$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/dgpdFZu_fDrj7VxzmIFVG76RDD0.roa File: dgpdFZu_fDrj7VxzmIFVG76RDD0.roa (raw, json) Hash identifier: epemEpoQ5m3Ocgwm8gs0ZmcLRK9NgwDKyAEU0sWny6s= Subject key identifier: 76:0A:5D:15:9B:BF:7C:3A:E3:ED:5C:73:98:81:55:1B:BE:91:0C:3D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 09FD Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/dgpdFZu_fDrj7VxzmIFVG76RDD0.roa Signing time: Sun 30 Jun 2024 01:42:30 +0000 ROA not before: Sun 30 Jun 2024 01:42:30 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.76.68.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2557 (0x9fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:42:30 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=760A5D159BBF7C3AE3ED5C739881551BBE910C3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4a:0d:6e:78:93:21:a0:9b:d1:55:68:02:bc: 9b:2e:8e:6c:6a:45:f9:10:fc:ff:f4:71:53:c5:d2: 41:f0:5b:85:bc:cf:06:be:e6:8c:7f:04:96:7c:d6: e8:01:32:de:10:c2:d5:d8:7a:f3:83:34:75:61:ed: 1a:ed:b7:e5:1e:9b:ef:b6:3b:f6:5c:0e:1f:4f:ad: 9a:8e:17:ac:9e:f6:31:93:dc:d7:e2:4e:fd:e7:7a: c9:bc:fd:84:ea:42:00:26:9c:7d:88:c3:f1:23:90: 30:fc:2f:4e:f9:97:7e:22:6d:86:6d:f2:e6:21:65: dc:f0:21:09:30:25:57:53:75:09:75:87:41:f0:2a: 50:37:2f:53:25:0f:69:25:cc:5c:82:d8:8a:b4:69: ac:b6:ac:a6:70:4f:5d:4e:4b:75:d8:9b:61:34:16: 99:a8:cf:41:60:2c:a7:64:33:bf:66:63:ce:2b:62: 1f:e7:10:27:73:8a:c0:75:8a:f9:b0:2f:4b:22:de: 3f:6b:14:24:b4:e9:f1:e5:01:55:f4:40:71:42:07: 95:63:3c:d2:7f:c5:08:46:f8:c5:88:7b:15:3b:1b: e2:bf:42:85:9d:aa:8f:3d:9d:e5:b6:41:c2:aa:e4: fb:97:31:76:8f:4a:bd:2b:f9:e7:2b:34:b2:12:f8: 2b:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:0A:5D:15:9B:BF:7C:3A:E3:ED:5C:73:98:81:55:1B:BE:91:0C:3D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/dgpdFZu_fDrj7VxzmIFVG76RDD0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.68.0/22 Signature Algorithm: sha256WithRSAEncryption 05:c6:b0:83:6d:a0:d4:09:d6:57:71:df:08:d6:16:fd:f0:e7: ac:67:46:02:c0:4d:d9:c3:9a:aa:88:7f:80:c8:b6:ca:20:52: ff:bd:c4:d9:6b:c8:fe:9e:dc:3f:74:71:14:e7:22:9e:49:e3: 9a:e6:31:40:da:59:b4:4f:a0:06:ac:a2:86:9f:ef:7b:a1:c5: e7:6a:ce:17:db:18:f0:f7:e5:a9:f3:71:1f:93:e0:08:ca:01: c4:39:b3:18:3f:26:45:d1:c8:78:89:c8:70:51:06:b2:ac:04: 6d:cd:4f:2c:02:9a:6e:d0:a4:81:63:ff:3a:42:0e:68:cc:6f: 1d:5b:f0:f6:14:2c:a2:51:92:62:e8:59:15:28:53:20:d0:da: 9b:ab:35:2c:c6:3e:68:2f:8f:f5:ac:9e:e3:a9:97:72:30:7a: b3:a4:4e:59:3c:a3:df:45:50:25:62:1d:69:17:56:85:8c:17: 79:4f:76:71:32:f4:9d:9c:49:72:fe:f4:5e:3b:d8:64:67:25: 2b:67:f4:45:8c:94:75:12:6b:e9:f0:09:e8:55:0c:ab:e0:d7: 95:f4:76:fc:be:67:50:ce:92:6d:51:40:28:9d:ba:a9:e1:bc: be:4f:bb:c7:51:9a:17:b0:8f:9f:9a:26:08:12:37:39:77:ad: 7c:c6:df:7a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCf0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQyMzBaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDc2MEE1RDE1OUJCRjdD M0FFM0VENUM3Mzk4ODE1NTFCQkU5MTBDM0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLSg1ueJMhoJvRVWgCvJsujmxqRfkQ/P/0cVPF0kHwW4W8zwa+ 5ox/BJZ81ugBMt4QwtXYevODNHVh7Rrtt+Uem++2O/ZcDh9PrZqOF6ye9jGT3Nfi Tv3nesm8/YTqQgAmnH2Iw/EjkDD8L075l34ibYZt8uYhZdzwIQkwJVdTdQl1h0Hw KlA3L1MlD2klzFyC2Iq0aay2rKZwT11OS3XYm2E0Fpmoz0FgLKdkM79mY84rYh/n ECdzisB1ivmwL0si3j9rFCS06fHlAVX0QHFCB5VjPNJ/xQhG+MWIexU7G+K/QoWd qo89neW2QcKq5PuXMXaPSr0r+ecrNLIS+CuFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUdgpdFZu/fDrj7VxzmIFVG76RDD0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2RncGRGWnVfZkRyajdWeHptSUZWRzc2UkREMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBTEQwDQYJKoZIhvcNAQELBQADggEBAAXGsINtoNQJ1ldx3wjWFv3w56xn RgLATdnDmqqIf4DItsogUv+9xNlryP6e3D90cRTnIp5J45rmMUDaWbRPoAasooaf 73uhxedqzhfbGPD35anzcR+T4AjKAcQ5sxg/JkXRyHiJyHBRBrKsBG3NTywCmm7Q pIFj/zpCDmjMbx1b8PYULKJRkmLoWRUoUyDQ2purNSzGPmgvj/WsnuOpl3IwerOk Tlk8o99FUCViHWkXVoWMF3lPdnEy9J2cSXL+9F472GRnJStn9EWMlHUSa+nwCehV DKvg15X0dvy+Z1DOkm1RQCiduqnhvL5Pu8dRmhewj5+aJggSNzl3rXzG33o= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:02 2024 by rpki-client on console-fra.rpki-client.org