$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/N2cTSc53Ogh_H_2XvDcpOiqtBNI.roa File: N2cTSc53Ogh_H_2XvDcpOiqtBNI.roa (raw, json) Hash identifier: 6YmmTMDarfdLI1FV2g+2EmmTOCBOZbv0C+2xM5KySoE= Subject key identifier: 37:67:13:49:CE:77:3A:08:7F:1F:FD:97:BC:37:29:3A:2A:AD:04:D2 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A80 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/N2cTSc53Ogh_H_2XvDcpOiqtBNI.roa Signing time: Sun 30 Jun 2024 01:52:32 +0000 ROA not before: Sun 30 Jun 2024 01:52:32 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.72.14.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2688 (0xa80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:52:32 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=37671349CE773A087F1FFD97BC37293A2AAD04D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:9a:21:93:55:cd:21:15:76:ff:47:9b:84:4b: 15:0b:54:ee:17:6e:46:5d:7d:ff:df:61:f3:c5:25: cf:91:cd:61:9b:8f:85:73:85:f8:4a:15:ee:59:11: 53:8d:0f:d9:4e:97:12:0a:cd:52:23:ab:61:9b:6e: 5e:69:12:1c:8e:ad:bc:62:21:eb:e0:79:c0:53:71: ec:61:b3:71:4d:bc:6d:d4:f6:de:d2:0e:1d:e2:da: 46:2f:9a:75:77:97:8a:d0:57:0f:e8:2d:e8:7b:1b: 34:5e:f5:7e:ca:4b:3c:e1:12:75:65:e1:bd:00:8d: 2f:bd:27:4e:5b:8b:d0:76:15:71:5d:ee:07:66:d6: 4a:4d:bf:a0:0e:8e:e3:e4:3b:9f:5e:14:67:78:9c: cf:0b:c9:9f:ab:97:d3:52:90:18:59:7d:74:c1:2e: f6:93:75:7a:f5:27:89:25:7b:1f:68:36:d2:9f:13: 7d:8d:fa:b8:54:1d:d5:04:48:d8:2b:de:de:68:89: 27:9a:d9:c4:5f:46:9d:d5:8f:ba:67:03:77:a3:5a: 50:cf:8a:41:f2:e2:a0:5a:d7:47:7b:e2:74:23:8b: 5d:97:89:d6:24:77:0c:eb:a6:54:ad:65:f6:b4:08: 3c:d1:b8:48:45:5a:7c:38:8e:02:08:d3:9a:6c:f5: f0:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:67:13:49:CE:77:3A:08:7F:1F:FD:97:BC:37:29:3A:2A:AD:04:D2 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/N2cTSc53Ogh_H_2XvDcpOiqtBNI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.14.0/23 Signature Algorithm: sha256WithRSAEncryption 30:01:17:89:5e:18:54:f7:75:bb:a0:8f:97:05:a2:51:bb:ab: 01:62:ff:20:74:78:23:9a:ce:ac:8b:44:af:33:12:05:98:d3: 1b:f4:68:6f:dc:d4:c5:d3:fe:ca:0e:b9:81:b1:ad:39:7f:ec: 3f:5b:00:c7:c6:56:3f:85:0b:3a:30:bb:67:59:75:db:e2:72: 0f:06:bf:ac:d5:80:4a:1c:cc:45:11:72:63:83:cd:01:3a:80: b8:7a:7f:14:3d:3f:f5:ba:d6:f8:d2:2f:fa:52:43:94:4b:fa: cf:97:4b:ed:ac:a5:59:ff:1d:b3:9e:9c:71:03:55:b0:39:f1: fa:7b:af:6e:65:ff:74:0d:7e:13:d9:d9:f9:6f:ee:63:4c:c7: d8:cc:52:5c:bf:bb:66:65:31:d7:f5:fd:56:45:87:9f:f4:08: fd:86:3a:74:d8:30:d6:b0:5f:25:d1:3f:48:8e:a5:fe:9b:0d: a7:b3:b3:f3:e5:53:64:97:5f:46:80:c4:a5:7c:14:38:ba:d0: 32:fe:0f:37:bc:55:4b:72:0f:ee:6c:2c:51:48:dc:18:38:9d: 21:38:8d:fa:7c:a3:0d:3e:d8:9f:f2:92:b5:ae:8a:ef:f6:23: 21:8f:e1:bc:59:49:10:6a:e9:1e:12:33:40:99:da:4d:2d:f6: f9:db:67:fe -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCoAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTUyMzJaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDM3NjcxMzQ5Q0U3NzNB MDg3RjFGRkQ5N0JDMzcyOTNBMkFBRDA0RDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDsmiGTVc0hFXb/R5uESxULVO4XbkZdff/fYfPFJc+RzWGbj4Vz hfhKFe5ZEVOND9lOlxIKzVIjq2Gbbl5pEhyOrbxiIevgecBTcexhs3FNvG3U9t7S Dh3i2kYvmnV3l4rQVw/oLeh7GzRe9X7KSzzhEnVl4b0AjS+9J05bi9B2FXFd7gdm 1kpNv6AOjuPkO59eFGd4nM8LyZ+rl9NSkBhZfXTBLvaTdXr1J4klex9oNtKfE32N +rhUHdUESNgr3t5oiSea2cRfRp3Vj7pnA3ejWlDPikHy4qBa10d74nQji12XidYk dwzrplStZfa0CDzRuEhFWnw4jgII05ps9fAnAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUN2cTSc53Ogh/H/2XvDcpOiqtBNIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L04yY1RTYzUzT2doX0hfMlh2RGNwT2lxdEJOSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBSA4wDQYJKoZIhvcNAQELBQADggEBADABF4leGFT3dbugj5cFolG7qwFi /yB0eCOazqyLRK8zEgWY0xv0aG/c1MXT/soOuYGxrTl/7D9bAMfGVj+FCzowu2dZ ddvicg8Gv6zVgEoczEURcmODzQE6gLh6fxQ9P/W61vjSL/pSQ5RL+s+XS+2spVn/ HbOenHEDVbA58fp7r25l/3QNfhPZ2flv7mNMx9jMUly/u2ZlMdf1/VZFh5/0CP2G OnTYMNawXyXRP0iOpf6bDaezs/PlU2SXX0aAxKV8FDi60DL+Dze8VUtyD+5sLFFI 3Bg4nSE4jfp8ow0+2J/ykrWuiu/2IyGP4bxZSRBq6R4SM0CZ2k0t9vnbZ/4= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:00 2024 by rpki-client on console-fra.rpki-client.org