$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/WJwREvWkXrNbU2WVNekq73nlWXY.roa File: WJwREvWkXrNbU2WVNekq73nlWXY.roa (raw, json) Hash identifier: OwioUA9dbs9uMqpSX+TqB17iUAITVgoeb/pQoU9R5r8= Subject key identifier: 58:9C:11:12:F5:A4:5E:B3:5B:53:65:95:35:E9:2A:EF:79:E5:59:76 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0983 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/WJwREvWkXrNbU2WVNekq73nlWXY.roa Signing time: Sun 30 Jun 2024 01:36:22 +0000 ROA not before: Sun 30 Jun 2024 01:36:22 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 220.210.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2435 (0x983) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:36:22 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=589C1112F5A45EB35B53659535E92AEF79E55976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:42:7d:8b:ca:11:d1:07:69:16:aa:43:29:94: 84:71:8b:6a:a0:8d:e8:b7:d6:55:0f:04:5c:07:67: ad:25:7e:78:fe:9a:c0:3f:cd:bd:10:6d:cd:aa:88: 44:b7:5a:52:94:11:c7:d9:80:af:57:3a:60:f8:f3: 1f:38:ca:16:9c:a5:d4:51:fc:81:43:79:a4:4b:a2: 99:bf:5c:b4:86:95:55:75:99:91:ea:26:0d:aa:d4: 3b:04:55:94:15:63:64:ba:71:14:54:b5:a4:2a:85: 79:fa:62:3f:46:94:be:ba:d1:d4:d1:0e:81:1d:3c: 61:7f:7d:d7:d1:d5:ad:8d:01:d8:2d:d2:67:41:81: d2:ff:4d:22:5e:55:b0:cb:a3:39:d4:c3:ff:ce:82: 12:34:6c:6a:c9:c6:e5:66:1a:b4:f9:9d:3d:2a:f2: 74:a3:77:f1:c9:c2:e6:60:b1:0c:ff:f1:93:53:db: dd:f5:7f:8f:42:f2:43:a8:cc:48:f8:26:fc:28:c8: ab:bb:9a:ec:c1:fb:4e:fc:bc:4e:d4:ac:a3:57:47: 82:84:31:d0:90:66:82:d2:3e:78:ea:90:84:be:4c: 13:7c:b4:74:e5:c3:75:db:89:ea:bf:ac:02:7e:39: 4e:58:18:7e:cc:28:d8:af:5b:b1:83:89:c5:76:7d: 04:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:9C:11:12:F5:A4:5E:B3:5B:53:65:95:35:E9:2A:EF:79:E5:59:76 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/WJwREvWkXrNbU2WVNekq73nlWXY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.40.0/21 Signature Algorithm: sha256WithRSAEncryption 51:35:2a:29:31:55:4f:c2:7f:94:d0:e2:c4:62:f7:4a:74:b2: 2c:53:c8:f5:73:8d:89:e4:12:e2:76:e3:5e:e4:02:f6:16:58: 1a:08:f4:0c:79:ba:25:b7:00:bc:1e:db:ce:e3:4b:1c:73:3d: c7:5d:5d:7c:bb:94:bc:01:9b:e0:30:6d:d8:69:e4:da:5b:aa: ab:1b:67:c0:d7:8f:93:9e:07:fa:9b:63:33:d7:d2:01:7f:4d: 29:19:aa:61:50:ae:ab:62:29:81:2d:e6:d8:14:c3:24:12:45: 72:e3:af:41:a9:39:19:1f:1f:31:98:41:71:21:01:67:33:a0: af:85:c9:9c:c2:12:aa:d0:74:28:62:81:9e:82:83:c6:72:9a: 43:6f:b9:14:ff:73:90:c2:2e:06:d8:48:b2:e8:14:ed:aa:a5: 2a:67:71:90:47:4f:bb:28:04:e9:c0:bd:e6:07:15:25:83:3d: 43:1b:1c:20:c6:72:7b:a9:01:92:16:49:41:3c:ce:79:60:88: 1c:a0:73:0c:72:61:df:cc:0c:61:66:9e:89:ae:b1:11:7c:b0: 4e:20:9f:23:8d:b2:a1:05:ea:44:dc:2a:02:5b:11:2e:29:d3: b7:cc:9d:3a:69:f3:77:75:17:ba:4a:39:4b:8e:20:ea:6d:7e: a0:c7:78:d9 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCYMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTM2MjJaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDU4OUMxMTEyRjVBNDVF QjM1QjUzNjU5NTM1RTkyQUVGNzlFNTU5NzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTQn2LyhHRB2kWqkMplIRxi2qgjei31lUPBFwHZ60lfnj+msA/ zb0Qbc2qiES3WlKUEcfZgK9XOmD48x84yhacpdRR/IFDeaRLopm/XLSGlVV1mZHq Jg2q1DsEVZQVY2S6cRRUtaQqhXn6Yj9GlL660dTRDoEdPGF/fdfR1a2NAdgt0mdB gdL/TSJeVbDLoznUw//OghI0bGrJxuVmGrT5nT0q8nSjd/HJwuZgsQz/8ZNT2931 f49C8kOozEj4JvwoyKu7muzB+078vE7UrKNXR4KEMdCQZoLSPnjqkIS+TBN8tHTl w3Xbieq/rAJ+OU5YGH7MKNivW7GDicV2fQSPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUWJwREvWkXrNbU2WVNekq73nlWXYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1dKd1JFdldrWHJOYlUyV1ZOZWtxNzNubFdYWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPc0igwDQYJKoZIhvcNAQELBQADggEBAFE1KikxVU/Cf5TQ4sRi90p0sixT yPVzjYnkEuJ2417kAvYWWBoI9Ax5uiW3ALwe287jSxxzPcddXXy7lLwBm+Awbdhp 5NpbqqsbZ8DXj5OeB/qbYzPX0gF/TSkZqmFQrqtiKYEt5tgUwyQSRXLjr0GpORkf HzGYQXEhAWczoK+FyZzCEqrQdChigZ6Cg8ZymkNvuRT/c5DCLgbYSLLoFO2qpSpn cZBHT7soBOnAveYHFSWDPUMbHCDGcnupAZIWSUE8znlgiBygcwxyYd/MDGFmnomu sRF8sE4gnyONsqEF6kTcKgJbES4p07fMnTpp83d1F7pKOUuOIOptfqDHeNk= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:01 2024 by rpki-client on console-fra.rpki-client.org