$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/fHXvRsfcvazI3dz4Za8h6yUFatw.roa File: fHXvRsfcvazI3dz4Za8h6yUFatw.roa (raw, json) Hash identifier: 4FuxUsuaLgn7yAUjKrnzIWhsOo5NZdni4CNcRoGNHXc= Subject key identifier: 7C:75:EF:46:C7:DC:BD:AC:C8:DD:DC:F8:65:AF:21:EB:25:05:6A:DC Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A1C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/fHXvRsfcvazI3dz4Za8h6yUFatw.roa Signing time: Sun 30 Jun 2024 01:44:25 +0000 ROA not before: Sun 30 Jun 2024 01:44:25 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.76.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2588 (0xa1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:44:25 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=7C75EF46C7DCBDACC8DDDCF865AF21EB25056ADC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0d:c3:ea:8c:83:9f:70:8a:9b:0c:7c:01:16: 4a:89:f3:90:cd:28:51:0f:46:b2:6b:21:7e:74:88: ff:6c:bd:f5:b9:90:8a:93:c8:ef:72:f6:63:d5:12: b6:47:57:4d:a9:e7:01:97:ee:ce:a1:0c:a5:12:1f: f8:5e:4e:87:a7:82:56:36:b1:f7:25:a7:04:97:ed: c6:ed:b4:27:6f:fe:03:c1:d2:6e:5d:52:c1:8f:95: ae:7f:28:f7:9e:f3:45:7c:db:ee:d8:02:21:50:03: 31:55:e1:8a:fb:fe:fe:c2:c8:4d:c6:f7:6b:2c:76: 1f:f0:15:f8:7d:23:ea:71:26:90:b2:b0:64:48:a2: f4:3b:54:ce:d0:30:d9:7a:03:c4:10:de:23:41:ea: dc:d3:87:26:1e:66:84:c9:8b:f4:1d:0e:27:18:d8: 52:d1:79:81:1b:4b:c7:47:2b:13:65:77:ad:ef:bd: e4:7f:d0:83:2d:44:2b:0a:40:94:a6:95:c0:8a:a0: 6f:23:7c:94:ec:d4:ea:36:ec:d9:40:e7:fc:40:5e: ec:9f:6b:fd:4a:8b:61:70:af:ca:f4:a3:29:20:18: 16:82:bb:f1:d0:6e:ad:db:d4:59:d4:84:b3:9a:e0: aa:7d:70:5e:80:56:4f:e1:4f:4e:65:3d:20:3d:5d: 62:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:75:EF:46:C7:DC:BD:AC:C8:DD:DC:F8:65:AF:21:EB:25:05:6A:DC X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/fHXvRsfcvazI3dz4Za8h6yUFatw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.152.0/22 Signature Algorithm: sha256WithRSAEncryption 78:2b:05:2d:fe:e7:15:fc:ed:e3:d7:7f:6c:78:68:74:7c:c0: cb:20:42:56:d2:5e:81:d9:b4:f2:f5:6d:ec:48:a0:18:6b:e3: eb:15:0a:d8:0a:6c:87:db:b8:2a:df:c0:b0:20:90:4d:0e:f8: 56:40:9a:55:05:27:9f:ca:ce:10:77:62:02:a4:88:90:1d:98: bf:b0:8d:82:3d:cf:27:a9:d9:d9:e3:cc:81:ba:dd:43:83:79: 0a:7f:1a:02:a4:a3:29:51:61:c7:36:87:e1:d3:e4:de:98:ed: 21:2b:4b:01:43:d5:7a:3b:34:0a:38:a9:62:ed:ea:1f:54:08: 31:0e:9f:8d:a3:0c:e2:45:d0:5f:8b:39:6b:ce:92:aa:36:04: 47:3b:ac:b2:65:83:88:35:86:0d:8a:5d:58:09:ee:8d:fe:de: 76:ea:de:4f:96:85:d9:0c:a1:6d:41:0d:57:6d:dd:23:d1:42: 55:6a:e0:94:55:0c:73:25:33:a9:87:c9:72:32:b5:a6:65:5e: fb:c5:73:c7:fa:e4:b5:4f:db:a1:80:2d:cd:23:3a:9a:4c:7b: 05:da:ff:44:98:fa:86:cd:99:72:a6:a4:dc:ed:d1:f7:ba:66: d8:21:d4:5a:8b:c3:52:ed:2d:18:c6:8b:d1:c0:ec:c0:40:ea: b8:52:33:7a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICChwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQ0MjVaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDdDNzVFRjQ2QzdEQ0JE QUNDOERERENGODY1QUYyMUVCMjUwNTZBREMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/DcPqjIOfcIqbDHwBFkqJ85DNKFEPRrJrIX50iP9svfW5kIqT yO9y9mPVErZHV02p5wGX7s6hDKUSH/heToenglY2sfclpwSX7cbttCdv/gPB0m5d UsGPla5/KPee80V82+7YAiFQAzFV4Yr7/v7CyE3G92ssdh/wFfh9I+pxJpCysGRI ovQ7VM7QMNl6A8QQ3iNB6tzThyYeZoTJi/QdDicY2FLReYEbS8dHKxNld63vveR/ 0IMtRCsKQJSmlcCKoG8jfJTs1Oo27NlA5/xAXuyfa/1Ki2Fwr8r0oykgGBaCu/HQ bq3b1FnUhLOa4Kp9cF6AVk/hT05lPSA9XWKzAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUfHXvRsfcvazI3dz4Za8h6yUFatwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2ZIWHZSc2ZjdmF6STNkejRaYThoNnlVRmF0dy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBTJgwDQYJKoZIhvcNAQELBQADggEBAHgrBS3+5xX87ePXf2x4aHR8wMsg QlbSXoHZtPL1bexIoBhr4+sVCtgKbIfbuCrfwLAgkE0O+FZAmlUFJ5/KzhB3YgKk iJAdmL+wjYI9zyep2dnjzIG63UODeQp/GgKkoylRYcc2h+HT5N6Y7SErSwFD1Xo7 NAo4qWLt6h9UCDEOn42jDOJF0F+LOWvOkqo2BEc7rLJlg4g1hg2KXVgJ7o3+3nbq 3k+WhdkMoW1BDVdt3SPRQlVq4JRVDHMlM6mHyXIytaZlXvvFc8f65LVP26GALc0j OppMewXa/0SY+obNmXKmpNzt0fe6Ztgh1FqLw1LtLRjGi9HA7MBA6rhSM3o= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:02 2024 by rpki-client on console-fra.rpki-client.org