$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Q0ELNBeDga6kR3uT910rRBEWeQQ.roa File: Q0ELNBeDga6kR3uT910rRBEWeQQ.roa (raw, json) Hash identifier: /IJ4jc8uiwVI4Cytljux63eGfGSA7jXg8B1bR9/zEtY= Subject key identifier: 43:41:0B:34:17:83:81:AE:A4:47:7B:93:F7:5D:2B:44:11:16:79:04 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A7A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Q0ELNBeDga6kR3uT910rRBEWeQQ.roa Signing time: Sun 30 Jun 2024 01:52:30 +0000 ROA not before: Sun 30 Jun 2024 01:52:30 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 110.158.152.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Dec 2024 00:11:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2682 (0xa7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:52:30 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=43410B34178381AEA4477B93F75D2B4411167904 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:12:83:21:83:31:1e:eb:c0:ff:e5:73:7d:d9: 38:36:42:9d:2d:69:57:f7:0a:d3:35:98:c8:84:85: 52:01:2e:ba:da:18:7c:90:c4:ba:85:0b:f4:e9:84: 92:9a:53:46:c6:ea:a2:a5:4b:0f:cd:61:c7:2c:79: 23:56:eb:d7:03:50:2a:0e:d4:8b:d1:a6:1a:ed:e1: 31:51:45:6b:44:16:14:c8:87:7f:51:70:b3:1b:fe: f8:37:c5:2d:38:d7:ac:e1:5e:90:3a:e6:6b:1e:0c: 00:c3:46:f8:20:dd:44:45:83:15:7d:e2:71:68:66: 58:18:c7:ee:1d:b4:f9:09:aa:6d:c9:7a:bd:86:5e: 22:a9:f1:bc:fb:71:c4:ed:d8:30:5a:74:c8:7e:90: 48:ce:ef:1f:32:30:5a:e6:c8:26:44:80:ef:65:6f: 0f:bf:c3:ca:61:84:3b:56:3d:c3:80:34:29:58:12: fe:24:2b:40:42:8e:30:22:7f:6d:91:45:dc:c3:dd: c4:07:4d:3f:1d:a3:5f:b5:e4:aa:88:1c:a6:e9:c5: e2:ce:e5:3b:c5:7e:a5:7b:80:46:83:1d:20:e3:16: c2:ec:53:ba:8e:c8:a0:48:4e:f3:6f:41:e7:e1:2e: 7d:16:9b:d7:12:2c:96:00:6c:03:29:99:fa:f5:ac: 51:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:41:0B:34:17:83:81:AE:A4:47:7B:93:F7:5D:2B:44:11:16:79:04 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Q0ELNBeDga6kR3uT910rRBEWeQQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.158.152.0/21 Signature Algorithm: sha256WithRSAEncryption e2:8c:3b:44:6c:f1:a9:32:31:83:71:56:8b:8a:56:46:65:76: 0a:f6:00:64:c2:5f:9f:11:a0:38:9f:ce:2f:5c:51:80:8c:2a: 7b:a2:b0:f4:14:1a:8b:e9:c0:27:15:17:90:31:5a:22:70:61: 90:31:fb:47:b4:9e:73:e7:82:bb:73:5a:c8:07:e1:0d:5b:12: 36:63:ca:d7:6a:46:d5:35:70:1c:1b:86:0f:cc:2c:99:6b:12: c3:2d:83:13:4d:29:32:ae:f0:d7:cd:b6:e9:2f:45:ef:c6:ae: 68:e5:71:24:a1:dc:8c:0d:95:e5:da:87:dd:e5:27:f2:a8:1a: 51:8c:9a:d1:37:73:2f:47:b5:55:72:2f:d3:f4:f4:16:24:e0: 28:a3:c8:45:f3:f2:fd:af:37:59:cd:ba:8d:19:b0:34:59:b8: e2:a4:58:b0:e8:f6:f4:89:0d:db:df:43:2c:60:e1:09:95:fb: 1a:ba:f4:31:57:50:f5:d7:80:c1:36:57:46:cd:bf:8b:f8:f0: 64:dc:e4:dd:19:1f:ee:d5:70:52:d7:9e:50:b4:76:cc:db:50: 6a:ce:ce:31:e2:1a:d0:7e:67:cd:5f:c5:23:73:ec:d9:f5:a1: 19:2e:52:88:31:a5:04:41:54:a8:9b:75:db:6e:83:6e:6b:6f: 0a:f3:f8:8c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCnowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTUyMzBaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDQzNDEwQjM0MTc4Mzgx QUVBNDQ3N0I5M0Y3NUQyQjQ0MTExNjc5MDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/EoMhgzEe68D/5XN92Tg2Qp0taVf3CtM1mMiEhVIBLrraGHyQ xLqFC/TphJKaU0bG6qKlSw/NYccseSNW69cDUCoO1IvRphrt4TFRRWtEFhTIh39R cLMb/vg3xS0416zhXpA65mseDADDRvgg3URFgxV94nFoZlgYx+4dtPkJqm3Jer2G XiKp8bz7ccTt2DBadMh+kEjO7x8yMFrmyCZEgO9lbw+/w8phhDtWPcOANClYEv4k K0BCjjAif22RRdzD3cQHTT8do1+15KqIHKbpxeLO5TvFfqV7gEaDHSDjFsLsU7qO yKBITvNvQefhLn0Wm9cSLJYAbAMpmfr1rFFLAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUQ0ELNBeDga6kR3uT910rRBEWeQQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1EwRUxOQmVEZ2E2a1IzdVQ5MTByUkJFV2VRUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANunpgwDQYJKoZIhvcNAQELBQADggEBAOKMO0Rs8akyMYNxVouKVkZldgr2 AGTCX58RoDifzi9cUYCMKnuisPQUGovpwCcVF5AxWiJwYZAx+0e0nnPngrtzWsgH 4Q1bEjZjytdqRtU1cBwbhg/MLJlrEsMtgxNNKTKu8NfNtukvRe/GrmjlcSSh3IwN leXah93lJ/KoGlGMmtE3cy9HtVVyL9P09BYk4CijyEXz8v2vN1nNuo0ZsDRZuOKk WLDo9vSJDdvfQyxg4QmV+xq69DFXUPXXgME2V0bNv4v48GTc5N0ZH+7VcFLXnlC0 dszbUGrOzjHiGtB+Z81fxSNz7Nn1oRkuUogxpQRBVKibddtug25rbwrz+Iw= -----END CERTIFICATE-----Generated at Tue Nov 26 02:17:10 2024 by rpki-client on console-fra.rpki-client.org