:32:e2:ab:7f:33:ae:da:67:bf:2c:e2:f2: 47:ab:de:f0:69:4c:79:e2:6c:ed:b9:65:93:02:15: ee:96:79:45:5c:04:8a:12:a8:3c:9f:2a:0f:45:54: 7c:99:d4:53:73:65:40:ea:bb:b5:16:66:f2:6f:06: e2:dc:40:e8:34:db:21:c1:04:a5:fc:fc:b9:d7:6b: 7f:d1:bb:b0:38:79:78:63:b6:04:23:ae:f5:88:ce: 68:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:C6:1F:ED:1A:68:0D:4F:60:79:24:51:E2:91:EA:95:07:E7:EC:4B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/GsYf7RpoDU9geSRR4pHqlQfn7Es.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.161.208.0/20 Signature Algorithm: sha256WithRSAEncryption b5:e1:07:77:8d:03:e1:52:85:e7:d7:8c:ca:a6:de:6b:49:a7: 58:be:45:41:5f:ed:a5:d3:ae:76:1d:7f:14:10:a7:dd:c4:d8: 4e:64:6a:2a:25:6b:dd:99:62:64:c5:09:68:5f:fc:6e:bb:7d: 0a:f3:a6:94:56:70:8c:7b:67:04:94:3b:bf:f2:c4:0f:c0:72: 4a:ed:06:c7:53:86:c3:81:9c:35:0c:53:20:19:01:3b:5b:dd: 75:c8:b9:2e:f9:8c:1e:40:90:47:56:6d:4e:ae:f4:12:de:12: 09:3c:cc:5e:b1:94:14:9e:a3:92:2c:42:33:38:08:9f:5a:a3: 0f:d3:c7:b4:e4:ae:70:d2:c0:89:74:82:57:ff:81:6f:2e:80: 43:e9:54:58:b1:c8:ff:1a:f5:18:3e:b4:71:d2:01:24:a1:6d: 94:18:e1:27:6a:0c:b0:21:34:85:50:ee:25:b0:81:f8:e9:33: 64:b3:c0:93:de:f8:8f:8d:b6:40:83:5a:27:d4:f1:82:25:af: 31:56:51:ac:c7:74:73:31:70:6d:31:35:8a:e8:f3:f3:11:d3: 10:0e:85:1a:ad:2e:0b:8c:a0:ab:48:f8:18:f9:ac:6d:fd:f0: df:82:14:30:79:10:62:be:40:bf:38:0b:f3:be:bc:a4:a0:1e: 8e:54:62:09 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB7QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjA2MzhaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDFBQzYxRkVEMUE2ODBE NEY2MDc5MjQ1MUUyOTFFQTk1MDdFN0VDNEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDP0xYT3sBKHjgKzkhBxVGlaoCGrK/twRIncVKXK4mK+BQUbcdl foWrquqz0ML2YGGUW7YDHb0I/m9dhSLzT3AQ4kuE1Mpm4spTZuUdYz51/edsmEp0 6iYdggdRW0VcycK/x8w6l/W4KmIVWX6ZLKexOdeVVta13P6peCqasZWCeN1HbTFV kg9BUxGqOXS+rMXykwSsAQvbpJF9JrC+Nm3SGsy2JZKcgzLiq38zrtpnvyzi8ker 3vBpTHnibO25ZZMCFe6WeUVcBIoSqDyfKg9FVHyZ1FNzZUDqu7UWZvJvBuLcQOg0 2yHBBKX8/LnXa3/Ru7A4eXhjtgQjrvWIzmh9AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUGsYf7RpoDU9geSRR4pHqlQfn7EswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0dzWWY3UnBvRFU5Z2VTUlI0cEhxbFFmbjdFcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARuodAwDQYJKoZIhvcNAQELBQADggEBALXhB3eNA+FShefXjMqm3mtJp1i+ RUFf7aXTrnYdfxQQp93E2E5kaiola92ZYmTFCWhf/G67fQrzppRWcIx7ZwSUO7/y xA/AckrtBsdThsOBnDUMUyAZATtb3XXIuS75jB5AkEdWbU6u9BLeEgk8zF6xlBSe o5IsQjM4CJ9aow/Tx7TkrnDSwIl0glf/gW8ugEPpVFixyP8a9Rg+tHHSASShbZQY 4SdqDLAhNIVQ7iWwgfjpM2SzwJPe+I+NtkCDWifU8YIlrzFWUazHdHMxcG0xNYro 8/MR0xAOhRqtLguMoKtI+Bj5rG398N+CFDB5EGK+QL84C/O+vKSgHo5UYgk= -----END CERTIFICATE-----Generated at Fri Nov 22 15:23:59 2024 by rpki-client on console-fra.rpki-client.org