$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/aq-FSixXSD93NVg7UfWxm73QCHQ.roa File: aq-FSixXSD93NVg7UfWxm73QCHQ.roa (raw, json) Hash identifier: XnSTHwLEs460nx5e9vOL9Qxmeb1FBEUxTP2T9OgNq1g= Subject key identifier: 6A:AF:85:4A:2C:57:48:3F:77:35:58:3B:51:F5:B1:9B:BD:D0:08:74 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 079D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aq-FSixXSD93NVg7UfWxm73QCHQ.roa Signing time: Tue 30 Apr 2024 02:06:28 +0000 ROA not before: Tue 30 Apr 2024 02:06:28 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.74.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1949 (0x79d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:06:28 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=6AAF854A2C57483F7735583B51F5B19BBDD00874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:71:2b:11:dc:2c:36:1a:4d:73:65:90:04:84: a6:64:e8:8d:0b:66:3a:63:5a:01:e0:9f:0d:24:6a: bb:84:55:02:62:a3:f8:40:3c:ff:b0:dc:99:00:bf: dc:42:81:62:06:5e:c4:6f:dd:c4:a1:c4:57:84:02: 3f:fa:7f:b6:dc:ed:50:ea:96:f1:b8:81:e4:22:52: 09:82:72:8a:53:ce:c7:78:6b:27:6c:1a:2e:73:01: e3:e8:e8:21:1d:0b:87:eb:9f:8f:dd:50:02:7d:73: 5e:ca:fd:25:2c:6e:39:9e:48:e6:24:a0:9f:eb:7e: ff:c6:c4:2e:02:b7:61:16:c9:f4:99:5b:fd:57:55: 29:14:cd:4c:20:3a:96:72:a9:ca:66:08:e1:91:cf: 26:fb:53:36:9f:b9:c2:20:6d:8f:b4:0e:98:2d:d8: e7:0f:2e:8e:8e:14:95:f3:bb:c9:12:b7:18:10:71: bc:35:2b:ca:da:a4:b6:c0:b5:d0:3d:14:1e:2f:e1: a6:df:47:ea:e6:d8:27:cd:ac:8d:46:f7:b7:79:d0: 11:46:bb:26:c9:65:a9:90:cc:54:5c:da:1f:87:de: 8f:0d:8c:6f:ff:52:44:8f:86:ff:84:74:28:d5:3c: 6f:9e:f2:e7:aa:b2:06:e9:7e:cb:98:d7:14:4c:a5: 0a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:AF:85:4A:2C:57:48:3F:77:35:58:3B:51:F5:B1:9B:BD:D0:08:74 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aq-FSixXSD93NVg7UfWxm73QCHQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.74.240.0/20 Signature Algorithm: sha256WithRSAEncryption 83:ad:e7:3f:b9:2f:c6:1a:f1:9e:3a:b3:f2:ab:c9:9d:9f:b1: f1:d3:e9:e0:1d:df:52:e0:19:8a:e7:63:b3:5b:a7:3d:1e:94: 51:85:3e:e9:c6:35:ef:ed:de:82:5d:41:05:44:f6:f4:1f:51: e6:16:26:30:fc:8d:a2:c7:2c:dc:43:a6:21:c9:3e:0b:85:fb: a7:ef:89:1b:62:ce:27:4b:09:6e:36:35:b9:01:73:9b:2b:01: 1d:99:6a:48:c3:27:91:11:99:49:ae:4e:46:f7:cc:e3:3e:17: 5d:aa:8e:3f:8d:b3:74:5f:f4:1b:9f:14:71:9e:ba:ef:f4:28: 49:3b:cb:4d:c3:81:7f:2f:2d:52:a5:d5:46:e1:08:4d:bd:c3: 8f:6e:4e:9d:33:2c:11:73:4f:5b:e3:16:aa:08:1f:c5:6e:16: 29:b1:e3:8c:75:19:1e:cc:85:8a:ff:00:2f:eb:fb:d2:3e:46: 3a:6d:ae:bc:4f:4b:5c:c8:50:90:cb:05:67:a1:f3:36:a8:0d: 70:6f:45:53:66:23:1b:f4:1f:fb:80:89:96:68:8f:ec:69:ee: 4b:be:ef:54:dc:a8:87:ee:fb:c4:de:34:f0:00:22:37:73:21: 6e:bb:83:3e:c5:7d:84:02:64:b2:c2:63:48:44:9a:7b:71:12: 46:bf:61:2f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB50wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjA2MjhaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDZBQUY4NTRBMkM1NzQ4 M0Y3NzM1NTgzQjUxRjVCMTlCQkREMDA4NzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9cSsR3Cw2Gk1zZZAEhKZk6I0LZjpjWgHgnw0karuEVQJio/hA PP+w3JkAv9xCgWIGXsRv3cShxFeEAj/6f7bc7VDqlvG4geQiUgmCcopTzsd4ayds Gi5zAePo6CEdC4frn4/dUAJ9c17K/SUsbjmeSOYkoJ/rfv/GxC4Ct2EWyfSZW/1X VSkUzUwgOpZyqcpmCOGRzyb7UzafucIgbY+0Dpgt2OcPLo6OFJXzu8kStxgQcbw1 K8rapLbAtdA9FB4v4abfR+rm2CfNrI1G97d50BFGuybJZamQzFRc2h+H3o8NjG// UkSPhv+EdCjVPG+e8ueqsgbpfsuY1xRMpQo3AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUaq+FSixXSD93NVg7UfWxm73QCHQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2FxLUZTaXhYU0Q5M05WZzdVZld4bTczUUNIUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQBSvAwDQYJKoZIhvcNAQELBQADggEBAIOt5z+5L8Ya8Z46s/KryZ2fsfHT 6eAd31LgGYrnY7Nbpz0elFGFPunGNe/t3oJdQQVE9vQfUeYWJjD8jaLHLNxDpiHJ PguF+6fviRtizidLCW42NbkBc5srAR2ZakjDJ5ERmUmuTkb3zOM+F12qjj+Ns3Rf 9BufFHGeuu/0KEk7y03DgX8vLVKl1UbhCE29w49uTp0zLBFzT1vjFqoIH8VuFimx 44x1GR7MhYr/AC/r+9I+RjptrrxPS1zIUJDLBWeh8zaoDXBvRVNmIxv0H/uAiZZo j+xp7ku+71TcqIfu+8TeNPAAIjdzIW67gz7FfYQCZLLCY0hEmntxEka/YS8= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:01 2024 by rpki-client on console-fra.rpki-client.org