$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/JG5YWWNgHqMXt7UC0zgrCATgalA.roa File: JG5YWWNgHqMXt7UC0zgrCATgalA.roa (raw, json) Hash identifier: YR4YyFjgF76VLU/mrZcvrNOvFtMro3UBt0LsCw7/5pA= Subject key identifier: 24:6E:58:59:63:60:1E:A3:17:B7:B5:02:D3:38:2B:08:04:E0:6A:50 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A22 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/JG5YWWNgHqMXt7UC0zgrCATgalA.roa Signing time: Sun 30 Jun 2024 01:46:26 +0000 ROA not before: Sun 30 Jun 2024 01:46:26 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.79.168.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2594 (0xa22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:46:26 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=246E585963601EA317B7B502D3382B0804E06A50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d7:85:b3:27:92:9f:05:81:93:73:72:24:2d: c0:9f:1a:e2:95:6c:48:90:cd:07:09:e0:31:39:92: 1a:40:b7:65:39:a7:40:25:5e:89:6a:68:7d:2b:eb: 4a:79:e0:ad:2f:07:b5:9c:0f:93:3d:a7:d7:aa:fe: db:4d:ee:d3:38:7d:ad:51:51:9e:f8:8d:ce:44:6b: 64:63:e3:34:f4:10:e8:29:d2:ed:25:99:64:ea:e1: b6:97:f1:f7:f8:37:d1:45:c4:59:13:bd:66:d3:e5: 7c:77:56:7a:12:e3:67:20:9d:27:f1:d8:d8:35:a1: 84:c0:40:e8:0a:4a:9e:db:75:23:3e:b6:15:65:7d: 20:21:20:ee:f9:12:60:f8:8a:d9:3b:bd:f6:0d:7a: 7f:a9:51:57:cf:31:70:45:0e:74:34:65:77:e6:8a: fc:3c:13:10:12:90:19:11:20:26:1e:9f:cc:8a:1c: be:82:c6:a6:2f:89:71:cd:fa:cf:38:a6:5e:b7:37: 6f:57:23:47:84:05:b5:77:b5:08:35:3f:3f:be:12: d9:10:be:2d:67:01:b7:dd:0c:e0:6d:09:ca:93:eb: 9a:b9:e6:e7:64:7a:75:e3:c7:3e:02:12:bd:2e:f7: 0d:5b:f2:b5:b1:5a:ef:37:71:13:f0:29:c7:42:7f: f7:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:6E:58:59:63:60:1E:A3:17:B7:B5:02:D3:38:2B:08:04:E0:6A:50 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/JG5YWWNgHqMXt7UC0zgrCATgalA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.168.0/23 Signature Algorithm: sha256WithRSAEncryption 25:6d:46:11:bf:e5:b7:1f:cb:45:c7:11:21:f4:c0:bd:46:f7: e9:df:ca:fc:af:54:87:70:96:7e:40:fe:0b:c8:24:23:a5:04: cf:3e:f9:75:e7:82:68:ce:46:1c:a8:dd:78:be:90:b7:93:a8: 34:1f:00:f0:95:0f:e0:88:38:41:15:36:a1:05:1b:1c:7a:e3: 9a:c0:ff:97:0e:b0:37:4d:27:84:72:0e:67:ea:b6:67:04:f4: 48:17:42:15:62:05:c3:2e:6b:e3:7b:20:1e:09:18:00:37:ec: 2c:89:97:29:00:dd:66:f2:d4:a3:8d:04:b6:4c:c6:04:16:6a: 33:ab:43:0d:34:44:e3:f0:9a:de:b7:bf:89:ca:09:4e:50:eb: 17:f1:f1:90:7c:db:8d:2d:7c:48:03:d6:1d:25:83:f3:8f:f9: 1e:81:1b:c7:08:cd:16:68:3e:97:e4:40:60:eb:fc:cd:b7:66: 78:a6:63:4e:b5:11:95:05:47:94:8c:16:58:34:cc:c7:dc:f5: b0:54:e6:42:86:8d:60:a0:f9:52:0b:b7:f5:47:79:f9:d4:ac: 1a:fc:98:58:5b:c4:ad:df:0c:c8:33:d9:1a:48:8f:cf:86:c5: 55:3c:e0:ce:4d:28:77:db:08:8b:9c:02:84:bd:31:45:ea:6e: 52:18:d8:e5 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCiIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQ2MjZaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDI0NkU1ODU5NjM2MDFF QTMxN0I3QjUwMkQzMzgyQjA4MDRFMDZBNTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDD14WzJ5KfBYGTc3IkLcCfGuKVbEiQzQcJ4DE5khpAt2U5p0Al XolqaH0r60p54K0vB7WcD5M9p9eq/ttN7tM4fa1RUZ74jc5Ea2Rj4zT0EOgp0u0l mWTq4baX8ff4N9FFxFkTvWbT5Xx3VnoS42cgnSfx2Ng1oYTAQOgKSp7bdSM+thVl fSAhIO75EmD4itk7vfYNen+pUVfPMXBFDnQ0ZXfmivw8ExASkBkRICYen8yKHL6C xqYviXHN+s84pl63N29XI0eEBbV3tQg1Pz++EtkQvi1nAbfdDOBtCcqT65q55udk enXjxz4CEr0u9w1b8rWxWu83cRPwKcdCf/cjAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUJG5YWWNgHqMXt7UC0zgrCATgalAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0pHNVlXV05nSHFNWHQ3VUMwemdyQ0FUZ2FsQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBT6gwDQYJKoZIhvcNAQELBQADggEBACVtRhG/5bcfy0XHESH0wL1G9+nf yvyvVIdwln5A/gvIJCOlBM8++XXngmjORhyo3Xi+kLeTqDQfAPCVD+CIOEEVNqEF Gxx645rA/5cOsDdNJ4RyDmfqtmcE9EgXQhViBcMua+N7IB4JGAA37CyJlykA3Wby 1KONBLZMxgQWajOrQw00ROPwmt63v4nKCU5Q6xfx8ZB8240tfEgD1h0lg/OP+R6B G8cIzRZoPpfkQGDr/M23ZnimY061EZUFR5SMFlg0zMfc9bBU5kKGjWCg+VILt/VH efnUrBr8mFhbxK3fDMgz2RpIj8+GxVU84M5NKHfbCIucAoS9MUXqblIY2OU= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:00 2024 by rpki-client on console-fra.rpki-client.org