$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/HPjLpYsGUd9vJWnCu7cP_gmSZM0.roa File: HPjLpYsGUd9vJWnCu7cP_gmSZM0.roa (raw, json) Hash identifier: qbFxP7DmK7Zz7G7zOgI+ghnUXmyIEad7DCb1lpQRHZk= Subject key identifier: 1C:F8:CB:A5:8B:06:51:DF:6F:25:69:C2:BB:B7:0F:FE:09:92:64:CD Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 06BF Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/HPjLpYsGUd9vJWnCu7cP_gmSZM0.roa Signing time: Tue 30 Apr 2024 01:46:54 +0000 ROA not before: Tue 30 Apr 2024 01:46:54 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 220.159.230.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1727 (0x6bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:46:54 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=1CF8CBA58B0651DF6F2569C2BBB70FFE099264CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:da:a6:7e:dd:ef:8f:84:ea:05:23:e2:6f:67: d4:85:dd:a7:46:6c:13:d0:10:39:59:a7:7d:b9:c4: a6:75:ab:54:58:51:8f:3a:74:5f:d7:4a:26:98:9c: 9a:0f:63:2c:f6:52:a2:e8:81:4b:af:a3:4a:c2:98: f3:23:c8:31:5e:3d:e4:e8:28:3e:6b:df:95:f4:3f: 4a:3f:90:87:d6:97:e0:05:69:97:3e:d2:3e:77:d5: 6a:ba:aa:3b:f9:18:5c:57:12:4d:60:c2:f8:77:bf: 3b:41:27:bc:7a:7c:7c:5e:68:71:e9:66:bb:9d:25: 7d:e3:0f:f3:f6:d3:da:61:b8:3a:0e:21:7e:14:a0: 0c:35:b0:e5:31:14:61:48:ef:1f:ac:65:da:ae:b5: dc:a0:dd:be:87:dd:ac:c0:9a:f3:21:56:29:df:a4: 20:f3:9e:53:e0:f3:57:ad:b9:3d:57:8e:f1:f1:9f: 8e:81:99:59:08:20:5d:4b:39:66:e6:2f:57:45:57: be:52:50:71:95:80:65:b9:2e:9f:0b:db:55:28:1f: 6a:34:5a:fc:45:ce:42:62:53:65:1c:9b:0f:24:ae: 60:f6:e2:86:f7:25:8b:4b:2c:00:0b:60:e0:6f:26: f8:5e:08:2b:bf:f0:8e:98:2c:fa:53:37:6c:63:45: 76:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:F8:CB:A5:8B:06:51:DF:6F:25:69:C2:BB:B7:0F:FE:09:92:64:CD X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/HPjLpYsGUd9vJWnCu7cP_gmSZM0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.230.0/23 Signature Algorithm: sha256WithRSAEncryption a3:d2:c9:ed:d0:a8:00:fb:19:42:9e:aa:59:ec:47:11:8c:71: e9:6b:c5:5c:13:c7:51:a1:ca:e9:ee:37:63:15:cf:cf:af:d3: 5f:73:e4:8d:2d:68:20:dc:80:cc:12:2f:00:e4:dc:1e:2a:90: a1:79:13:e7:7f:a9:14:89:c3:4f:1e:af:74:bf:67:f5:ef:d4: 17:d0:78:55:aa:46:cf:27:50:97:b7:b1:9e:c3:69:d1:1f:45: cb:99:8c:aa:ac:b0:9a:45:4b:cb:64:44:15:77:33:e3:43:61: d5:89:d4:29:af:c7:36:13:38:2f:7c:39:9b:51:59:0e:0c:05: 04:e1:10:46:8c:6a:ae:d2:a3:97:b9:14:a0:5f:bc:25:0e:4b: a7:9f:c9:ce:fe:7d:74:8f:33:f7:a4:e5:63:4f:a2:5e:c6:8f: 7b:b2:c7:e3:95:16:f0:fb:f7:b0:05:bd:0d:a2:7e:de:a5:83: 26:ea:05:fe:6b:57:3e:f1:24:8f:9e:1d:b9:21:88:5e:d0:07: 2d:d0:30:4c:ad:ac:f1:e7:d6:3b:79:6d:2e:17:13:82:e9:c3: 8d:a8:6a:b6:7f:42:52:9d:fe:8e:65:d6:57:3c:78:5b:0b:1a: e6:aa:e7:3f:76:94:55:fb:b1:fa:c3:87:a2:6e:c2:7d:48:5c: 89:f6:1a:44 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBr8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTQ2NTRaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDFDRjhDQkE1OEIwNjUx REY2RjI1NjlDMkJCQjcwRkZFMDk5MjY0Q0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCu2qZ+3e+PhOoFI+JvZ9SF3adGbBPQEDlZp325xKZ1q1RYUY86 dF/XSiaYnJoPYyz2UqLogUuvo0rCmPMjyDFePeToKD5r35X0P0o/kIfWl+AFaZc+ 0j531Wq6qjv5GFxXEk1gwvh3vztBJ7x6fHxeaHHpZrudJX3jD/P209phuDoOIX4U oAw1sOUxFGFI7x+sZdqutdyg3b6H3azAmvMhVinfpCDznlPg81etuT1XjvHxn46B mVkIIF1LOWbmL1dFV75SUHGVgGW5Lp8L21UoH2o0WvxFzkJiU2Ucmw8krmD24ob3 JYtLLAALYOBvJvheCCu/8I6YLPpTN2xjRXZNAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUHPjLpYsGUd9vJWnCu7cP/gmSZM0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0hQakxwWXNHVWQ5dkpXbkN1N2NQX2dtU1pNMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHcn+YwDQYJKoZIhvcNAQELBQADggEBAKPSye3QqAD7GUKeqlnsRxGMcelr xVwTx1GhyunuN2MVz8+v019z5I0taCDcgMwSLwDk3B4qkKF5E+d/qRSJw08er3S/ Z/Xv1BfQeFWqRs8nUJe3sZ7DadEfRcuZjKqssJpFS8tkRBV3M+NDYdWJ1CmvxzYT OC98OZtRWQ4MBQThEEaMaq7So5e5FKBfvCUOS6efyc7+fXSPM/ek5WNPol7Gj3uy x+OVFvD797AFvQ2ift6lgybqBf5rVz7xJI+eHbkhiF7QBy3QMEytrPHn1jt5bS4X E4Lpw42oarZ/QlKd/o5l1lc8eFsLGuaq5z92lFX7sfrDh6Juwn1IXIn2GkQ= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:39 2024 by rpki-client on console-ams.rpki-client.org