$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/NYF7oiOo9mrFSV7TSS1Lp2LY1L4.roa File: NYF7oiOo9mrFSV7TSS1Lp2LY1L4.roa (raw, json) Hash identifier: +3Aue1m06f7DQASReuGC+uhO3jZqzPB8W26HF6YW1VQ= Subject key identifier: 35:81:7B:A2:23:A8:F6:6A:C5:49:5E:D3:49:2D:4B:A7:62:D8:D4:BE Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 09EE Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NYF7oiOo9mrFSV7TSS1Lp2LY1L4.roa Signing time: Sun 30 Jun 2024 01:42:24 +0000 ROA not before: Sun 30 Jun 2024 01:42:24 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 49.108.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2542 (0x9ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:42:24 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=35817BA223A8F66AC5495ED3492D4BA762D8D4BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:40:4f:80:23:89:5c:e5:5f:f3:21:13:56:fc: da:9c:7d:09:ae:34:71:43:50:43:03:03:8b:95:97: 9d:61:82:c6:4b:c5:6e:c0:3d:c0:89:ff:44:97:e3: 9d:ad:7b:77:be:dc:4d:68:3d:e4:db:f1:2e:05:bd: a8:17:41:b7:c8:9b:1b:37:9f:14:8c:64:cf:a0:1f: 83:ad:ec:48:5a:d1:73:a0:21:1c:f2:c6:b3:94:4b: 0e:4f:71:dc:86:87:72:91:0d:01:43:98:ba:b6:6c: 8a:6a:ba:22:af:d0:39:18:64:56:f9:0a:9e:c7:b9: 6d:aa:6b:1a:91:31:98:aa:e5:a6:91:24:7c:83:5c: 12:c7:86:2f:73:fd:39:0e:3c:ef:95:92:61:64:ee: 1f:41:ab:61:70:39:4c:e9:fe:4b:92:7b:d2:11:57: bc:4b:28:39:89:01:8f:70:7e:68:96:df:0e:1b:f5: 79:ff:37:92:76:de:89:89:e4:9a:87:6c:b5:cf:a4: 0e:ca:c5:06:3e:39:1b:81:77:85:af:59:e2:3e:38: 1d:77:a4:2f:6d:e6:0d:0a:ec:d7:af:6e:cd:90:b8: 51:4d:ab:c4:31:5e:d5:c0:a1:67:c4:4b:a0:9d:f3: dd:8d:13:b2:95:32:cd:0b:97:08:af:e8:0d:49:1a: 4c:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:81:7B:A2:23:A8:F6:6A:C5:49:5E:D3:49:2D:4B:A7:62:D8:D4:BE X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NYF7oiOo9mrFSV7TSS1Lp2LY1L4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.108.241.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:9f:5b:aa:9a:97:c5:8e:42:0b:01:09:51:fe:55:bc:26:0f: bd:d1:3f:c2:42:80:cc:39:3e:86:ad:55:71:e7:2a:e1:1f:96: 0d:de:bb:86:56:59:5c:e2:f0:3e:1a:f1:1f:7b:31:4a:81:61: 5d:ef:85:31:0b:4f:b1:f3:b5:89:68:73:02:83:a2:42:9e:8e: c2:c8:72:78:27:a2:0d:f6:12:fb:11:13:36:db:41:fc:99:74: 52:af:c3:f0:8f:ed:9e:86:d5:bb:5d:f3:9a:96:bb:5c:3b:cd: 8a:81:1b:fc:b6:66:46:79:03:26:66:71:64:d0:a0:90:f1:f0: f1:26:5e:7a:20:a2:13:25:ad:c6:b5:73:f4:f0:7e:50:8b:ad: e9:30:3e:e6:e9:b3:b4:6c:f6:20:e9:c7:e2:86:8a:a9:3f:ea: 02:66:e4:40:97:c1:a7:a0:af:0f:5c:9a:a8:5c:d6:21:0c:91: 72:16:90:eb:43:25:79:55:5f:ae:b3:e3:69:33:fa:bb:52:81: d6:a1:1b:cf:40:9a:e2:ad:7a:d9:56:3a:cb:18:22:44:f9:8c: 91:cd:86:3d:db:fd:30:99:2e:64:cd:2a:58:29:48:94:da:a9: f3:70:e3:68:a4:46:d0:b8:2c:6c:2f:fc:c9:86:7a:e9:70:fb: 10:ff:74:cb -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCe4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQyMjRaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDM1ODE3QkEyMjNBOEY2 NkFDNTQ5NUVEMzQ5MkQ0QkE3NjJEOEQ0QkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDxQE+AI4lc5V/zIRNW/NqcfQmuNHFDUEMDA4uVl51hgsZLxW7A PcCJ/0SX452te3e+3E1oPeTb8S4FvagXQbfImxs3nxSMZM+gH4Ot7Eha0XOgIRzy xrOUSw5PcdyGh3KRDQFDmLq2bIpquiKv0DkYZFb5Cp7HuW2qaxqRMZiq5aaRJHyD XBLHhi9z/TkOPO+VkmFk7h9Bq2FwOUzp/kuSe9IRV7xLKDmJAY9wfmiW3w4b9Xn/ N5J23omJ5JqHbLXPpA7KxQY+ORuBd4WvWeI+OB13pC9t5g0K7Nevbs2QuFFNq8Qx XtXAoWfES6Cd892NE7KVMs0Llwiv6A1JGkynAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUNYF7oiOo9mrFSV7TSS1Lp2LY1L4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L05ZRjdvaU9vOW1yRlNWN1RTUzFMcDJMWTFMNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxbPEwDQYJKoZIhvcNAQELBQADggEBAB6fW6qal8WOQgsBCVH+VbwmD73R P8JCgMw5PoatVXHnKuEflg3eu4ZWWVzi8D4a8R97MUqBYV3vhTELT7HztYlocwKD okKejsLIcngnog32EvsREzbbQfyZdFKvw/CP7Z6G1btd85qWu1w7zYqBG/y2ZkZ5 AyZmcWTQoJDx8PEmXnogohMlrca1c/TwflCLrekwPubps7Rs9iDpx+KGiqk/6gJm 5ECXwaegrw9cmqhc1iEMkXIWkOtDJXlVX66z42kz+rtSgdahG89AmuKtetlWOssY IkT5jJHNhj3b/TCZLmTNKlgpSJTaqfNw42ikRtC4LGwv/MmGeulw+xD/dMs= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:00 2024 by rpki-client on console-fra.rpki-client.org