$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/d_YqSiko3oiJV7TcL59Y1VFYZ7k.roa File: d_YqSiko3oiJV7TcL59Y1VFYZ7k.roa (raw, json) Hash identifier: BKGQECRFJkRWrGQE8wmajngSqtLLRXJN3HSbgPB+Kok= Subject key identifier: 77:F6:2A:4A:29:28:DE:88:89:57:B4:DC:2F:9F:58:D5:51:58:67:B9 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0606 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/d_YqSiko3oiJV7TcL59Y1VFYZ7k.roa Signing time: Thu 29 Feb 2024 01:38:23 +0000 ROA not before: Thu 29 Feb 2024 01:38:23 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 9605 IP address blocks: 1.66.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:58:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1542 (0x606) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Feb 29 01:38:23 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=77F62A4A2928DE888957B4DC2F9F58D5515867B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c1:53:d7:e6:fc:59:9a:97:19:90:7e:fe:04: 1b:30:94:de:0c:66:5e:cc:54:25:9e:e2:db:da:27: 4c:e5:e0:dd:b9:77:0f:38:0e:c0:a8:ec:4d:6e:a9: f3:9f:bd:f0:64:c4:57:87:b5:fa:2e:98:bb:ca:82: 39:87:7a:c8:c6:ce:e9:60:dc:98:8e:23:b5:59:00: 01:e1:d0:75:fe:4b:93:93:5f:0a:a5:a0:11:fa:59: 04:6b:61:23:48:40:4b:fc:fb:ca:53:8e:6d:2e:9e: ea:bf:c5:04:f9:d1:6d:c7:24:51:2b:c9:4e:47:57: db:fb:b0:19:02:ad:da:09:5f:55:36:e4:3a:be:71: 5a:2c:f4:0c:ed:ce:09:3a:4e:85:dc:8f:d6:fc:3b: 5c:1c:2b:bd:ba:03:4d:04:85:ea:d8:84:09:7e:6e: a8:50:8f:94:46:d0:70:68:29:1d:4b:c8:f3:d9:5e: 15:e4:11:18:87:f0:5a:a2:4c:4a:0c:b8:1f:ed:6d: 02:45:9b:57:9a:d5:8c:3b:33:1b:90:3b:96:49:f8: 29:e4:a0:c5:0f:f2:ca:90:df:85:0c:91:19:5c:d5: 71:eb:13:5a:42:3b:21:b6:7a:55:ef:5b:40:a8:f4: c9:8f:d6:aa:79:8c:76:fa:d1:75:5d:33:92:88:a9: 19:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:F6:2A:4A:29:28:DE:88:89:57:B4:DC:2F:9F:58:D5:51:58:67:B9 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/d_YqSiko3oiJV7TcL59Y1VFYZ7k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.66.90.0/24 Signature Algorithm: sha256WithRSAEncryption e6:a3:63:74:47:dc:1c:f7:f9:1b:ed:43:ee:52:fc:6d:3c:ae: c6:ec:97:b0:d0:dc:9f:03:b2:b0:51:9e:67:d7:85:9a:c2:2a: 1f:a3:5c:35:6c:8e:bc:a6:0b:a9:79:8e:31:25:93:62:07:0f: 11:ad:09:a9:d3:87:bc:99:e8:7b:c5:1c:9b:15:db:bd:e2:51: 06:17:a0:3a:36:67:5d:35:b4:bf:97:52:d9:fe:9b:5a:1c:39: a5:ad:1f:d3:11:67:31:8c:aa:96:1b:ce:4a:b6:42:ed:f2:93: 59:c8:e4:7b:7c:78:d8:3b:8c:50:49:d4:73:e5:00:ed:fe:b9: 57:36:73:b2:ad:c6:d3:ad:88:5d:eb:24:44:2a:d9:02:0e:ae: ec:2f:9a:23:00:8f:df:16:8b:59:62:53:d7:fb:27:55:a0:38: 5e:e0:8a:5b:7d:4b:22:f0:db:fa:f1:46:54:04:54:34:de:14: c3:db:a7:4f:55:e8:dc:89:d8:5d:de:d8:c8:4d:c3:9e:75:2e: cc:d7:3e:44:0a:0c:66:e1:1e:b4:70:fa:3e:d2:84:ff:83:cd: 00:14:43:42:3c:72:a8:b2:3d:8d:68:d5:98:06:42:86:68:71: ef:46:04:34:41:fd:b8:0d:8c:9c:35:8f:30:f1:9f:1d:8b:25: 39:94:ee:10 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBgYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDAyMjkw MTM4MjNaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDc3RjYyQTRBMjkyOERF ODg4OTU3QjREQzJGOUY1OEQ1NTE1ODY3QjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQwVPX5vxZmpcZkH7+BBswlN4MZl7MVCWe4tvaJ0zl4N25dw84 DsCo7E1uqfOfvfBkxFeHtfoumLvKgjmHesjGzulg3JiOI7VZAAHh0HX+S5OTXwql oBH6WQRrYSNIQEv8+8pTjm0unuq/xQT50W3HJFEryU5HV9v7sBkCrdoJX1U25Dq+ cVos9Aztzgk6ToXcj9b8O1wcK726A00EherYhAl+bqhQj5RG0HBoKR1LyPPZXhXk ERiH8FqiTEoMuB/tbQJFm1ea1Yw7MxuQO5ZJ+CnkoMUP8sqQ34UMkRlc1XHrE1pC OyG2elXvW0Co9MmP1qp5jHb60XVdM5KIqRlfAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUd/YqSiko3oiJV7TcL59Y1VFYZ7kwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2RfWXFTaWtvM29pSlY3VGNMNTlZMVZGWVo3ay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABQlowDQYJKoZIhvcNAQELBQADggEBAOajY3RH3Bz3+RvtQ+5S/G08rsbs l7DQ3J8DsrBRnmfXhZrCKh+jXDVsjrymC6l5jjElk2IHDxGtCanTh7yZ6HvFHJsV 273iUQYXoDo2Z101tL+XUtn+m1ocOaWtH9MRZzGMqpYbzkq2Qu3yk1nI5Ht8eNg7 jFBJ1HPlAO3+uVc2c7KtxtOtiF3rJEQq2QIOruwvmiMAj98Wi1liU9f7J1WgOF7g ilt9SyLw2/rxRlQEVDTeFMPbp09V6NyJ2F3e2MhNw551LszXPkQKDGbhHrRw+j7S hP+DzQAUQ0I8cqiyPY1o1ZgGQoZoce9GBDRB/bgNjJw1jzDxnx2LJTmU7hA= -----END CERTIFICATE-----Generated at Fri Nov 22 14:21:24 2024 by rpki-client on console-ams.rpki-client.org