$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/NXxFxhLVd0YU2U1DSRhWNB0pNZQ.roa File: NXxFxhLVd0YU2U1DSRhWNB0pNZQ.roa (raw, json) Hash identifier: bSYGv0vnMn9XzpDNzw/Zbxng2eSI6uB+xl4DGeI2gv4= Subject key identifier: 35:7C:45:C6:12:D5:77:46:14:D9:4D:43:49:18:56:34:1D:29:35:94 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 07C9 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NXxFxhLVd0YU2U1DSRhWNB0pNZQ.roa Signing time: Tue 30 Apr 2024 02:08:49 +0000 ROA not before: Tue 30 Apr 2024 02:08:49 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1993 (0x7c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:08:49 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=357C45C612D5774614D94D43491856341D293594 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e0:91:71:9c:64:5a:c6:ce:4b:99:76:bb:25: b8:97:85:dc:94:53:ab:64:b0:69:4c:f6:9d:b2:fe: 23:d6:b2:e8:5d:39:39:fe:de:8a:20:e5:7a:cf:e4: 7f:ba:31:ae:31:73:92:45:c9:4f:9f:dd:f2:a4:1d: 94:6b:f6:fa:5a:30:27:50:f4:41:1a:90:0f:cf:3a: 13:18:9e:0b:aa:97:d7:b1:20:31:10:8c:7e:47:a6: db:b2:be:21:dc:f6:e8:1a:bd:0c:e6:8f:c8:ac:58: fb:ce:dd:e8:c7:d9:88:ea:02:7e:b7:7a:93:2c:cc: c8:c9:b8:d9:ac:91:c2:fe:4a:e3:47:b0:a7:99:cf: df:78:4c:17:56:7e:66:a6:2a:01:20:43:7b:a7:ba: 4f:d2:73:c9:c0:4a:e5:2c:a1:8a:01:df:35:14:17: 71:b7:5e:fb:f6:42:51:dd:47:73:33:88:66:8a:ea: 81:d6:1d:6f:a8:a8:49:ce:3c:78:31:96:b6:fa:c7: bd:40:17:1c:a9:84:05:89:fe:78:82:57:90:dd:63: 92:e3:ba:45:5a:14:1c:de:5d:8b:13:ff:e6:24:b3: d1:81:7c:8c:31:11:5a:be:0e:c4:e8:9d:d0:cc:63: e3:fa:a0:e2:f4:96:1f:ff:42:ee:39:3b:0f:5a:d2: 39:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:7C:45:C6:12:D5:77:46:14:D9:4D:43:49:18:56:34:1D:29:35:94 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NXxFxhLVd0YU2U1DSRhWNB0pNZQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.7.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:07:94:67:4a:0e:ef:62:8f:32:a3:52:f5:92:6d:9a:5d:d6: 3c:dd:11:ab:54:fb:7f:dc:3d:fa:5e:52:6b:a1:45:7b:dc:48: de:4e:05:46:01:1f:7c:31:b3:ff:24:01:73:56:14:3f:b7:e5: 11:1d:83:99:a0:62:95:95:f6:82:fc:fd:dd:8d:40:c8:ed:d5: 1c:06:f3:e5:71:67:0a:5e:bf:43:7e:88:c0:61:e4:11:33:53: 18:ee:5f:25:9c:19:68:bc:13:a9:45:1a:a9:7c:c7:5e:00:ad: 0b:35:17:71:cb:01:b3:41:80:de:22:61:4e:28:da:a8:cf:74: b7:68:f4:20:85:c8:6b:60:b8:18:76:e8:db:66:20:8d:12:19: 23:4d:92:96:94:ba:f8:44:06:2b:1e:d6:98:09:b0:30:5e:da: ed:2f:d9:66:23:b5:44:64:50:b8:19:c4:1b:7e:31:18:15:33: 9d:28:c7:fd:d5:5f:24:32:9a:2d:91:e3:f2:51:e3:8c:70:12: d0:62:bb:cc:3d:d9:57:01:9a:aa:fe:bb:4d:d5:cc:0b:56:a8: b3:bb:8c:c2:38:a4:d9:fe:37:d6:a6:81:44:3f:f7:7c:8e:32: 4d:ab:8c:f2:35:f7:ba:4f:c3:db:3a:1b:66:24:58:86:66:03: 48:06:c8:11 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB8kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjA4NDlaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDM1N0M0NUM2MTJENTc3 NDYxNEQ5NEQ0MzQ5MTg1NjM0MUQyOTM1OTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDC4JFxnGRaxs5LmXa7JbiXhdyUU6tksGlM9p2y/iPWsuhdOTn+ 3oog5XrP5H+6Ma4xc5JFyU+f3fKkHZRr9vpaMCdQ9EEakA/POhMYnguql9exIDEQ jH5HptuyviHc9ugavQzmj8isWPvO3ejH2YjqAn63epMszMjJuNmskcL+SuNHsKeZ z994TBdWfmamKgEgQ3unuk/Sc8nASuUsoYoB3zUUF3G3Xvv2QlHdR3MziGaK6oHW HW+oqEnOPHgxlrb6x71AFxyphAWJ/niCV5DdY5LjukVaFBzeXYsT/+Yks9GBfIwx EVq+DsTondDMY+P6oOL0lh//Qu45Ow9a0jkrAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUNXxFxhLVd0YU2U1DSRhWNB0pNZQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L05YeEZ4aExWZDBZVTJVMURTUmhXTkIwcE5aUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABTwcwDQYJKoZIhvcNAQELBQADggEBADwHlGdKDu9ijzKjUvWSbZpd1jzd EatU+3/cPfpeUmuhRXvcSN5OBUYBH3wxs/8kAXNWFD+35REdg5mgYpWV9oL8/d2N QMjt1RwG8+VxZwpev0N+iMBh5BEzUxjuXyWcGWi8E6lFGql8x14ArQs1F3HLAbNB gN4iYU4o2qjPdLdo9CCFyGtguBh26NtmII0SGSNNkpaUuvhEBise1pgJsDBe2u0v 2WYjtURkULgZxBt+MRgVM50ox/3VXyQymi2R4/JR44xwEtBiu8w92VcBmqr+u03V zAtWqLO7jMI4pNn+N9amgUQ/93yOMk2rjPI197pPw9s6G2YkWIZmA0gGyBE= -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:41 2024 by rpki-client on console-ams.rpki-client.org