$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/VOSsY5u4KFKtGuMmBRuM1a6-BeY.roa File: VOSsY5u4KFKtGuMmBRuM1a6-BeY.roa (raw, json) Hash identifier: 7BdJ8aaZDM8GuhRgYXxLZSnJeDs8GYCLpIUwzX9FsJo= Subject key identifier: 54:E4:AC:63:9B:B8:28:52:AD:1A:E3:26:05:1B:8C:D5:AE:BE:05:E6 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0613 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/VOSsY5u4KFKtGuMmBRuM1a6-BeY.roa Signing time: Thu 29 Feb 2024 01:38:30 +0000 ROA not before: Thu 29 Feb 2024 01:38:30 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 9605 IP address blocks: 49.97.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1555 (0x613) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Feb 29 01:38:30 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=54E4AC639BB82852AD1AE326051B8CD5AEBE05E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a8:6f:37:8d:d4:fe:5b:13:c6:d8:7f:78:d6: ec:a5:b8:06:38:ab:fa:30:42:89:12:f7:ae:f8:cb: d7:8a:82:7f:d3:a8:a4:76:a1:b4:e3:12:3c:4e:1e: 3c:33:41:e4:b5:ba:6f:75:13:90:56:4a:fb:63:f5: d1:a6:c7:a8:b3:a9:11:cd:0f:fd:7a:c3:b6:12:b2: c4:36:7f:d6:b9:b3:76:8a:03:0d:5e:8b:47:3e:b5: 97:23:27:34:76:c0:a7:56:3e:6d:f6:b2:ce:fc:0a: 23:3d:d6:80:ee:79:74:b0:2e:99:f9:55:3f:3d:8a: c4:7c:4d:a5:32:ef:fc:a5:37:29:31:c9:51:66:18: 00:db:ce:27:a4:be:50:1d:9c:98:3c:20:7a:69:60: 5e:e9:62:87:e6:51:d8:63:2f:3f:61:85:fa:7c:74: 10:68:0f:16:c5:cc:04:91:cd:89:6b:93:99:49:d1: 31:ee:56:b7:5a:9a:24:1c:e7:c5:7c:dd:3a:42:44: 40:b3:ca:89:54:66:b6:30:45:38:fb:9d:24:b3:12: 62:04:4b:34:d9:bb:55:05:8c:f1:d8:71:60:4c:6f: 8c:3f:dc:3d:6c:72:b7:8c:61:aa:92:e4:db:07:4f: 9c:a5:1c:4c:e0:f1:d9:3d:49:b5:a0:fb:29:d6:f0: 7a:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:E4:AC:63:9B:B8:28:52:AD:1A:E3:26:05:1B:8C:D5:AE:BE:05:E6 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/VOSsY5u4KFKtGuMmBRuM1a6-BeY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.97.110.0/24 Signature Algorithm: sha256WithRSAEncryption 13:73:46:5a:46:e4:b3:1b:08:1a:a9:47:e2:bc:68:48:20:83: 79:aa:97:f4:bf:40:51:d9:3a:e2:a3:25:a1:cb:39:31:01:3d: de:e5:a8:6a:fe:d8:d6:71:de:3f:12:89:18:82:a7:19:9e:37: 7c:f4:ec:5e:71:e1:47:48:0e:c7:6d:d4:25:d6:28:4d:59:2a: ce:f0:16:1b:58:c9:dd:a9:45:b5:e9:19:ae:7a:02:0b:80:77: 6e:3a:ce:c0:da:be:8e:40:2a:99:dd:28:25:df:2b:83:99:55: 50:1f:d5:26:33:0e:a6:51:0f:15:72:d5:63:30:8c:bd:c2:46: f0:fb:ad:cb:b7:ca:14:46:bf:8c:d6:4b:89:94:af:bb:18:11: 99:9a:43:7e:09:1a:93:6b:bc:a6:3b:07:ba:d3:e8:c9:13:28: d1:bf:f0:c8:13:ae:f0:8d:49:99:0b:e9:3e:52:2a:39:80:d5: 75:92:43:85:1d:68:f7:41:6f:c4:cd:fe:fe:98:b3:cb:d7:e4: c5:60:0c:9d:37:98:fa:3b:6c:02:46:c5:f9:c5:70:81:29:8c: c4:eb:7c:28:06:e3:d4:26:69:87:5f:b9:dc:b4:bf:1a:d1:4f: 26:c7:b5:58:70:23:6e:da:ef:3c:fa:72:04:46:91:5c:eb:b6: 7d:54:9d:cb -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBhMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDAyMjkw MTM4MzBaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDU0RTRBQzYzOUJCODI4 NTJBRDFBRTMyNjA1MUI4Q0Q1QUVCRTA1RTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPqG83jdT+WxPG2H941uyluAY4q/owQokS9674y9eKgn/TqKR2 obTjEjxOHjwzQeS1um91E5BWSvtj9dGmx6izqRHND/16w7YSssQ2f9a5s3aKAw1e i0c+tZcjJzR2wKdWPm32ss78CiM91oDueXSwLpn5VT89isR8TaUy7/ylNykxyVFm GADbziekvlAdnJg8IHppYF7pYofmUdhjLz9hhfp8dBBoDxbFzASRzYlrk5lJ0THu VrdamiQc58V83TpCRECzyolUZrYwRTj7nSSzEmIESzTZu1UFjPHYcWBMb4w/3D1s creMYaqS5NsHT5ylHEzg8dk9SbWg+ynW8HqBAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUVOSsY5u4KFKtGuMmBRuM1a6+BeYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1ZPU3NZNXU0S0ZLdEd1TW1CUnVNMWE2LUJlWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxYW4wDQYJKoZIhvcNAQELBQADggEBABNzRlpG5LMbCBqpR+K8aEggg3mq l/S/QFHZOuKjJaHLOTEBPd7lqGr+2NZx3j8SiRiCpxmeN3z07F5x4UdIDsdt1CXW KE1ZKs7wFhtYyd2pRbXpGa56AguAd246zsDavo5AKpndKCXfK4OZVVAf1SYzDqZR DxVy1WMwjL3CRvD7rcu3yhRGv4zWS4mUr7sYEZmaQ34JGpNrvKY7B7rT6MkTKNG/ 8MgTrvCNSZkL6T5SKjmA1XWSQ4UdaPdBb8TN/v6Ys8vX5MVgDJ03mPo7bAJGxfnF cIEpjMTrfCgG49QmaYdfudy0vxrRTybHtVhwI27a7zz6cgRGkVzrtn1Uncs= -----END CERTIFICATE-----Generated at Mon Nov 25 23:59:10 2024 by rpki-client on console-fra.rpki-client.org