$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/cYsp85n5RAjNi_BxKHnxqy-OiY4.roa File: cYsp85n5RAjNi_BxKHnxqy-OiY4.roa (raw, json) Hash identifier: JnwZ4eL6qECB2LxgRRtnqOqCzpnaO1I8KHupTk2AGAc= Subject key identifier: 71:8B:29:F3:99:F9:44:08:CD:8B:F0:71:28:79:F1:AB:2F:8E:89:8E Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0684 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cYsp85n5RAjNi_BxKHnxqy-OiY4.roa Signing time: Tue 30 Apr 2024 01:38:04 +0000 ROA not before: Tue 30 Apr 2024 01:38:04 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.84.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1668 (0x684) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:38:04 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=718B29F399F94408CD8BF0712879F1AB2F8E898E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:80:22:a1:62:a5:c1:1d:f3:e6:fd:64:b7:b4: d1:7b:8d:83:67:de:c5:d4:91:0e:6e:9d:26:ba:88: 8c:5d:7a:eb:28:68:c4:d6:9f:15:63:8e:02:62:5d: 47:20:ba:1e:79:7d:90:75:36:7d:04:9a:96:e2:3a: a3:91:99:26:4b:76:96:3e:a1:69:e3:d4:24:fa:ef: a2:88:cc:86:76:ec:5d:21:05:f4:3f:c2:86:a5:a0: 9d:7a:dc:84:9e:7e:70:7e:c5:5f:41:da:54:41:e3: 56:37:94:88:17:fd:1f:f0:44:95:a3:2b:97:55:3f: c2:3d:10:cd:fd:c5:0a:25:71:6d:df:40:29:3b:e5: 8f:62:2b:bf:5e:77:c0:d3:ea:31:d1:4d:cb:c6:f0: 5e:77:6c:52:e5:fc:04:8c:0d:24:98:86:33:44:8b: 54:87:a4:fe:2e:a8:1f:c9:77:27:2e:98:a2:3a:0f: 2b:ff:90:d6:3b:38:cf:41:1b:2f:3d:5d:13:8f:07: 6a:f5:40:65:dc:1a:dd:90:4e:aa:99:8a:99:e1:46: 7b:01:24:cd:91:80:0e:2e:14:f2:55:ce:97:44:f5: e0:76:1d:a5:0e:1a:1c:e2:f9:59:5e:a6:9d:90:39: 14:98:d6:5d:79:7b:e2:2e:f0:f8:00:47:8d:ca:8a: 25:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:8B:29:F3:99:F9:44:08:CD:8B:F0:71:28:79:F1:AB:2F:8E:89:8E X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cYsp85n5RAjNi_BxKHnxqy-OiY4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.84.0/22 Signature Algorithm: sha256WithRSAEncryption 52:98:6b:74:83:e8:29:2a:76:7f:fe:24:73:f0:5f:3f:bb:fd: 13:89:9b:19:b8:c5:2e:d6:e5:9a:e4:84:87:77:f4:a2:03:ae: 60:b5:ea:a4:91:17:0c:34:e3:05:11:bb:92:72:e8:af:47:a9: 32:52:87:a5:08:91:11:af:52:6d:aa:48:7e:a1:5d:3e:1e:12: 01:73:5c:a1:9d:87:a1:f2:8a:39:7f:4b:18:a1:d3:63:eb:42: 0f:ec:05:59:37:1d:6a:fb:9d:e5:52:0b:68:e2:fd:33:1c:b9: 44:8a:02:4e:a7:fe:2f:df:69:4a:52:a0:df:e8:8b:a2:38:86: 59:86:39:4a:af:1b:78:68:a2:23:a4:38:1c:db:86:b7:81:3e: 00:9b:8c:53:00:7f:56:6f:20:ec:ce:7d:70:2d:64:f5:fc:ee: a6:6b:d0:ce:7b:bf:a9:a3:1d:da:9b:bc:25:62:4c:17:32:f1: aa:a3:52:4c:56:93:ea:34:35:24:d4:9a:75:b3:0a:c1:3b:5d: bb:3f:b5:3b:91:45:b0:55:c5:5b:79:62:ce:0d:53:07:7e:ff: 1b:c3:93:39:47:20:dc:7b:86:8c:cb:21:d5:8a:dc:95:40:4f: 0f:84:56:a1:29:82:30:b6:8d:e8:88:44:90:dc:6b:9c:fa:cc: 39:5c:b1:f3 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBoQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTM4MDRaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDcxOEIyOUYzOTlGOTQ0 MDhDRDhCRjA3MTI4NzlGMUFCMkY4RTg5OEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/gCKhYqXBHfPm/WS3tNF7jYNn3sXUkQ5unSa6iIxdeusoaMTW nxVjjgJiXUcguh55fZB1Nn0EmpbiOqORmSZLdpY+oWnj1CT676KIzIZ27F0hBfQ/ woaloJ163ISefnB+xV9B2lRB41Y3lIgX/R/wRJWjK5dVP8I9EM39xQolcW3fQCk7 5Y9iK79ed8DT6jHRTcvG8F53bFLl/ASMDSSYhjNEi1SHpP4uqB/JdycumKI6Dyv/ kNY7OM9BGy89XROPB2r1QGXcGt2QTqqZipnhRnsBJM2RgA4uFPJVzpdE9eB2HaUO Ghzi+Vlepp2QORSY1l15e+Iu8PgAR43KiiWvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUcYsp85n5RAjNi/BxKHnxqy+OiY4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2NZc3A4NW41UkFqTmlfQnhLSG54cXktT2lZNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBT1QwDQYJKoZIhvcNAQELBQADggEBAFKYa3SD6Ckqdn/+JHPwXz+7/ROJ mxm4xS7W5ZrkhId39KIDrmC16qSRFww04wURu5Jy6K9HqTJSh6UIkRGvUm2qSH6h XT4eEgFzXKGdh6Hyijl/Sxih02PrQg/sBVk3HWr7neVSC2ji/TMcuUSKAk6n/i/f aUpSoN/oi6I4hlmGOUqvG3hooiOkOBzbhreBPgCbjFMAf1ZvIOzOfXAtZPX87qZr 0M57v6mjHdqbvCViTBcy8aqjUkxWk+o0NSTUmnWzCsE7Xbs/tTuRRbBVxVt5Ys4N Uwd+/xvDkzlHINx7hozLIdWK3JVATw+EVqEpgjC2jeiIRJDca5z6zDlcsfM= -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:42 2024 by rpki-client on console-ams.rpki-client.org