$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/_NNcRX4I2-Jou2psGAsm-gSVqYk.roa File: _NNcRX4I2-Jou2psGAsm-gSVqYk.roa (raw, json) Hash identifier: RlK8BlsaZIRYnfFE5v/dtdDRttBwTSkkwwkcTiOYORk= Subject key identifier: FC:D3:5C:45:7E:08:DB:E2:68:BB:6A:6C:18:0B:26:FA:04:95:A9:89 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A5F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/_NNcRX4I2-Jou2psGAsm-gSVqYk.roa Signing time: Sun 30 Jun 2024 01:50:22 +0000 ROA not before: Sun 30 Jun 2024 01:50:22 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 220.159.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2655 (0xa5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:50:22 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=FCD35C457E08DBE268BB6A6C180B26FA0495A989 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:da:c6:8f:47:9a:79:d2:56:56:b8:86:58:63: 1c:ca:7c:42:de:ab:33:5d:05:cf:8f:ac:c3:98:79: 33:46:4d:ca:85:ce:7e:10:44:c7:47:74:43:29:43: 1c:23:68:68:ee:c4:b3:94:7b:ff:41:64:0c:f4:d2: cf:d3:db:6b:b4:e6:9a:ae:51:4c:af:7b:32:c9:1b: a0:ae:a8:0c:b2:59:78:0d:97:19:7d:5a:08:2a:54: 9f:20:5b:42:eb:fa:36:5a:e7:a6:75:31:86:8f:78: db:e2:e4:0c:39:cc:0b:cc:59:4c:a9:9d:19:14:5f: 26:e5:d5:2f:11:71:47:d1:e3:72:b3:8b:4a:ae:83: ef:f3:74:0a:64:b1:95:58:1e:29:73:d7:c3:39:cb: 45:c3:4d:6c:b1:de:a6:4e:17:a9:03:4c:ac:cb:4a: b1:37:fa:07:e1:f6:23:96:f9:ba:29:b7:53:35:f8: e1:c3:cf:56:33:3b:9b:6c:67:10:be:77:0f:26:e1: cd:f2:bc:d6:c1:f7:4e:6e:5d:96:39:93:06:39:85: 49:c7:d0:7c:f0:ff:fe:d2:c0:35:57:5e:3d:43:94: 2b:18:1c:24:bb:fa:56:6e:cc:fa:25:38:42:ae:12: 28:d7:b6:b0:fb:24:ef:fb:b3:02:47:53:7b:8d:95: 24:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:D3:5C:45:7E:08:DB:E2:68:BB:6A:6C:18:0B:26:FA:04:95:A9:89 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/_NNcRX4I2-Jou2psGAsm-gSVqYk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.233.0/24 Signature Algorithm: sha256WithRSAEncryption a5:cd:d6:2e:38:1d:3b:80:4e:3a:a4:f4:fe:46:15:3d:81:0e: 69:9b:d2:d1:74:0b:a4:6b:76:90:c9:ea:68:9e:35:56:3e:55: 09:52:5f:d4:0e:4f:21:1f:40:c8:66:6c:ab:ad:86:76:d7:00: e8:44:be:e1:6b:7d:59:a4:eb:9b:60:d6:b4:ce:89:8a:8b:85: f5:f0:41:6b:28:ee:53:be:c6:be:26:21:ca:00:35:61:d7:04: 3a:49:df:6f:3a:94:43:e1:a2:7a:63:d8:dd:66:76:e7:1d:b1: 55:30:3c:57:da:76:09:5c:c3:03:90:ec:73:72:3e:d8:a7:41: 9e:e6:2a:2d:4c:4c:0a:d9:70:f9:62:03:79:a2:8f:08:04:67: 39:19:73:ec:2f:84:d4:92:ce:d4:52:c4:f3:2b:06:74:d5:97: b8:0c:07:91:80:71:09:72:86:bd:e6:c1:90:0c:4f:49:0a:9a: 09:a0:b0:c2:d1:cb:10:b5:3e:83:55:dd:19:c8:55:c4:b3:98: ea:7d:34:f4:d7:8d:de:6a:6e:28:31:d3:2d:65:f0:e6:e8:8e: d0:fd:13:5f:95:c1:c2:df:5d:bc:4d:b5:f8:26:a8:4c:07:b1: 2c:e0:05:57:75:00:c7:8b:ca:df:c3:e1:28:12:1d:db:60:c3: e2:e8:79:86 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCl8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTUwMjJaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEZDRDM1QzQ1N0UwOERC RTI2OEJCNkE2QzE4MEIyNkZBMDQ5NUE5ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDy2saPR5p50lZWuIZYYxzKfELeqzNdBc+PrMOYeTNGTcqFzn4Q RMdHdEMpQxwjaGjuxLOUe/9BZAz00s/T22u05pquUUyvezLJG6CuqAyyWXgNlxl9 WggqVJ8gW0Lr+jZa56Z1MYaPeNvi5Aw5zAvMWUypnRkUXybl1S8RcUfR43Kzi0qu g+/zdApksZVYHilz18M5y0XDTWyx3qZOF6kDTKzLSrE3+gfh9iOW+bopt1M1+OHD z1YzO5tsZxC+dw8m4c3yvNbB905uXZY5kwY5hUnH0Hzw//7SwDVXXj1DlCsYHCS7 +lZuzPolOEKuEijXtrD7JO/7swJHU3uNlST9AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU/NNcRX4I2+Jou2psGAsm+gSVqYkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L19OTmNSWDRJMi1Kb3UycHNHQXNtLWdTVnFZay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADcn+kwDQYJKoZIhvcNAQELBQADggEBAKXN1i44HTuATjqk9P5GFT2BDmmb 0tF0C6RrdpDJ6mieNVY+VQlSX9QOTyEfQMhmbKuthnbXAOhEvuFrfVmk65tg1rTO iYqLhfXwQWso7lO+xr4mIcoANWHXBDpJ3286lEPhonpj2N1mducdsVUwPFfadglc wwOQ7HNyPtinQZ7mKi1MTArZcPliA3mijwgEZzkZc+wvhNSSztRSxPMrBnTVl7gM B5GAcQlyhr3mwZAMT0kKmgmgsMLRyxC1PoNV3RnIVcSzmOp9NPTXjd5qbigx0y1l 8ObojtD9E1+VwcLfXbxNtfgmqEwHsSzgBVd1AMeLyt/D4SgSHdtgw+LoeYY= -----END CERTIFICATE-----Generated at Mon Nov 25 23:59:11 2024 by rpki-client on console-fra.rpki-client.org