$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/cc2XxI97vcpzu4nSa7v6roG_ngw.roa File: cc2XxI97vcpzu4nSa7v6roG_ngw.roa (raw, json) Hash identifier: 6IhzBmzYmQqm+1feuPV9UVjQVPWp2Lo+DzRgl7TKZIs= Subject key identifier: 71:CD:97:C4:8F:7B:BD:CA:73:BB:89:D2:6B:BB:FA:AE:81:BF:9E:0C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 06B4 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cc2XxI97vcpzu4nSa7v6roG_ngw.roa Signing time: Tue 30 Apr 2024 01:46:49 +0000 ROA not before: Tue 30 Apr 2024 01:46:49 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.76.152.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1716 (0x6b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:46:49 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=71CD97C48F7BBDCA73BB89D26BBBFAAE81BF9E0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:71:53:8a:2f:7b:6a:b8:99:42:1f:eb:4c:93: 22:eb:25:73:16:2c:4a:43:c3:d4:d2:0a:3e:a6:81: 11:3e:f2:ab:ce:aa:61:8f:b0:f8:ee:fb:07:59:d6: 9b:77:72:0c:76:42:ee:b5:32:f3:50:ca:9e:e9:44: 59:60:7e:7e:2f:92:c8:92:fc:52:dc:35:e6:cf:08: 3c:a6:fc:fb:6a:b1:d1:fb:0d:0d:9d:ac:60:bb:4a: a0:2a:b2:45:8a:51:34:f5:a9:e2:20:53:98:85:cc: 2f:67:f5:61:c1:68:40:48:25:10:4e:00:82:97:0a: e1:24:95:8d:6c:53:94:cc:09:dd:e5:a5:6f:ac:33: 5c:85:9c:d7:c3:f4:dc:2f:b2:80:28:d4:8e:52:3f: 85:f5:4b:31:a0:9d:22:50:a9:82:34:72:6b:de:fd: 45:52:8c:93:20:48:c1:44:24:ed:70:78:63:26:1c: 77:95:95:cc:ea:65:ed:75:72:47:b0:a9:72:0c:62: 2a:e1:3b:bc:de:e0:c6:c3:af:c8:7e:df:36:d3:cf: 27:43:a2:b6:21:7f:a8:db:8c:ae:10:46:2f:d9:33: da:39:6b:85:a2:95:a9:20:82:22:7b:3d:ee:cc:d6: a9:dc:53:22:36:5e:c5:1a:01:ee:18:4c:cc:1b:2b: 83:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:CD:97:C4:8F:7B:BD:CA:73:BB:89:D2:6B:BB:FA:AE:81:BF:9E:0C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cc2XxI97vcpzu4nSa7v6roG_ngw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.152.0/21 Signature Algorithm: sha256WithRSAEncryption 88:98:88:72:3e:d9:1f:12:ad:2c:d7:8b:81:2c:7d:c3:65:ac: 26:41:00:8c:71:92:96:3f:ba:07:1d:47:92:76:a4:61:e7:f6: 04:5c:15:a3:5c:d1:c5:df:1d:a9:c2:02:35:9b:12:5a:5e:35: cc:d7:f8:e6:4e:90:c3:7e:46:c3:79:d6:e2:bf:14:cd:c3:37: 57:24:07:32:b6:04:23:f4:c9:a6:65:78:f5:d9:df:1c:5b:06: ea:05:3d:6b:5d:c2:da:3d:9b:9d:2e:45:bb:c7:d1:1f:8b:b7: c2:5a:7c:ac:18:3e:4d:1c:fe:d2:23:39:b0:66:79:4e:23:48: e1:f7:58:6a:47:cd:4f:bf:ab:7d:5f:25:a8:29:8a:39:d6:9a: e8:ef:b7:90:79:bd:86:a8:5c:33:df:d8:8d:4a:49:ff:60:65: f7:9d:15:28:a3:7f:ed:08:f8:65:0e:de:46:7a:3f:86:2d:64: ba:c1:92:7f:1f:6e:82:b0:de:28:26:7b:e3:91:00:19:bf:aa: f8:95:3c:1c:0b:ed:38:34:d5:c8:d7:93:5a:89:8d:b6:29:45: d2:be:57:ba:16:8a:06:59:4b:ae:d1:ca:de:1b:83:22:1f:c9: 2d:5b:6c:43:12:74:74:02:43:c6:6e:d6:68:a8:76:12:91:5a: 71:a0:76:51 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBrQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTQ2NDlaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDcxQ0Q5N0M0OEY3QkJE Q0E3M0JCODlEMjZCQkJGQUFFODFCRjlFMEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqcVOKL3tquJlCH+tMkyLrJXMWLEpDw9TSCj6mgRE+8qvOqmGP sPju+wdZ1pt3cgx2Qu61MvNQyp7pRFlgfn4vksiS/FLcNebPCDym/PtqsdH7DQ2d rGC7SqAqskWKUTT1qeIgU5iFzC9n9WHBaEBIJRBOAIKXCuEklY1sU5TMCd3lpW+s M1yFnNfD9NwvsoAo1I5SP4X1SzGgnSJQqYI0cmve/UVSjJMgSMFEJO1weGMmHHeV lczqZe11ckewqXIMYirhO7ze4MbDr8h+3zbTzydDorYhf6jbjK4QRi/ZM9o5a4Wi lakggiJ7Pe7M1qncUyI2XsUaAe4YTMwbK4PBAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUcc2XxI97vcpzu4nSa7v6roG/ngwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2NjMlh4STk3dmNwenU0blNhN3Y2cm9HX25ndy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBTJgwDQYJKoZIhvcNAQELBQADggEBAIiYiHI+2R8SrSzXi4EsfcNlrCZB AIxxkpY/ugcdR5J2pGHn9gRcFaNc0cXfHanCAjWbElpeNczX+OZOkMN+RsN51uK/ FM3DN1ckBzK2BCP0yaZlePXZ3xxbBuoFPWtdwto9m50uRbvH0R+Lt8JafKwYPk0c /tIjObBmeU4jSOH3WGpHzU+/q31fJagpijnWmujvt5B5vYaoXDPf2I1KSf9gZfed FSijf+0I+GUO3kZ6P4YtZLrBkn8fboKw3igme+ORABm/qviVPBwL7Tg01cjXk1qJ jbYpRdK+V7oWigZZS67Ryt4bgyIfyS1bbEMSdHQCQ8Zu1miodhKRWnGgdlE= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:48 2024 by rpki-client on console-fra.rpki-client.org