$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/N5AmUsrhsEn9_8LrGnWhsL9vGls.roa File: N5AmUsrhsEn9_8LrGnWhsL9vGls.roa (raw, json) Hash identifier: y7JG0/4CcGFAgT9bVFK8dI0MKrwNr0hRBtfAxCIJr54= Subject key identifier: 37:90:26:52:CA:E1:B0:49:FD:FF:C2:EB:1A:75:A1:B0:BF:6F:1A:5B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0687 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/N5AmUsrhsEn9_8LrGnWhsL9vGls.roa Signing time: Tue 30 Apr 2024 01:38:05 +0000 ROA not before: Tue 30 Apr 2024 01:38:05 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1671 (0x687) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:38:05 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=37902652CAE1B049FDFFC2EB1A75A1B0BF6F1A5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5f:19:fd:c4:0b:2a:d2:b2:bc:17:4e:51:53: a0:e8:a9:9c:8c:2e:d3:12:b2:23:1c:aa:65:8c:69: f2:42:ea:d5:2a:bb:8b:ae:83:33:3e:aa:19:fc:70: 88:8f:06:c4:e6:08:ad:b6:b0:ed:7b:af:92:8d:3e: a5:8f:55:e6:56:8c:2c:8c:7a:db:98:18:19:44:9a: da:40:5f:55:9c:ec:0e:65:96:02:a1:d2:ed:87:7e: 6a:94:07:34:b3:7a:66:28:63:d5:8b:f4:e4:91:03: a9:fd:c8:0b:4c:a9:87:56:8b:56:85:75:f0:55:9b: 64:c6:31:89:15:c2:9f:03:f6:7a:1f:0c:0d:f0:1e: d0:d2:8e:9c:99:54:ff:60:7c:fc:b0:9a:93:c0:ae: 42:f1:9a:f3:58:8e:1f:97:99:63:36:e9:1e:a6:f2: e8:e8:13:87:4c:5c:8b:a3:16:99:3b:98:58:22:50: e3:17:1b:12:84:15:4b:5b:95:3b:69:2e:d2:a4:09: d6:8a:4e:4a:e1:91:e3:5a:cf:13:ed:6d:74:57:b2: d4:93:9f:82:7e:cd:00:bc:b2:22:a5:cf:33:40:d3: 75:df:52:33:27:02:63:f9:af:16:34:72:17:42:8b: f6:85:f2:5b:31:69:37:2b:43:86:f2:87:f0:bb:e8: 7b:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:90:26:52:CA:E1:B0:49:FD:FF:C2:EB:1A:75:A1:B0:BF:6F:1A:5B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/N5AmUsrhsEn9_8LrGnWhsL9vGls.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.21.0/24 Signature Algorithm: sha256WithRSAEncryption 99:da:ae:fa:64:bd:b8:27:eb:4f:a1:3d:fc:5a:b1:8f:e8:a1: 73:43:d0:08:5c:77:62:4c:a2:7e:09:3d:82:f2:d0:44:d0:50: bd:cf:94:f6:62:4d:76:16:e2:9b:c7:c5:11:43:f9:9a:6f:07: 26:fc:3a:37:4e:60:7e:86:eb:5b:2a:d2:46:64:08:4c:93:e5: 01:f3:5c:c7:63:87:d4:a7:ee:9d:4e:ba:8e:07:4b:44:4e:dc: bc:df:64:77:71:f0:d5:35:28:31:3c:ec:97:7c:e1:b7:66:13: 57:9e:2b:c5:de:dc:34:0f:8d:44:c3:cb:4c:34:a8:3e:28:15: 54:52:78:fb:57:91:bf:56:22:37:b8:5c:79:56:52:e7:00:cd: fb:4b:96:ba:8b:20:62:1b:33:1a:35:bf:56:5c:2a:81:66:fe: 14:9a:97:42:bf:1c:87:2c:51:3d:7d:b8:26:a9:52:9f:46:a4: c9:81:5f:e7:cf:65:88:75:6d:f8:9e:26:c9:53:cd:6d:d9:9c: 20:a8:e8:ae:3e:4f:82:07:70:b8:78:85:b7:b4:3b:e5:ab:ad: c2:e5:f6:8b:39:31:cb:2a:33:ee:b6:5f:f9:60:81:ba:43:a8: 77:ec:17:33:d3:77:10:b7:fc:c6:65:15:cd:a4:ab:2d:72:32: 8a:74:91:53 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBocwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTM4MDVaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDM3OTAyNjUyQ0FFMUIw NDlGREZGQzJFQjFBNzVBMUIwQkY2RjFBNUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEXxn9xAsq0rK8F05RU6DoqZyMLtMSsiMcqmWMafJC6tUqu4uu gzM+qhn8cIiPBsTmCK22sO17r5KNPqWPVeZWjCyMetuYGBlEmtpAX1Wc7A5llgKh 0u2HfmqUBzSzemYoY9WL9OSRA6n9yAtMqYdWi1aFdfBVm2TGMYkVwp8D9nofDA3w HtDSjpyZVP9gfPywmpPArkLxmvNYjh+XmWM26R6m8ujoE4dMXIujFpk7mFgiUOMX GxKEFUtblTtpLtKkCdaKTkrhkeNazxPtbXRXstSTn4J+zQC8siKlzzNA03XfUjMn AmP5rxY0chdCi/aF8lsxaTcrQ4byh/C76HuPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUN5AmUsrhsEn9/8LrGnWhsL9vGlswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L041QW1Vc3Joc0VuOV84THJHbldoc0w5dkdscy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABTxUwDQYJKoZIhvcNAQELBQADggEBAJnarvpkvbgn60+hPfxasY/ooXND 0Ahcd2JMon4JPYLy0ETQUL3PlPZiTXYW4pvHxRFD+ZpvByb8OjdOYH6G61sq0kZk CEyT5QHzXMdjh9Sn7p1Ouo4HS0RO3LzfZHdx8NU1KDE87Jd84bdmE1eeK8Xe3DQP jUTDy0w0qD4oFVRSePtXkb9WIje4XHlWUucAzftLlrqLIGIbMxo1v1ZcKoFm/hSa l0K/HIcsUT19uCapUp9GpMmBX+fPZYh1bfieJslTzW3ZnCCo6K4+T4IHcLh4hbe0 O+WrrcLl9os5McsqM+62X/lggbpDqHfsFzPTdxC3/MZlFc2kqy1yMop0kVM= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:00 2024 by rpki-client on console-fra.rpki-client.org