$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/gwYnba0bEfYgeWNzEjHYajISmbM.roa File: gwYnba0bEfYgeWNzEjHYajISmbM.roa (raw, json) Hash identifier: Yzdeh97JXSlYyT8d1qALhFc/XCfKlpX8wlLFK+fCDmk= Subject key identifier: 83:06:27:6D:AD:1B:11:F6:20:79:63:73:12:31:D8:6A:32:12:99:B3 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A8B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/gwYnba0bEfYgeWNzEjHYajISmbM.roa Signing time: Sun 30 Jun 2024 01:52:37 +0000 ROA not before: Sun 30 Jun 2024 01:52:37 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 220.159.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2699 (0xa8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:52:37 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=8306276DAD1B11F6207963731231D86A321299B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:32:a5:98:a9:12:21:14:b2:52:76:9f:fa:88: eb:d2:d1:df:1f:89:9a:2e:ee:f8:9b:12:7c:0e:68: d9:f0:1f:cc:b3:bc:cf:b3:57:00:32:57:eb:df:16: 18:be:44:9f:01:b7:31:d7:87:bc:bf:5b:50:9d:6d: 19:c1:f6:bd:df:59:f0:3e:3c:dd:5d:ab:3d:65:51: 15:9e:d0:ce:82:6c:93:62:d1:69:52:98:c0:5f:d3: 57:44:d7:d6:25:dc:71:b3:63:fb:8c:8d:a9:d5:75: 97:d3:56:81:60:00:39:48:57:e5:4a:e5:9e:f5:d1: 49:b7:73:c4:35:70:28:c7:10:f5:2f:ed:b5:9d:de: ce:52:1c:43:97:87:45:27:3d:cc:e3:d4:23:c9:3f: 0d:c5:ed:23:de:d5:7c:15:51:79:3b:78:ab:08:95: 0a:dd:80:67:63:fa:4d:64:e1:c0:c2:91:66:05:a3: 77:2e:f1:ca:32:7b:12:be:6c:10:f4:6d:9a:fe:20: 49:40:37:9d:aa:2e:a8:ae:39:cd:a9:ab:06:fb:d5: b7:2a:8c:69:44:32:25:da:16:1b:4b:b0:e1:8a:58: 52:46:73:f0:5a:5b:b1:e2:e0:cb:28:3a:7a:0b:50: 54:4c:22:f0:28:7a:69:4c:44:fe:c5:6d:0a:8f:57: 1c:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:06:27:6D:AD:1B:11:F6:20:79:63:73:12:31:D8:6A:32:12:99:B3 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/gwYnba0bEfYgeWNzEjHYajISmbM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.250.0/24 Signature Algorithm: sha256WithRSAEncryption 59:c3:01:7c:4b:4d:32:92:da:1f:08:eb:7c:c4:17:8f:5b:e8: 82:52:c4:61:5c:f4:48:c4:d7:e8:e2:a7:96:96:40:cb:ff:44: 8a:dc:7a:58:2e:8f:48:92:7d:86:0d:3c:fe:dc:ca:13:63:60: c9:2b:2f:59:b8:2b:88:16:91:87:04:2c:b8:c9:41:5a:4c:8e: 62:b3:4b:55:9f:9a:7b:f4:a8:81:53:da:24:25:32:57:25:4c: f6:49:32:1d:3a:ea:25:e2:81:14:cc:2b:3e:5e:5e:46:0c:29: 8c:83:73:11:51:12:98:0f:a6:7c:00:a6:04:fb:b4:63:e6:ca: df:f7:fc:d2:78:4b:73:dd:68:c8:28:8e:a0:a2:ed:29:c5:6f: 8e:5f:2b:02:0b:11:bf:ba:b6:eb:df:4e:a1:8c:c7:71:2e:9c: 98:25:1e:c2:e6:4b:81:14:56:04:38:f1:5a:51:b8:a5:de:29: 7a:55:28:ec:46:7b:e3:91:7c:76:09:69:af:75:7e:f3:f6:9d: a4:48:f9:dc:1c:8d:aa:2a:e7:82:48:3f:ff:4e:4b:79:58:e2: 71:3f:e9:f3:eb:13:12:c1:b6:c6:56:89:f8:8d:f8:71:fc:2e: c4:3c:8b:bb:a4:71:a8:88:d1:8a:9f:e1:09:2a:d9:6d:68:30: 73:a4:dc:d0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCoswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTUyMzdaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDgzMDYyNzZEQUQxQjEx RjYyMDc5NjM3MzEyMzFEODZBMzIxMjk5QjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3MqWYqRIhFLJSdp/6iOvS0d8fiZou7vibEnwOaNnwH8yzvM+z VwAyV+vfFhi+RJ8BtzHXh7y/W1CdbRnB9r3fWfA+PN1dqz1lURWe0M6CbJNi0WlS mMBf01dE19Yl3HGzY/uMjanVdZfTVoFgADlIV+VK5Z710Um3c8Q1cCjHEPUv7bWd 3s5SHEOXh0UnPczj1CPJPw3F7SPe1XwVUXk7eKsIlQrdgGdj+k1k4cDCkWYFo3cu 8coyexK+bBD0bZr+IElAN52qLqiuOc2pqwb71bcqjGlEMiXaFhtLsOGKWFJGc/Ba W7Hi4MsoOnoLUFRMIvAoemlMRP7FbQqPVxyvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUgwYnba0bEfYgeWNzEjHYajISmbMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2d3WW5iYTBiRWZZZ2VXTnpFakhZYWpJU21iTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADcn/owDQYJKoZIhvcNAQELBQADggEBAFnDAXxLTTKS2h8I63zEF49b6IJS xGFc9EjE1+jip5aWQMv/RIrcelguj0iSfYYNPP7cyhNjYMkrL1m4K4gWkYcELLjJ QVpMjmKzS1Wfmnv0qIFT2iQlMlclTPZJMh066iXigRTMKz5eXkYMKYyDcxFREpgP pnwApgT7tGPmyt/3/NJ4S3PdaMgojqCi7SnFb45fKwILEb+6tuvfTqGMx3EunJgl HsLmS4EUVgQ48VpRuKXeKXpVKOxGe+ORfHYJaa91fvP2naRI+dwcjaoq54JIP/9O S3lY4nE/6fPrExLBtsZWifiN+HH8LsQ8i7ukcaiI0Yqf4Qkq2W1oMHOk3NA= -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:42 2024 by rpki-client on console-ams.rpki-client.org