$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/XWxSue2eziKR9B4ozBoURyQGl9o.roa File: XWxSue2eziKR9B4ozBoURyQGl9o.roa (raw, json) Hash identifier: EVgv6MgWM8fP180PibCwlBCtl3fApUFJMy22LSVQtqc= Subject key identifier: 5D:6C:52:B9:ED:9E:CE:22:91:F4:1E:28:CC:1A:14:47:24:06:97:DA Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A7E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/XWxSue2eziKR9B4ozBoURyQGl9o.roa Signing time: Sun 30 Jun 2024 01:52:32 +0000 ROA not before: Sun 30 Jun 2024 01:52:32 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 110.158.134.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2686 (0xa7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:52:32 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=5D6C52B9ED9ECE2291F41E28CC1A1447240697DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c5:18:e1:1a:21:d9:c4:83:e6:ac:9f:c6:21: ea:07:19:a7:3d:d8:26:e5:4c:0a:49:71:cd:59:07: f6:f8:c3:77:27:4a:ca:00:7a:fd:cf:34:5f:21:13: e4:56:57:8a:c9:44:4f:5d:1c:c4:54:d1:bb:33:e0: e3:17:23:fd:6b:b6:25:17:69:1d:df:72:b0:9b:e9: 6b:3c:7e:cf:85:fa:ce:1f:f1:3d:f3:bf:8a:e2:9e: 78:b6:c4:e8:64:f1:42:05:4b:19:b1:d9:27:aa:50: ea:d9:61:dc:f4:8d:aa:c2:a3:c4:b6:df:37:8b:e4: 6e:de:b8:05:f5:22:c6:44:97:d6:89:83:d8:0c:c9: bd:c1:54:52:f9:82:d2:2e:e6:7d:68:61:73:03:ef: ed:af:6b:6e:d0:1e:84:43:d0:0b:4b:61:de:fc:9b: 44:52:1f:c2:74:5c:9a:5f:b2:5f:4e:b5:8b:da:8c: ae:5a:c3:d7:8e:df:8e:8b:f0:0a:f2:94:c9:18:6b: f9:68:58:3e:e6:07:dc:71:f7:ff:c4:19:da:f3:1e: 52:70:37:e6:e8:14:04:7e:e2:74:ad:62:99:be:fe: 6b:36:dd:48:3e:f6:17:1c:d5:98:59:67:b9:b6:4b: ff:3b:55:44:fd:20:e5:a4:bf:28:bc:dd:09:03:49: b3:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:6C:52:B9:ED:9E:CE:22:91:F4:1E:28:CC:1A:14:47:24:06:97:DA X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/XWxSue2eziKR9B4ozBoURyQGl9o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.158.134.0/23 Signature Algorithm: sha256WithRSAEncryption 42:ef:68:41:6d:24:6e:3e:67:48:40:09:05:c8:b9:43:fc:14: 9a:c8:49:ba:f7:50:1d:cb:10:04:e7:74:ba:fa:6e:33:a3:ff: f7:51:c1:3f:d6:11:f8:bb:1b:86:8b:60:55:5f:f8:ce:0f:73: 02:31:84:b9:4f:42:14:81:28:2d:a1:1e:af:e6:fb:1d:51:cb: e3:32:7c:7a:56:37:e7:3f:15:db:ad:f9:4c:08:c0:07:99:76: d0:1f:61:cf:3c:bd:3d:f4:03:ff:20:d1:07:8c:6d:3c:b6:59: bb:76:a1:37:02:77:32:31:1a:e8:f1:f8:f8:97:a5:90:f1:b0: 22:52:79:b8:bc:34:b5:e7:92:7b:8e:57:8f:91:4f:30:7c:92: 31:3a:fe:8e:5a:19:66:c0:c6:c1:77:56:26:89:23:4d:55:99: 85:4b:25:03:c2:e6:72:de:a5:d4:f3:17:85:c0:ec:a3:18:8f: b2:b7:10:07:bd:e6:27:36:19:3f:48:9b:2c:ec:fd:6a:a2:34: b4:07:cf:39:1b:d4:4d:5e:08:bd:5d:d6:fd:b0:32:cb:e4:e2: f9:62:0d:2d:33:ac:86:a5:88:1c:cc:39:a1:b4:42:d3:81:4d: 9c:fa:a9:1d:57:f5:e5:76:05:b0:11:cb:0b:1f:cf:ae:df:89: 98:d6:aa:09 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCn4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTUyMzJaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDVENkM1MkI5RUQ5RUNF MjI5MUY0MUUyOENDMUExNDQ3MjQwNjk3REEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsxRjhGiHZxIPmrJ/GIeoHGac92CblTApJcc1ZB/b4w3cnSsoA ev3PNF8hE+RWV4rJRE9dHMRU0bsz4OMXI/1rtiUXaR3fcrCb6Ws8fs+F+s4f8T3z v4rinni2xOhk8UIFSxmx2SeqUOrZYdz0jarCo8S23zeL5G7euAX1IsZEl9aJg9gM yb3BVFL5gtIu5n1oYXMD7+2va27QHoRD0AtLYd78m0RSH8J0XJpfsl9OtYvajK5a w9eO346L8ArylMkYa/loWD7mB9xx9//EGdrzHlJwN+boFAR+4nStYpm+/ms23Ug+ 9hcc1ZhZZ7m2S/87VUT9IOWkvyi83QkDSbMLAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUXWxSue2eziKR9B4ozBoURyQGl9owHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1hXeFN1ZTJlemlLUjlCNG96Qm9VUnlRR2w5by5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFunoYwDQYJKoZIhvcNAQELBQADggEBAELvaEFtJG4+Z0hACQXIuUP8FJrI Sbr3UB3LEATndLr6bjOj//dRwT/WEfi7G4aLYFVf+M4PcwIxhLlPQhSBKC2hHq/m +x1Ry+MyfHpWN+c/Fdut+UwIwAeZdtAfYc88vT30A/8g0QeMbTy2Wbt2oTcCdzIx Gujx+PiXpZDxsCJSebi8NLXnknuOV4+RTzB8kjE6/o5aGWbAxsF3ViaJI01VmYVL JQPC5nLepdTzF4XA7KMYj7K3EAe95ic2GT9Imyzs/WqiNLQHzzkb1E1eCL1d1v2w Msvk4vliDS0zrIaliBzMOaG0QtOBTZz6qR1X9eV2BbARywsfz67fiZjWqgk= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:01 2024 by rpki-client on console-fra.rpki-client.org