$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/fNn5mi7VPGn9f4Mi7iTJb9leAYA.roa File: fNn5mi7VPGn9f4Mi7iTJb9leAYA.roa (raw, json) Hash identifier: xSWqPIySJYv29x9p9xiccxrbItaDjpkDroslHCcHsng= Subject key identifier: 7C:D9:F9:9A:2E:D5:3C:69:FD:7F:83:22:EE:24:C9:6F:D9:5E:01:80 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0734 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/fNn5mi7VPGn9f4Mi7iTJb9leAYA.roa Signing time: Tue 30 Apr 2024 01:56:00 +0000 ROA not before: Tue 30 Apr 2024 01:56:00 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 220.159.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1844 (0x734) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:56:00 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=7CD9F99A2ED53C69FD7F8322EE24C96FD95E0180 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:fd:1d:a6:48:94:95:4e:b0:94:ce:c0:1d:42: 4e:9e:16:b2:4b:5d:86:5e:4b:15:0d:2f:4b:f2:54: 55:f4:7a:16:53:93:66:9b:11:f8:61:52:2c:41:5f: 5e:bc:8b:dc:2e:60:54:26:49:22:b0:72:3a:5a:ef: b0:f8:a3:10:1c:63:aa:62:b9:d4:0b:96:30:0d:9a: 6d:36:aa:b0:96:6b:d3:60:a7:cd:fc:86:c3:ab:2e: e2:93:35:45:bb:55:32:08:b6:08:6d:f2:e9:60:26: 47:f7:a5:68:0c:29:45:2f:42:18:1d:d2:cc:b9:48: 44:03:00:87:62:76:fc:83:91:c1:1d:01:bd:59:d0: 20:95:a2:2b:b4:33:a1:5a:e2:51:c2:54:17:4c:47: d4:f5:7b:52:1a:d1:f9:c1:d4:d4:5e:82:1d:bc:e2: 2f:cf:80:b3:14:4c:54:f6:03:e3:ae:40:6d:28:21: b4:3b:31:45:0b:c4:fb:bd:c3:1c:0d:28:f0:ba:0d: 58:9b:9a:90:83:8d:42:6e:ab:28:82:53:9b:d9:1b: d1:04:83:85:8f:ae:8b:53:ba:e2:c0:4b:18:bb:bc: 3f:af:1a:1e:19:02:53:4c:93:d0:01:94:c2:9e:71: 95:0e:04:c0:24:d9:ca:d8:88:65:b0:86:d2:82:44: 9c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:D9:F9:9A:2E:D5:3C:69:FD:7F:83:22:EE:24:C9:6F:D9:5E:01:80 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/fNn5mi7VPGn9f4Mi7iTJb9leAYA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.56.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:c4:8f:1d:fd:1e:7f:d5:67:71:ff:a4:d6:2e:03:e8:96:f6: 1b:30:11:de:52:27:74:c1:8f:95:d8:ea:ef:9a:cd:7a:e1:b7: 3e:6b:4f:70:3f:81:a6:e5:e2:c4:c0:78:f2:a2:b6:3b:dc:d8: 2b:a8:61:42:70:84:9b:95:3f:a1:9c:6d:30:a3:c8:00:47:84: ce:22:62:78:df:91:6c:a0:c6:7b:db:2a:9d:e7:85:5b:d5:31: ea:1e:14:07:ff:b5:bc:5c:fe:4b:85:ac:26:ca:8d:67:76:d6: 45:03:83:6c:15:5f:56:7e:f5:6a:8a:6e:1f:a6:8d:a5:45:34: dc:53:d3:ff:ce:0a:0a:c5:58:7e:38:f1:f8:59:c9:26:fc:c6: 37:fc:a8:b6:9e:71:0d:6f:d7:65:44:e8:91:70:b5:01:99:09: 10:83:2d:03:d1:53:1f:24:7b:35:c2:60:41:af:ef:47:e4:cf: 01:42:82:4c:94:4e:7a:3a:a3:20:ba:ae:f0:f3:96:a3:00:37: e3:97:93:b7:d7:30:04:57:3b:a1:97:93:c5:a3:c2:a6:bd:c0: 82:56:f1:e4:d2:f0:58:bd:7e:bf:ad:f9:74:21:b7:5e:c2:6d: f3:26:88:0b:ee:be:d3:51:38:b3:73:f1:c0:c3:eb:ee:72:0c: 34:f3:99:98 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBzQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTU2MDBaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDdDRDlGOTlBMkVENTND NjlGRDdGODMyMkVFMjRDOTZGRDk1RTAxODAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCu/R2mSJSVTrCUzsAdQk6eFrJLXYZeSxUNL0vyVFX0ehZTk2ab EfhhUixBX168i9wuYFQmSSKwcjpa77D4oxAcY6piudQLljANmm02qrCWa9Ngp838 hsOrLuKTNUW7VTIItght8ulgJkf3pWgMKUUvQhgd0sy5SEQDAIdidvyDkcEdAb1Z 0CCVoiu0M6Fa4lHCVBdMR9T1e1Ia0fnB1NRegh284i/PgLMUTFT2A+OuQG0oIbQ7 MUULxPu9wxwNKPC6DVibmpCDjUJuqyiCU5vZG9EEg4WProtTuuLASxi7vD+vGh4Z AlNMk9ABlMKecZUOBMAk2crYiGWwhtKCRJxDAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUfNn5mi7VPGn9f4Mi7iTJb9leAYAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2ZObjVtaTdWUEduOWY0TWk3aVRKYjlsZUFZQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADcnzgwDQYJKoZIhvcNAQELBQADggEBAFzEjx39Hn/VZ3H/pNYuA+iW9hsw Ed5SJ3TBj5XY6u+azXrhtz5rT3A/gabl4sTAePKitjvc2CuoYUJwhJuVP6GcbTCj yABHhM4iYnjfkWygxnvbKp3nhVvVMeoeFAf/tbxc/kuFrCbKjWd21kUDg2wVX1Z+ 9WqKbh+mjaVFNNxT0//OCgrFWH448fhZySb8xjf8qLaecQ1v12VE6JFwtQGZCRCD LQPRUx8kezXCYEGv70fkzwFCgkyUTno6oyC6rvDzlqMAN+OXk7fXMARXO6GXk8Wj wqa9wIJW8eTS8Fi9fr+t+XQht17CbfMmiAvuvtNROLNz8cDD6+5yDDTzmZg= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:02 2024 by rpki-client on console-fra.rpki-client.org