$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/YF2fIRiwIC7ERxevCiCwtm1d4i0.roa File: YF2fIRiwIC7ERxevCiCwtm1d4i0.roa (raw, json) Hash identifier: +aibR96HS268kjPxcGb34iejDfi/s2dSoFOrSrgn/ME= Subject key identifier: 60:5D:9F:21:18:B0:20:2E:C4:47:17:AF:0A:20:B0:B6:6D:5D:E2:2D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 09B8 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YF2fIRiwIC7ERxevCiCwtm1d4i0.roa Signing time: Sun 30 Jun 2024 01:38:23 +0000 ROA not before: Sun 30 Jun 2024 01:38:23 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.79.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2488 (0x9b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:38:23 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=605D9F2118B0202EC44717AF0A20B0B66D5DE22D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ca:73:86:8e:79:b8:24:67:8f:1f:ba:7d:b4: 08:4b:98:72:99:78:7b:ad:10:1a:ae:0d:03:5d:e7: 70:e4:be:ea:ba:e0:aa:79:02:6c:12:16:5d:94:1e: 7c:8c:99:cb:6b:1a:31:2d:83:6e:44:22:d4:aa:8c: e8:4d:c9:15:44:4e:97:db:ea:2c:cb:cd:c8:19:4a: 3f:55:fa:b0:6a:d4:55:66:11:25:53:00:ac:c1:c0: 01:b0:75:1d:52:47:fd:9a:d7:7d:d6:61:90:ae:a2: 73:24:9d:b8:b7:95:c3:3e:99:6a:e7:34:64:9d:e9: 6e:d4:43:49:6e:04:09:ec:36:63:c8:60:5b:3d:94: f9:4b:a2:00:d6:bb:0a:0c:b7:91:af:ff:b6:b6:40: a8:90:bb:28:64:fb:22:f6:03:07:3a:62:3e:a3:41: de:20:1b:b3:8e:00:11:2d:91:02:9d:c9:b3:71:65: d8:36:26:9a:43:52:a1:2e:72:3e:36:cb:68:bd:59: 79:54:4b:98:a6:05:af:3e:e5:ff:03:75:f0:14:81: 8b:48:14:86:97:56:1e:87:56:e8:dc:4f:72:9f:23: fb:d0:84:02:3b:01:84:35:53:42:73:4a:73:d7:89: 0a:b3:be:cd:83:1b:64:37:14:14:e4:ea:6e:6c:33: 55:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:5D:9F:21:18:B0:20:2E:C4:47:17:AF:0A:20:B0:B6:6D:5D:E2:2D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YF2fIRiwIC7ERxevCiCwtm1d4i0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.144.0/20 Signature Algorithm: sha256WithRSAEncryption a7:d9:d9:8a:cd:c1:6f:94:72:31:3f:1d:13:77:ff:0f:92:f5: e8:68:60:05:4f:66:08:c2:88:c9:a6:7b:c4:68:2e:06:12:c9: 84:dc:1b:0e:5b:4b:76:db:00:f8:fa:a6:fd:82:d3:04:b7:c2: ed:b8:7e:bb:7a:9f:25:8f:b8:e3:44:9a:7f:85:3b:c5:fa:68: 13:61:ab:fa:5e:e1:40:72:ca:18:a0:08:7e:b1:66:27:1d:77: b1:e7:e3:14:b0:16:87:ab:93:e0:24:80:fb:d0:98:76:4b:a0: fc:4f:54:40:c3:ad:ef:87:05:44:8e:07:88:83:59:c6:87:66: ed:c7:e9:eb:33:da:98:cb:96:c1:c5:eb:2e:c8:4a:cb:92:7b: d0:1f:68:42:dc:9c:2e:90:c2:b5:a3:b5:f3:d8:be:64:5f:c9: 7a:32:5e:9a:94:92:94:7a:b9:1c:1c:bb:36:00:cf:c0:ff:d9: 52:31:dd:f4:e2:2b:a9:86:89:83:6e:5b:70:05:9c:f0:0b:2b: df:4f:ff:0b:f7:9e:a2:5c:85:5d:f0:63:56:45:80:57:3f:31: 8e:34:33:63:d8:f7:8a:54:fd:ca:da:ad:9e:bf:03:d8:76:93: ae:5a:79:95:0c:57:a6:3a:6a:5f:51:a3:35:7a:84:37:2b:39: 3c:da:8b:36 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCbgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTM4MjNaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDYwNUQ5RjIxMThCMDIw MkVDNDQ3MTdBRjBBMjBCMEI2NkQ1REUyMkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzynOGjnm4JGePH7p9tAhLmHKZeHutEBquDQNd53Dkvuq64Kp5 AmwSFl2UHnyMmctrGjEtg25EItSqjOhNyRVETpfb6izLzcgZSj9V+rBq1FVmESVT AKzBwAGwdR1SR/2a133WYZCuonMknbi3lcM+mWrnNGSd6W7UQ0luBAnsNmPIYFs9 lPlLogDWuwoMt5Gv/7a2QKiQuyhk+yL2Awc6Yj6jQd4gG7OOABEtkQKdybNxZdg2 JppDUqEucj42y2i9WXlUS5imBa8+5f8DdfAUgYtIFIaXVh6HVujcT3KfI/vQhAI7 AYQ1U0JzSnPXiQqzvs2DG2Q3FBTk6m5sM1WBAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUYF2fIRiwIC7ERxevCiCwtm1d4i0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1lGMmZJUml3SUM3RVJ4ZXZDaUN3dG0xZDRpMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQBT5AwDQYJKoZIhvcNAQELBQADggEBAKfZ2YrNwW+UcjE/HRN3/w+S9eho YAVPZgjCiMmme8RoLgYSyYTcGw5bS3bbAPj6pv2C0wS3wu24frt6nyWPuONEmn+F O8X6aBNhq/pe4UByyhigCH6xZicdd7Hn4xSwFoerk+AkgPvQmHZLoPxPVEDDre+H BUSOB4iDWcaHZu3H6esz2pjLlsHF6y7ISsuSe9AfaELcnC6QwrWjtfPYvmRfyXoy XpqUkpR6uRwcuzYAz8D/2VIx3fTiK6mGiYNuW3AFnPALK99P/wv3nqJchV3wY1ZF gFc/MY40M2PY94pU/crarZ6/A9h2k65aeZUMV6Y6al9RozV6hDcrOTzaizY= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:01 2024 by rpki-client on console-fra.rpki-client.org