$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/PCBW6oL6r7ISPFJSFxMdYtqCaUw.roa File: PCBW6oL6r7ISPFJSFxMdYtqCaUw.roa (raw, json) Hash identifier: N73bxkBgni/x5OrZBjebbUGcT99b2Bv9auWm8yxA4UU= Subject key identifier: 3C:20:56:EA:82:FA:AF:B2:12:3C:52:52:17:13:1D:62:DA:82:69:4C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A57 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/PCBW6oL6r7ISPFJSFxMdYtqCaUw.roa Signing time: Sun 30 Jun 2024 01:48:33 +0000 ROA not before: Sun 30 Jun 2024 01:48:33 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.66.28.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2647 (0xa57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:48:33 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=3C2056EA82FAAFB2123C525217131D62DA82694C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:24:30:f3:0f:b7:b2:ba:9c:b2:cb:b4:65:5e: ac:41:da:93:1a:92:78:9c:f9:75:e8:3b:5f:04:a7: 02:dd:97:ba:ed:7d:18:f3:af:70:a3:59:41:df:21: 23:19:bd:e6:d3:ea:0b:f9:de:0e:ff:80:e9:63:98: 68:b1:47:87:53:61:fc:de:3e:e9:45:cd:bc:d5:20: 5d:83:7f:f8:bb:c1:ab:d5:7b:db:5c:84:2d:cb:8f: 92:43:8e:5c:c4:6b:62:31:a2:0a:b4:5d:a7:3d:61: c8:84:fa:ab:73:8f:fb:cd:a9:09:86:bb:06:a5:30: cf:21:06:7c:d7:71:f7:ce:70:1b:a7:84:cb:aa:39: 7e:46:88:dc:e5:2c:5a:f3:da:c8:bf:c6:c1:a9:64: 69:13:99:8a:e2:01:db:aa:0c:bc:b6:6b:ff:94:3d: 9e:50:b6:e9:4e:95:03:6f:d9:d1:16:f4:24:88:c8: d2:9e:29:49:aa:11:21:a3:6d:f9:49:bc:d4:49:e7: e2:e2:9e:34:e5:aa:ef:cf:7d:78:cb:a7:7e:bc:58: 61:99:8a:ba:90:89:38:19:3c:a6:dd:d5:30:ec:2d: ec:f7:19:da:23:7a:cb:62:fa:9b:88:8b:cd:e2:a1: d8:1b:5e:98:1b:7c:4a:85:f7:b6:48:97:91:d8:4f: 86:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:20:56:EA:82:FA:AF:B2:12:3C:52:52:17:13:1D:62:DA:82:69:4C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/PCBW6oL6r7ISPFJSFxMdYtqCaUw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.66.28.0/22 Signature Algorithm: sha256WithRSAEncryption 03:99:56:c5:b4:69:f9:10:66:f8:8d:6d:0b:11:f4:be:b3:d4: 21:e7:4c:87:57:14:60:42:00:87:64:b4:a9:35:2f:15:19:04: bc:f6:65:7a:95:8f:0a:ee:7b:b8:39:e7:22:4a:02:55:54:a1: 22:28:14:f0:47:79:52:32:0e:63:47:ce:dd:da:8a:e0:59:95: a0:a0:25:19:79:1a:8a:bd:48:5f:4b:99:f4:82:bd:da:b3:59: 5a:3e:9a:af:0f:21:80:d4:27:15:35:8b:1f:ce:d1:8d:1f:e8: 77:4f:d6:a7:37:11:22:5a:6b:ca:3a:91:59:6c:7d:e9:b3:23: 99:06:0c:83:ad:2e:22:e1:05:08:79:01:75:cb:86:8f:3e:58: c9:d2:a4:5d:98:e0:dd:1a:9d:69:36:e3:58:ce:9a:a8:02:2e: 19:a8:7a:8c:90:fb:67:3e:16:d1:ca:10:a7:fd:b2:c8:a7:13: 66:22:3f:e8:65:5a:05:e5:37:eb:70:6d:91:06:0e:ed:35:5d: ca:00:4e:73:fa:4c:46:f4:8e:68:87:9e:12:64:3f:d6:47:7a: 99:3e:df:2e:0f:14:f5:55:53:88:53:35:56:6b:8c:03:7f:19: 77:46:fb:e4:d5:0a:43:45:be:c5:0a:94:4b:b4:55:96:19:97: 90:a3:5d:99 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICClcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQ4MzNaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDNDMjA1NkVBODJGQUFG QjIxMjNDNTI1MjE3MTMxRDYyREE4MjY5NEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjJDDzD7eyupyyy7RlXqxB2pMaknic+XXoO18EpwLdl7rtfRjz r3CjWUHfISMZvebT6gv53g7/gOljmGixR4dTYfzePulFzbzVIF2Df/i7wavVe9tc hC3Lj5JDjlzEa2Ixogq0Xac9YciE+qtzj/vNqQmGuwalMM8hBnzXcffOcBunhMuq OX5GiNzlLFrz2si/xsGpZGkTmYriAduqDLy2a/+UPZ5QtulOlQNv2dEW9CSIyNKe KUmqESGjbflJvNRJ5+LinjTlqu/PfXjLp368WGGZirqQiTgZPKbd1TDsLez3Gdoj esti+puIi83iodgbXpgbfEqF97ZIl5HYT4YDAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUPCBW6oL6r7ISPFJSFxMdYtqCaUwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1BDQlc2b0w2cjdJU1BGSlNGeE1kWXRxQ2FVdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBQhwwDQYJKoZIhvcNAQELBQADggEBAAOZVsW0afkQZviNbQsR9L6z1CHn TIdXFGBCAIdktKk1LxUZBLz2ZXqVjwrue7g55yJKAlVUoSIoFPBHeVIyDmNHzt3a iuBZlaCgJRl5Goq9SF9LmfSCvdqzWVo+mq8PIYDUJxU1ix/O0Y0f6HdP1qc3ESJa a8o6kVlsfemzI5kGDIOtLiLhBQh5AXXLho8+WMnSpF2Y4N0anWk241jOmqgCLhmo eoyQ+2c+FtHKEKf9ssinE2YiP+hlWgXlN+twbZEGDu01XcoATnP6TEb0jmiHnhJk P9ZHepk+3y4PFPVVU4hTNVZrjAN/GXdG++TVCkNFvsUKlEu0VZYZl5CjXZk= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:40 2024 by rpki-client on console-ams.rpki-client.org