$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Qx5emxVyXixiKX1K8yqUWUvoAtA.roa File: Qx5emxVyXixiKX1K8yqUWUvoAtA.roa (raw, json) Hash identifier: eR2qDjiRg8LCDUI2XnSBNNE2Gs42VVamUEo9WIBYU0Y= Subject key identifier: 43:1E:5E:9B:15:72:5E:2C:62:29:7D:4A:F3:2A:94:59:4B:E8:02:D0 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 077B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Qx5emxVyXixiKX1K8yqUWUvoAtA.roa Signing time: Tue 30 Apr 2024 02:04:38 +0000 ROA not before: Tue 30 Apr 2024 02:04:38 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.76.72.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1915 (0x77b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:04:38 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=431E5E9B15725E2C62297D4AF32A94594BE802D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:88:65:75:39:7e:82:77:1d:8f:8f:2b:3e:fe: 81:10:b1:9b:e5:7d:dd:11:94:d4:bf:54:5a:f3:b0: 36:26:60:d9:d7:4c:a8:86:8c:5b:6c:f5:58:05:a2: 0f:3b:00:d5:cf:e4:aa:a7:7c:57:db:4b:e4:d4:42: 0e:5a:1b:a9:94:cb:1f:4b:fc:5b:1e:e6:56:38:cf: 42:fd:b2:05:b5:20:ad:39:da:e0:08:cc:91:6f:31: 7c:45:73:34:f1:32:d4:28:83:5f:3b:9a:44:31:d2: 30:89:9d:07:de:36:3a:b2:0d:1f:8d:9d:a3:47:6b: 5e:e8:09:01:0a:12:e0:3c:51:17:1f:ee:88:80:a1: 50:88:ac:4a:47:91:21:cb:e8:1a:4d:b1:a8:2c:f3: 2e:29:0e:a3:14:18:b2:50:bc:c1:3b:83:75:64:68: ab:13:47:7d:cd:1e:5e:65:e1:97:39:39:c4:e9:5c: d0:fa:73:48:9b:0b:3a:34:77:ff:d0:69:7a:c8:a6: c9:7b:54:43:bb:2e:35:07:05:f2:fb:86:9b:01:70: f6:35:fa:01:8d:eb:f8:f5:f6:64:b3:bf:a1:5d:f9: ac:74:84:3c:b1:c4:d7:4e:61:7e:fb:73:08:df:10: 14:a1:74:e8:5b:5a:11:ca:2b:82:d6:bb:90:ef:35: ab:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:1E:5E:9B:15:72:5E:2C:62:29:7D:4A:F3:2A:94:59:4B:E8:02:D0 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Qx5emxVyXixiKX1K8yqUWUvoAtA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.72.0/22 Signature Algorithm: sha256WithRSAEncryption 20:b0:6d:25:44:48:52:29:9d:d9:7a:58:cb:77:89:02:89:41: 63:65:16:84:b2:5c:30:8e:9a:5b:95:8c:66:76:94:57:23:9d: 09:c7:36:e8:a9:dc:67:3d:33:b9:37:91:20:21:c8:a9:59:23: 25:11:18:a8:6a:67:e1:d8:a2:b1:da:a3:06:78:d0:cd:17:27: 6f:e0:c1:a0:a0:83:e1:16:94:9e:29:9b:44:4d:b7:bd:85:d3: 51:0a:36:7c:70:2f:9f:bc:80:b9:d8:e9:8b:1a:69:ac:cf:cd: 74:73:80:9f:eb:b5:f8:73:fc:2d:96:8f:c2:9b:6b:72:a9:2e: cf:01:91:45:b9:2f:eb:3b:d0:55:cf:6d:2e:50:eb:fe:0a:b1: dd:ca:c2:37:f6:83:fc:6d:65:4a:6b:12:db:ff:53:51:3f:70: 59:34:20:93:9b:87:d1:f1:0a:c7:9d:9f:76:a7:04:de:72:e4: c8:50:85:02:e2:7b:9a:4a:47:b2:6e:96:be:36:d2:56:ac:9f: 4f:4a:24:a9:c1:9b:70:28:58:20:8c:58:df:9f:1c:56:df:c8: 43:c8:5f:e0:d2:24:b9:33:27:5e:31:b1:92:d0:d3:db:b7:95: 90:5e:6c:78:9b:8b:05:13:bf:e7:1e:92:a1:2b:9b:6f:e6:3b: ee:59:5f:d2 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB3swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjA0MzhaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDQzMUU1RTlCMTU3MjVF MkM2MjI5N0Q0QUYzMkE5NDU5NEJFODAyRDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDliGV1OX6Cdx2Pjys+/oEQsZvlfd0RlNS/VFrzsDYmYNnXTKiG jFts9VgFog87ANXP5KqnfFfbS+TUQg5aG6mUyx9L/Fse5lY4z0L9sgW1IK052uAI zJFvMXxFczTxMtQog187mkQx0jCJnQfeNjqyDR+NnaNHa17oCQEKEuA8URcf7oiA oVCIrEpHkSHL6BpNsags8y4pDqMUGLJQvME7g3VkaKsTR33NHl5l4Zc5OcTpXND6 c0ibCzo0d//QaXrIpsl7VEO7LjUHBfL7hpsBcPY1+gGN6/j19mSzv6Fd+ax0hDyx xNdOYX77cwjfEBShdOhbWhHKK4LWu5DvNatLAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUQx5emxVyXixiKX1K8yqUWUvoAtAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1F4NWVteFZ5WGl4aUtYMUs4eXFVV1V2b0F0QS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBTEgwDQYJKoZIhvcNAQELBQADggEBACCwbSVESFIpndl6WMt3iQKJQWNl FoSyXDCOmluVjGZ2lFcjnQnHNuip3Gc9M7k3kSAhyKlZIyURGKhqZ+HYorHaowZ4 0M0XJ2/gwaCgg+EWlJ4pm0RNt72F01EKNnxwL5+8gLnY6YsaaazPzXRzgJ/rtfhz /C2Wj8Kba3KpLs8BkUW5L+s70FXPbS5Q6/4Ksd3Kwjf2g/xtZUprEtv/U1E/cFk0 IJObh9HxCsedn3anBN5y5MhQhQLie5pKR7Julr420lasn09KJKnBm3AoWCCMWN+f HFbfyEPIX+DSJLkzJ14xsZLQ09u3lZBebHibiwUTv+cekqErm2/mO+5ZX9I= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:00 2024 by rpki-client on console-fra.rpki-client.org