$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/dxdYYwtxHPRjgEX7RdB9CD3mtmY.roa File: dxdYYwtxHPRjgEX7RdB9CD3mtmY.roa (raw, json) Hash identifier: ZVR3kBM+BOrJtSCofbHBeaW5XQKWqaXLsMCYw6BnZAU= Subject key identifier: 77:17:58:63:0B:71:1C:F4:63:80:45:FB:45:D0:7D:08:3D:E6:B6:66 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 086B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/dxdYYwtxHPRjgEX7RdB9CD3mtmY.roa Signing time: Tue 30 Apr 2024 02:18:28 +0000 ROA not before: Tue 30 Apr 2024 02:18:28 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 220.159.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2155 (0x86b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:18:28 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=771758630B711CF4638045FB45D07D083DE6B666 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:87:6c:3f:f3:ab:89:97:ea:37:fe:f0:bd:95: c2:32:07:ef:a6:d6:ee:e9:1b:81:0e:fa:7b:4f:aa: 00:f1:fd:d3:25:70:72:95:2f:9d:62:ee:93:d4:64: bc:2f:d4:9c:43:bc:dd:f0:e0:95:7a:8f:27:eb:dc: f6:27:b4:c4:77:9b:0d:f0:f7:32:a4:43:59:78:98: 84:91:b5:aa:ec:a3:37:e6:2c:6b:4d:ac:58:6b:61: c9:8c:8c:ca:31:cb:90:87:d7:78:05:ed:c2:34:c7: 63:13:54:04:6f:5c:78:2d:bd:e2:12:92:8d:d5:15: 59:36:68:c7:1e:86:eb:04:a1:a4:fa:49:d8:2d:4b: c9:58:b6:4c:bf:bb:37:77:f1:c5:71:eb:91:87:58: 70:25:04:44:84:92:03:60:cb:f8:59:ec:f7:c8:15: dc:29:68:f5:aa:20:35:99:f2:12:72:35:e1:1c:2a: 92:00:6d:8d:9a:63:ef:3d:cc:11:49:62:ce:fb:e9: 65:7e:b5:c3:f0:bb:1c:8b:41:67:6c:ef:f2:bb:3a: e4:79:f7:73:1a:d1:e6:66:c0:84:d1:13:43:12:b8: 5d:a7:c7:b8:5e:da:28:f2:1c:be:3b:eb:3e:11:95: 0a:f3:fc:d5:eb:97:89:78:97:f5:15:6e:14:aa:48: 1b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:17:58:63:0B:71:1C:F4:63:80:45:FB:45:D0:7D:08:3D:E6:B6:66 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/dxdYYwtxHPRjgEX7RdB9CD3mtmY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.32.0/20 Signature Algorithm: sha256WithRSAEncryption ab:e8:4f:14:a0:22:5e:ac:0e:5c:e6:3d:a0:5f:d4:a8:19:66: 68:f7:0b:89:b1:39:b5:b1:92:e0:0a:e7:1a:00:eb:33:e0:62: ca:d7:50:f9:69:da:c7:06:ce:ec:64:f8:ed:76:10:2c:81:a3: 14:f1:40:aa:57:0e:cc:c9:17:7c:16:a1:3f:cc:13:db:93:d3: 13:d5:9f:ab:2c:9d:9e:c9:90:f9:b3:b3:d5:15:d2:21:da:ca: 99:2f:49:6c:40:1a:a8:ac:8e:3c:fa:59:81:ad:5f:1b:76:a3: f6:43:6a:5b:4a:93:cc:b1:e7:94:1a:fd:e7:89:64:de:7f:30: 14:d4:76:3e:5d:06:9e:da:1d:a8:6a:e9:ec:d8:a1:70:82:12: 1a:03:48:a5:55:54:11:b0:78:6f:82:65:e8:f8:eb:4b:c1:1f: 52:bd:42:83:ef:dc:1f:73:b2:12:68:f4:55:2b:34:ac:b7:99: 32:2c:34:5e:ca:d1:ad:df:44:9a:45:8c:4e:48:56:0d:d7:53: f7:dc:4a:a9:98:8a:90:cd:09:52:4d:04:9d:1d:92:c9:38:db: 17:6b:1e:70:74:48:21:04:5c:c1:5c:ca:cc:db:e8:f0:fa:ba: a7:3d:dc:5d:1f:cc:de:76:27:ec:e7:e3:94:0f:9d:36:bf:70: a7:e4:ef:8d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCGswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjE4MjhaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDc3MTc1ODYzMEI3MTFD RjQ2MzgwNDVGQjQ1RDA3RDA4M0RFNkI2NjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0h2w/86uJl+o3/vC9lcIyB++m1u7pG4EO+ntPqgDx/dMlcHKV L51i7pPUZLwv1JxDvN3w4JV6jyfr3PYntMR3mw3w9zKkQ1l4mISRtarsozfmLGtN rFhrYcmMjMoxy5CH13gF7cI0x2MTVARvXHgtveISko3VFVk2aMcehusEoaT6Sdgt S8lYtky/uzd38cVx65GHWHAlBESEkgNgy/hZ7PfIFdwpaPWqIDWZ8hJyNeEcKpIA bY2aY+89zBFJYs776WV+tcPwuxyLQWds7/K7OuR593Ma0eZmwITRE0MSuF2nx7he 2ijyHL476z4RlQrz/NXrl4l4l/UVbhSqSBs/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUdxdYYwtxHPRjgEX7RdB9CD3mtmYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2R4ZFlZd3R4SFBSamdFWDdSZEI5Q0QzbXRtWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATcnyAwDQYJKoZIhvcNAQELBQADggEBAKvoTxSgIl6sDlzmPaBf1KgZZmj3 C4mxObWxkuAK5xoA6zPgYsrXUPlp2scGzuxk+O12ECyBoxTxQKpXDszJF3wWoT/M E9uT0xPVn6ssnZ7JkPmzs9UV0iHaypkvSWxAGqisjjz6WYGtXxt2o/ZDaltKk8yx 55Qa/eeJZN5/MBTUdj5dBp7aHahq6ezYoXCCEhoDSKVVVBGweG+CZej460vBH1K9 QoPv3B9zshJo9FUrNKy3mTIsNF7K0a3fRJpFjE5IVg3XU/fcSqmYipDNCVJNBJ0d ksk42xdrHnB0SCEEXMFcyszb6PD6uqc93F0fzN52J+zn45QPnTa/cKfk740= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:41 2024 by rpki-client on console-ams.rpki-client.org