$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/QKGydXVtv62PTqZOAZwkJqsw8Zc.roa File: QKGydXVtv62PTqZOAZwkJqsw8Zc.roa (raw, json) Hash identifier: A48U4TbDOyg5jV7UXkJyTo2Hkz2lZgGcEOCHW44jhhI= Subject key identifier: 40:A1:B2:75:75:6D:BF:AD:8F:4E:A6:4E:01:9C:24:26:AB:30:F1:97 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0AAB Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QKGydXVtv62PTqZOAZwkJqsw8Zc.roa Signing time: Sun 30 Jun 2024 01:54:27 +0000 ROA not before: Sun 30 Jun 2024 01:54:27 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.66.70.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2731 (0xaab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:54:27 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=40A1B275756DBFAD8F4EA64E019C2426AB30F197 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:1e:5e:c3:47:f5:74:8b:22:de:d6:55:d8:ff: f1:12:69:f7:87:64:56:6f:bf:95:d2:6a:76:c3:01: e3:bd:f3:2e:66:58:59:5b:e7:3a:9f:2c:e2:b2:fc: cc:6b:4e:1b:3c:23:25:e9:9a:a1:08:40:37:a7:88: cb:27:af:23:b9:17:bc:29:00:35:de:fe:ba:88:c5: dc:8c:f2:1a:75:2f:c4:0c:0c:ea:2f:58:26:02:53: 5e:21:94:70:6b:76:fe:ee:1e:13:75:6d:99:75:b2: 41:53:37:83:df:3c:dd:b3:e3:1c:d6:21:51:93:e1: 14:f9:65:15:72:07:98:0c:18:df:21:14:8c:8c:f5: 0e:7d:bc:14:c3:cf:04:ce:75:21:8a:e5:57:4e:d0: f6:14:2a:0a:98:06:01:eb:d9:36:23:14:f8:bd:79: 0c:b7:fa:d7:a1:80:2f:d8:df:db:3f:17:8b:f3:25: e7:26:21:2d:6a:ab:f0:67:3a:a7:02:86:72:ac:70: ec:00:57:75:4a:1f:15:41:aa:2e:9c:52:28:1b:28: dd:58:38:d5:8d:af:9c:ea:fe:d6:86:57:e8:69:1b: 34:96:65:81:2d:c7:fb:0d:78:cd:34:7d:6d:32:34: 12:f8:f0:5d:89:01:72:c3:bb:53:0e:4c:16:9a:b4: 80:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:A1:B2:75:75:6D:BF:AD:8F:4E:A6:4E:01:9C:24:26:AB:30:F1:97 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QKGydXVtv62PTqZOAZwkJqsw8Zc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.66.70.0/23 Signature Algorithm: sha256WithRSAEncryption 08:37:c7:e0:89:2e:9d:9f:5e:f4:5b:56:80:b9:6d:63:f1:b9: 25:d5:69:07:97:d0:74:83:13:d3:b5:25:e8:b5:fa:8f:b4:52: b0:86:b7:d5:40:af:94:c6:68:0c:1b:6b:fe:57:d3:b1:ea:2e: bf:93:dc:5c:64:57:bf:09:e5:4c:78:69:20:2d:ee:7c:55:9d: 61:16:d0:0f:bf:de:65:6c:09:89:dc:b1:31:a8:76:2c:66:73: f7:b3:a6:b4:43:ff:d1:e2:fe:b5:35:71:df:a7:f6:57:94:d6: af:67:28:99:8f:18:b4:8d:23:0a:81:40:c4:47:c4:dc:41:b8: 4f:b0:0c:08:20:85:fe:b6:cf:dd:2e:08:2b:83:b8:da:10:46: 0e:ab:0a:08:b6:e3:bd:1c:68:3a:cb:2a:69:8b:f8:d6:78:37: bc:83:ec:52:7c:6b:bc:ac:d1:83:a7:0d:39:85:ea:a5:40:f8: 1c:d2:ae:21:b1:35:7a:b8:85:1d:3d:4e:b6:03:7e:7c:47:48: 3a:56:f6:26:61:35:53:2f:ef:c9:31:76:b0:30:f0:33:ee:88: 57:6a:d2:7c:5c:08:ac:70:05:c2:8c:60:bb:a0:c2:ce:1c:e1: a3:7f:4b:29:31:43:9a:ca:ba:92:2d:3b:f7:83:da:a7:f1:a2: b1:93:64:e8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCqswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTU0MjdaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDQwQTFCMjc1NzU2REJG QUQ4RjRFQTY0RTAxOUMyNDI2QUIzMEYxOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgHl7DR/V0iyLe1lXY//ESafeHZFZvv5XSanbDAeO98y5mWFlb 5zqfLOKy/MxrThs8IyXpmqEIQDeniMsnryO5F7wpADXe/rqIxdyM8hp1L8QMDOov WCYCU14hlHBrdv7uHhN1bZl1skFTN4PfPN2z4xzWIVGT4RT5ZRVyB5gMGN8hFIyM 9Q59vBTDzwTOdSGK5VdO0PYUKgqYBgHr2TYjFPi9eQy3+tehgC/Y39s/F4vzJecm IS1qq/BnOqcChnKscOwAV3VKHxVBqi6cUigbKN1YONWNr5zq/taGV+hpGzSWZYEt x/sNeM00fW0yNBL48F2JAXLDu1MOTBaatIArAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUQKGydXVtv62PTqZOAZwkJqsw8ZcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1FLR3lkWFZ0djYyUFRxWk9BWndrSnFzdzhaYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBQkYwDQYJKoZIhvcNAQELBQADggEBAAg3x+CJLp2fXvRbVoC5bWPxuSXV aQeX0HSDE9O1Jei1+o+0UrCGt9VAr5TGaAwba/5X07HqLr+T3FxkV78J5Ux4aSAt 7nxVnWEW0A+/3mVsCYncsTGodixmc/ezprRD/9Hi/rU1cd+n9leU1q9nKJmPGLSN IwqBQMRHxNxBuE+wDAgghf62z90uCCuDuNoQRg6rCgi2470caDrLKmmL+NZ4N7yD 7FJ8a7ys0YOnDTmF6qVA+BzSriGxNXq4hR09TrYDfnxHSDpW9iZhNVMv78kxdrAw 8DPuiFdq0nxcCKxwBcKMYLugws4c4aN/SykxQ5rKupItO/eD2qfxorGTZOg= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:00 2024 by rpki-client on console-fra.rpki-client.org