$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/MdR5ONaaeQEr9tBc6gPhHj6aNJ0.roa File: MdR5ONaaeQEr9tBc6gPhHj6aNJ0.roa (raw, json) Hash identifier: pQLD7EhoEaAPsWKQiZu09fg+DMM33HnOyidt/GsqI1Q= Subject key identifier: 31:D4:79:38:D6:9A:79:01:2B:F6:D0:5C:EA:03:E1:1E:3E:9A:34:9D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A7F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/MdR5ONaaeQEr9tBc6gPhHj6aNJ0.roa Signing time: Sun 30 Jun 2024 01:52:32 +0000 ROA not before: Sun 30 Jun 2024 01:52:32 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.66.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2687 (0xa7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:52:32 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=31D47938D69A79012BF6D05CEA03E11E3E9A349D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:da:ff:b6:f9:68:fe:6e:5b:5e:05:9e:b9:21: 21:5a:6c:ce:e3:ad:1a:95:f5:d6:f6:83:ee:f4:d6: f0:3a:51:77:7d:51:a3:39:3c:fe:68:94:ef:65:67: c2:4a:c1:04:91:1a:6b:34:cd:7e:ad:75:02:35:ae: be:47:fb:7e:8d:89:1b:1b:53:1b:01:e1:e5:0a:7a: 8e:11:3c:30:36:7f:80:2c:13:11:84:1c:38:ff:f7: b0:22:6d:0b:95:97:f8:fd:a5:62:07:0c:e4:ea:dc: d5:55:a0:56:ff:d1:59:07:f0:71:7c:73:f1:3e:7f: 20:23:df:d7:20:09:9e:18:c0:3f:4d:47:e0:d7:d0: 4c:f3:fe:73:58:9a:42:9f:93:a4:dc:6e:af:80:b8: 53:cd:5b:ed:dc:e8:01:1d:97:7c:d3:25:f6:9f:9a: d8:39:ef:55:48:c4:bf:e9:92:00:cd:04:3b:fa:6a: 4d:4f:1d:07:31:a0:68:3b:60:4d:9e:52:60:ea:41: 98:ff:d7:e4:f2:20:c2:6d:37:6e:a0:de:74:d9:4f: 95:db:97:3b:82:52:7f:3b:66:1a:67:88:e2:bb:25: 02:25:1c:c7:ca:d3:23:f5:a4:bc:7b:ed:1f:cd:77: 1e:97:3b:1a:8a:2f:27:d0:a7:dc:43:c6:14:57:32: 5f:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:D4:79:38:D6:9A:79:01:2B:F6:D0:5C:EA:03:E1:1E:3E:9A:34:9D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/MdR5ONaaeQEr9tBc6gPhHj6aNJ0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.66.128.0/18 Signature Algorithm: sha256WithRSAEncryption 11:ab:3a:e6:46:6a:c2:59:7d:c0:31:ad:12:b0:1e:45:96:2a: 11:49:28:87:8e:63:87:f7:26:c5:db:4f:50:bc:2b:20:31:bb: 0f:3e:fa:ce:83:c7:e5:11:4f:4d:66:27:35:4b:f1:cd:23:d3: 87:ed:d7:63:5c:d2:0e:99:6c:a7:3e:f0:6a:4f:c9:1e:b9:91: b9:8e:e3:d5:f9:76:55:75:ba:88:87:64:f0:72:08:db:f6:bc: fb:42:46:5b:fa:17:7e:26:e7:eb:54:2a:2b:46:a8:31:6b:84: 11:2b:e1:2c:65:77:63:9f:72:bc:82:03:87:3b:1d:10:fc:12: d0:bf:7d:40:23:7f:b2:84:77:da:c5:f9:33:e0:73:8d:08:e2: 7e:7b:2e:ac:d8:3a:8b:0d:0f:b4:cb:56:7c:f1:f4:87:23:08: d4:73:54:b4:6c:f9:6b:be:98:e5:c7:4c:dd:e6:71:2d:e2:60: 6d:70:4e:7c:ac:22:fb:58:01:5d:ea:48:ae:38:c4:4e:cd:70: ea:64:57:07:8d:36:a4:62:28:d5:e7:d0:3c:95:ff:b0:5c:48: 03:f4:86:2c:e8:db:31:71:9d:92:3f:c1:ab:0d:3d:72:7c:97: 01:fa:d5:36:31:c5:3a:59:81:84:df:f7:1e:0d:3c:f4:0b:d5: 2b:f9:40:74 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCn8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTUyMzJaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDMxRDQ3OTM4RDY5QTc5 MDEyQkY2RDA1Q0VBMDNFMTFFM0U5QTM0OUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDi2v+2+Wj+blteBZ65ISFabM7jrRqV9db2g+701vA6UXd9UaM5 PP5olO9lZ8JKwQSRGms0zX6tdQI1rr5H+36NiRsbUxsB4eUKeo4RPDA2f4AsExGE HDj/97AibQuVl/j9pWIHDOTq3NVVoFb/0VkH8HF8c/E+fyAj39cgCZ4YwD9NR+DX 0Ezz/nNYmkKfk6Tcbq+AuFPNW+3c6AEdl3zTJfafmtg571VIxL/pkgDNBDv6ak1P HQcxoGg7YE2eUmDqQZj/1+TyIMJtN26g3nTZT5XblzuCUn87ZhpniOK7JQIlHMfK 0yP1pLx77R/Ndx6XOxqKLyfQp9xDxhRXMl9zAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUMdR5ONaaeQEr9tBc6gPhHj6aNJ0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L01kUjVPTmFhZVFFcjl0QmM2Z1BoSGo2YU5KMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYBQoAwDQYJKoZIhvcNAQELBQADggEBABGrOuZGasJZfcAxrRKwHkWWKhFJ KIeOY4f3JsXbT1C8KyAxuw8++s6Dx+URT01mJzVL8c0j04ft12Nc0g6ZbKc+8GpP yR65kbmO49X5dlV1uoiHZPByCNv2vPtCRlv6F34m5+tUKitGqDFrhBEr4Sxld2Of cryCA4c7HRD8EtC/fUAjf7KEd9rF+TPgc40I4n57LqzYOosND7TLVnzx9IcjCNRz VLRs+Wu+mOXHTN3mcS3iYG1wTnysIvtYAV3qSK44xE7NcOpkVweNNqRiKNXn0DyV /7BcSAP0hizo2zFxnZI/wasNPXJ8lwH61TYxxTpZgYTf9x4NPPQL1Sv5QHQ= -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:41 2024 by rpki-client on console-ams.rpki-client.org