$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/f7N7MaP-qsLpawevYzZA7ayZ0Bs.roa File: f7N7MaP-qsLpawevYzZA7ayZ0Bs.roa (raw, json) Hash identifier: KwddCo4ODCbcq+wLDXe+avbrxBZWBM5evggiHSMzEKI= Subject key identifier: 7F:B3:7B:31:A3:FE:AA:C2:E9:6B:07:AF:63:36:40:ED:AC:99:D0:1B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0906 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/f7N7MaP-qsLpawevYzZA7ayZ0Bs.roa Signing time: Tue 30 Apr 2024 02:28:39 +0000 ROA not before: Tue 30 Apr 2024 02:28:39 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 110.163.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2310 (0x906) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:28:39 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=7FB37B31A3FEAAC2E96B07AF633640EDAC99D01B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9d:7e:46:7d:de:6d:e8:9f:32:11:da:7b:c2: f1:e4:6a:6b:c6:bc:d2:8e:bd:ee:9a:c3:08:66:78: 72:8b:e7:2f:d7:0c:c1:cb:80:ce:81:14:3f:1b:5a: 93:59:cc:99:af:d3:c5:8c:65:f2:00:24:93:a0:0f: 1b:09:d1:15:90:18:0a:2b:4b:da:97:e2:b5:1b:c6: 61:60:6c:78:d8:5a:b7:e8:f3:47:03:b7:36:37:ac: 38:96:36:3b:9b:06:49:77:eb:7a:04:68:d6:9c:be: 2e:16:93:bf:74:75:f2:d2:93:c8:7f:03:75:83:42: 6e:c0:fa:b7:fb:4f:0c:5e:13:5f:de:a9:a8:4f:d9: e7:72:59:32:ef:4c:8e:01:87:7b:8f:58:65:e7:9f: 41:4f:ae:12:38:d0:19:98:92:5c:73:97:cf:ea:d8: 9e:2f:a3:c9:61:6c:5c:78:56:99:e8:d8:f2:9a:4a: cc:d3:c7:b2:08:a8:3b:00:51:cc:a3:e9:4d:8b:ea: 2c:f5:fe:fe:e9:e4:7a:cd:35:d4:20:73:02:9e:9f: 7a:2b:19:7e:6b:7b:60:a6:a6:bc:06:0e:93:b8:09: 27:3e:c4:fe:98:92:68:56:0f:2e:c0:35:d6:9d:2a: 02:e9:0d:c3:57:7d:e4:ea:ec:9c:12:af:46:e8:92: 3b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:B3:7B:31:A3:FE:AA:C2:E9:6B:07:AF:63:36:40:ED:AC:99:D0:1B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/f7N7MaP-qsLpawevYzZA7ayZ0Bs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.163.220.0/22 Signature Algorithm: sha256WithRSAEncryption 87:d9:f2:77:e4:07:a4:6c:78:1f:1c:75:66:2e:43:02:26:5b: 16:be:c9:7b:bf:7b:a0:ac:9b:24:ba:8f:93:43:df:95:4b:19: 21:77:cd:ce:9b:77:ea:08:c1:0e:35:5c:52:b6:40:92:8d:26: 89:b7:76:30:f8:71:8e:10:8f:df:b0:ee:76:29:47:d9:36:d7: 96:29:9e:29:24:f1:42:34:b0:96:69:87:38:5d:cb:93:3f:d6: cb:75:51:fe:51:42:98:ca:6d:4d:e6:fb:7f:69:45:c0:86:c0: d7:3e:68:57:a6:a1:29:30:8f:a3:94:66:4a:a5:c9:4d:53:13: 3c:b3:54:1c:9b:6c:83:0f:89:7f:6b:7f:4c:f3:f2:8c:90:d1: 6a:99:32:d5:4e:ca:d7:7e:76:31:47:33:6d:b6:1f:79:ac:80: 0b:2c:01:f3:53:41:0c:a5:98:75:6e:d4:dc:d5:0f:ce:d1:02: 9c:12:5a:9e:12:6c:9e:ee:65:1b:94:83:f6:47:05:86:f1:0f: f1:ea:1b:4c:cc:59:36:1c:07:00:7c:e6:a8:ae:2e:3e:01:25: ad:c3:df:96:c5:7a:d1:79:41:85:0d:f9:0d:f8:66:e0:9b:76: fd:d8:a0:2b:44:83:3a:b3:89:cf:b3:0a:1d:09:84:8e:03:45: 98:f6:2c:fd -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCQYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjI4MzlaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDdGQjM3QjMxQTNGRUFB QzJFOTZCMDdBRjYzMzY0MEVEQUM5OUQwMUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJnX5Gfd5t6J8yEdp7wvHkamvGvNKOve6awwhmeHKL5y/XDMHL gM6BFD8bWpNZzJmv08WMZfIAJJOgDxsJ0RWQGAorS9qX4rUbxmFgbHjYWrfo80cD tzY3rDiWNjubBkl363oEaNacvi4Wk790dfLSk8h/A3WDQm7A+rf7TwxeE1/eqahP 2edyWTLvTI4Bh3uPWGXnn0FPrhI40BmYklxzl8/q2J4vo8lhbFx4Vpno2PKaSszT x7IIqDsAUcyj6U2L6iz1/v7p5HrNNdQgcwKen3orGX5re2CmprwGDpO4CSc+xP6Y kmhWDy7ANdadKgLpDcNXfeTq7JwSr0bokjvjAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUf7N7MaP+qsLpawevYzZA7ayZ0BswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2Y3TjdNYVAtcXNMcGF3ZXZZelpBN2F5WjBCcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJuo9wwDQYJKoZIhvcNAQELBQADggEBAIfZ8nfkB6RseB8cdWYuQwImWxa+ yXu/e6CsmyS6j5ND35VLGSF3zc6bd+oIwQ41XFK2QJKNJom3djD4cY4Qj9+w7nYp R9k215Ypnikk8UI0sJZphzhdy5M/1st1Uf5RQpjKbU3m+39pRcCGwNc+aFemoSkw j6OUZkqlyU1TEzyzVBybbIMPiX9rf0zz8oyQ0WqZMtVOytd+djFHM222H3msgAss AfNTQQylmHVu1NzVD87RApwSWp4SbJ7uZRuUg/ZHBYbxD/HqG0zMWTYcBwB85qiu Lj4BJa3D35bFetF5QYUN+Q34ZuCbdv3YoCtEgzqzic+zCh0JhI4DRZj2LP0= -----END CERTIFICATE-----Generated at Mon Nov 25 23:59:11 2024 by rpki-client on console-fra.rpki-client.org