$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/MTDYfA11VjHvGnd80qTCVbnCtFc.roa File: MTDYfA11VjHvGnd80qTCVbnCtFc.roa (raw, json) Hash identifier: 2SUIyr9kbgtyYDr1lm4CMZGNrHiamnxvQTbSjMH8dis= Subject key identifier: 31:30:D8:7C:0D:75:56:31:EF:1A:77:7C:D2:A4:C2:55:B9:C2:B4:57 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 08BE Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/MTDYfA11VjHvGnd80qTCVbnCtFc.roa Signing time: Tue 30 Apr 2024 02:24:32 +0000 ROA not before: Tue 30 Apr 2024 02:24:32 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 219.114.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2238 (0x8be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:24:32 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=3130D87C0D755631EF1A777CD2A4C255B9C2B457 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:99:28:bd:6b:83:ca:d3:29:62:6c:da:9d:bf: 88:23:07:38:c5:f6:83:e9:af:d8:6d:22:47:d3:77: 71:84:90:df:ec:c9:a4:57:a1:66:df:75:af:97:52: 3e:e5:55:7e:54:b7:9b:cb:2c:6c:59:c3:c7:de:99: 39:7d:fe:58:82:9b:62:0e:f1:ba:63:df:45:00:85: 47:3d:4b:a3:fb:14:b8:30:7f:5b:f5:db:61:1f:cf: 87:a4:1f:bf:9b:12:f5:7c:b8:96:ec:34:22:e3:ee: 87:c6:5b:5b:75:c0:f2:8d:1c:f1:30:f0:a8:52:54: bb:5f:67:99:cb:da:b5:57:b4:d1:04:e7:77:0a:a5: 61:ff:07:18:d2:ea:0b:10:4b:ca:b8:7d:e9:9c:cb: 33:be:24:af:99:f5:d6:93:7b:55:9c:e6:e3:a6:ae: 12:54:f4:0a:ee:1d:c3:fb:10:99:78:cf:e8:63:9a: ef:bd:27:b2:7b:65:ad:aa:fa:7b:53:76:04:21:ce: f2:f4:14:50:63:69:3e:9d:10:b5:21:d9:0d:b2:a3: a2:ea:75:a0:36:94:73:77:8f:9d:ba:08:83:65:70: d0:0a:73:aa:2c:13:38:ee:ce:b6:e6:bc:3f:4d:6f: 8b:c5:a3:b8:1d:ea:07:ad:13:0b:d7:c1:0a:cb:aa: 49:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:30:D8:7C:0D:75:56:31:EF:1A:77:7C:D2:A4:C2:55:B9:C2:B4:57 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/MTDYfA11VjHvGnd80qTCVbnCtFc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.114.188.0/22 Signature Algorithm: sha256WithRSAEncryption c1:d1:9b:78:f4:6a:c0:2c:c2:5e:9f:d3:62:1a:c8:04:f9:94: 2b:97:73:f1:95:0a:4b:38:8f:8b:1f:73:a7:03:9d:d9:d0:e4: e3:d4:56:66:53:ca:c6:1a:83:b8:bd:af:59:ab:d1:68:42:55: 9d:78:0e:9c:96:4c:c7:1f:5f:b1:de:8b:a8:ca:88:52:de:cf: 64:35:45:c9:5e:e2:f7:d4:58:41:e6:13:a0:1c:5b:a8:7c:ef: b0:70:95:a4:e6:c7:54:54:f8:8f:68:d0:a2:09:5f:d3:0f:f9: fe:ee:ab:03:0c:8e:d0:51:88:22:f3:76:96:60:a4:83:d0:aa: 9c:8d:ac:3d:b7:ce:e0:df:2a:de:d9:f9:ad:61:a3:6a:e1:36: b1:49:73:72:f7:a9:fc:e2:80:0f:07:6e:5e:ef:fd:39:e1:07: ec:39:02:4f:66:34:30:b2:f7:ac:04:62:be:19:03:6b:9c:35: 9d:ba:90:8e:25:ab:f8:34:08:20:14:88:63:a9:a3:61:6d:10: 1a:fa:99:47:0c:2c:8b:21:11:ef:f1:bf:3b:7e:19:99:c3:92: c9:e2:0e:ae:cc:c0:2b:2a:4c:cb:43:5e:5b:99:0e:e6:e0:44: f3:96:7d:41:3d:92:54:d6:59:29:58:8a:b2:ad:72:de:6c:d0: 39:f2:4e:0c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCL4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjI0MzJaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDMxMzBEODdDMEQ3NTU2 MzFFRjFBNzc3Q0QyQTRDMjU1QjlDMkI0NTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9mSi9a4PK0ylibNqdv4gjBzjF9oPpr9htIkfTd3GEkN/syaRX oWbfda+XUj7lVX5Ut5vLLGxZw8femTl9/liCm2IO8bpj30UAhUc9S6P7FLgwf1v1 22Efz4ekH7+bEvV8uJbsNCLj7ofGW1t1wPKNHPEw8KhSVLtfZ5nL2rVXtNEE53cK pWH/BxjS6gsQS8q4femcyzO+JK+Z9daTe1Wc5uOmrhJU9AruHcP7EJl4z+hjmu+9 J7J7Za2q+ntTdgQhzvL0FFBjaT6dELUh2Q2yo6LqdaA2lHN3j526CINlcNAKc6os EzjuzrbmvD9Nb4vFo7gd6getEwvXwQrLqkmNAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUMTDYfA11VjHvGnd80qTCVbnCtFcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L01URFlmQTExVmpIdkduZDgwcVRDVmJuQ3RGYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALbcrwwDQYJKoZIhvcNAQELBQADggEBAMHRm3j0asAswl6f02IayAT5lCuX c/GVCks4j4sfc6cDndnQ5OPUVmZTysYag7i9r1mr0WhCVZ14DpyWTMcfX7Hei6jK iFLez2Q1Rcle4vfUWEHmE6AcW6h877BwlaTmx1RU+I9o0KIJX9MP+f7uqwMMjtBR iCLzdpZgpIPQqpyNrD23zuDfKt7Z+a1ho2rhNrFJc3L3qfzigA8Hbl7v/TnhB+w5 Ak9mNDCy96wEYr4ZA2ucNZ26kI4lq/g0CCAUiGOpo2FtEBr6mUcMLIshEe/xvzt+ GZnDksniDq7MwCsqTMtDXluZDubgRPOWfUE9klTWWSlYirKtct5s0DnyTgw= -----END CERTIFICATE-----Generated at Mon Nov 25 23:59:10 2024 by rpki-client on console-fra.rpki-client.org