$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Kh4D8GTSE9Z6dxO63rKPZIlSsKs.roa File: Kh4D8GTSE9Z6dxO63rKPZIlSsKs.roa (raw, json) Hash identifier: OnOu1M8r9Oask2HCeNEowzG8V8oGBkLepzr/OwKfKxA= Subject key identifier: 2A:1E:03:F0:64:D2:13:D6:7A:77:13:BA:DE:B2:8F:64:89:52:B0:AB Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 07DE Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Kh4D8GTSE9Z6dxO63rKPZIlSsKs.roa Signing time: Tue 30 Apr 2024 02:10:28 +0000 ROA not before: Tue 30 Apr 2024 02:10:28 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.78.4.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2014 (0x7de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:10:28 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=2A1E03F064D213D67A7713BADEB28F648952B0AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6b:cc:5c:9f:78:7f:58:b7:0e:dc:fe:99:d9: 49:5e:26:c5:1e:7a:aa:f8:38:ff:33:56:93:cd:3a: 83:34:cd:f4:e8:1c:40:e9:7e:1b:a4:8b:85:92:9c: 49:00:37:5c:34:27:9b:f5:1d:c9:65:23:f0:0c:49: 53:b9:35:bd:ff:a2:e2:bf:00:ba:4f:98:e0:c3:90: ad:14:ca:5d:5f:c0:13:c5:c9:39:2e:15:dc:5c:c5: c8:08:ed:31:6a:b6:ca:4e:0f:66:92:cd:ae:7d:f9: 86:10:4d:89:b3:d2:63:7b:d1:fc:7c:e4:37:0a:a2: 43:e0:60:ff:ad:0c:ea:90:c4:c2:bb:51:e7:50:35: 7b:07:01:14:48:2e:6b:2c:c0:29:f0:4f:de:4a:39: 74:43:9a:1e:a1:2a:39:7c:57:07:6d:d9:58:3c:37: f7:50:01:a6:23:2d:c5:34:11:ff:02:14:37:4a:c6: 1b:dd:af:f2:46:0a:f7:64:08:e2:57:b6:ed:10:2c: 9d:76:7f:b2:f7:41:67:8a:6e:6f:be:39:e3:7b:39: 04:6d:18:a1:58:5e:26:97:9d:40:1b:b9:6b:38:62: fd:53:ba:2f:9d:08:1e:20:95:4f:83:40:61:af:54: 37:28:b1:b8:51:09:ae:f8:8d:64:bd:89:e0:41:43: 2e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:1E:03:F0:64:D2:13:D6:7A:77:13:BA:DE:B2:8F:64:89:52:B0:AB X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Kh4D8GTSE9Z6dxO63rKPZIlSsKs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.78.4.0/23 Signature Algorithm: sha256WithRSAEncryption c9:b7:a7:ff:6b:32:3e:4a:8a:93:2f:c2:60:4d:b2:d5:9f:be: c2:8f:43:0e:dd:df:53:f6:20:cb:b2:7a:a8:b7:88:28:5d:88: 6b:14:52:fc:a7:3a:0a:f2:89:ca:e5:1d:d5:c2:12:90:9e:79: 23:03:9c:42:e3:8a:8e:31:35:02:b7:a2:d1:ab:fb:38:28:bb: 52:ea:f2:9d:a1:f7:ac:c8:02:25:ee:71:4c:e6:ee:ad:8c:90: 7b:52:06:da:e5:18:38:86:ea:e7:08:05:f8:cf:2e:22:50:b1: f7:e3:ad:24:32:02:65:22:d8:88:21:96:73:dc:18:e0:e7:da: 8f:d8:cb:c5:0e:71:ef:2f:b9:fa:0f:b1:f5:84:2b:ff:17:a5: 8d:59:60:08:97:0e:0d:d7:f7:0f:65:57:0e:2b:74:e7:a1:00: e7:58:7d:f9:3b:0d:53:7e:f3:89:91:e0:a0:97:f0:68:ee:3d: 29:64:0a:27:a9:e1:dc:7b:f8:dc:f8:1d:84:0c:47:24:f4:b9: f0:d1:5f:55:a3:b9:1d:17:cd:52:4c:6f:b3:2f:b3:4b:4b:fe: ed:94:24:d5:fb:be:9b:94:ce:e1:d1:94:b4:6c:71:6e:1f:3f: 8f:90:0b:55:cf:a0:d2:1e:c6:1f:bb:66:d8:35:a0:fb:7e:86: d6:4d:69:a3 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB94wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjEwMjhaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDJBMUUwM0YwNjREMjEz RDY3QTc3MTNCQURFQjI4RjY0ODk1MkIwQUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCya8xcn3h/WLcO3P6Z2UleJsUeeqr4OP8zVpPNOoM0zfToHEDp fhuki4WSnEkAN1w0J5v1HcllI/AMSVO5Nb3/ouK/ALpPmODDkK0Uyl1fwBPFyTku FdxcxcgI7TFqtspOD2aSza59+YYQTYmz0mN70fx85DcKokPgYP+tDOqQxMK7UedQ NXsHARRILmsswCnwT95KOXRDmh6hKjl8Vwdt2Vg8N/dQAaYjLcU0Ef8CFDdKxhvd r/JGCvdkCOJXtu0QLJ12f7L3QWeKbm++OeN7OQRtGKFYXiaXnUAbuWs4Yv1Tui+d CB4glU+DQGGvVDcosbhRCa74jWS9ieBBQy4pAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUKh4D8GTSE9Z6dxO63rKPZIlSsKswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0toNEQ4R1RTRTlaNmR4TzYzcktQWklsU3NLcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBTgQwDQYJKoZIhvcNAQELBQADggEBAMm3p/9rMj5KipMvwmBNstWfvsKP Qw7d31P2IMuyeqi3iChdiGsUUvynOgryicrlHdXCEpCeeSMDnELjio4xNQK3otGr +zgou1Lq8p2h96zIAiXucUzm7q2MkHtSBtrlGDiG6ucIBfjPLiJQsffjrSQyAmUi 2IghlnPcGODn2o/Yy8UOce8vufoPsfWEK/8XpY1ZYAiXDg3X9w9lVw4rdOehAOdY ffk7DVN+84mR4KCX8GjuPSlkCiep4dx7+Nz4HYQMRyT0ufDRX1WjuR0XzVJMb7Mv s0tL/u2UJNX7vpuUzuHRlLRscW4fP4+QC1XPoNIexh+7Ztg1oPt+htZNaaM= -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:41 2024 by rpki-client on console-ams.rpki-client.org