$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/hZmAGcl7khRnVxgmvBUDUeJNSG4.roa File: hZmAGcl7khRnVxgmvBUDUeJNSG4.roa (raw, json) Hash identifier: +66lK/vT3jeRV6gN0yaj12ts/iDydn+wgMwJYVOw1Jc= Subject key identifier: 85:99:80:19:C9:7B:92:14:67:57:18:26:BC:15:03:51:E2:4D:48:6E Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 096D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hZmAGcl7khRnVxgmvBUDUeJNSG4.roa Signing time: Sun 30 Jun 2024 01:33:38 +0000 ROA not before: Sun 30 Jun 2024 01:33:38 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.67.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2413 (0x96d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:33:38 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=85998019C97B921467571826BC150351E24D486E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:64:d9:1d:e7:0d:c7:7b:5e:a2:bb:ab:38:e2: b7:61:eb:20:21:d0:28:23:96:c1:0f:7a:d7:98:a9: 46:e1:2d:89:ca:25:82:ff:51:15:6b:ac:e0:f2:72: 6b:81:b2:d3:09:d6:0c:01:45:8f:9f:9a:98:03:ed: df:e5:de:01:73:4d:0c:a0:1a:0a:b4:6d:89:b3:9d: a0:ec:53:b0:74:17:d7:9c:f1:63:6a:72:91:ad:5b: 15:3e:0f:2a:90:99:fc:f6:3e:43:5e:1c:4a:6a:ca: 69:ad:ed:71:28:fd:76:4c:d3:5e:5c:0c:5e:ff:35: ea:a8:d4:88:59:70:8e:4c:78:a1:da:7c:cb:5e:b8: 10:e9:bd:b4:88:65:ff:db:7e:c5:1c:17:61:2d:44: 15:a9:a2:a3:b4:c4:f3:45:1e:8a:27:d7:71:2b:72: 42:67:7e:a9:6e:13:00:30:83:08:1f:cb:47:b0:77: 16:d0:fc:b5:fe:59:6c:38:32:20:56:57:a8:a6:54: 19:4b:00:33:ba:30:41:ef:f7:e4:e3:fe:a2:23:78: 99:cf:d6:23:77:fb:e0:8f:55:c6:7b:78:07:b1:ec: 3b:69:89:7e:04:0f:f4:85:23:20:bd:aa:9e:e3:5d: a2:e2:cf:f0:85:27:54:c2:dc:66:cb:f8:68:76:77: d6:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:99:80:19:C9:7B:92:14:67:57:18:26:BC:15:03:51:E2:4D:48:6E X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hZmAGcl7khRnVxgmvBUDUeJNSG4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.67.192.0/20 Signature Algorithm: sha256WithRSAEncryption bc:26:44:60:ef:16:25:02:60:6e:e9:52:43:07:ad:61:fb:7b: 4b:ab:1b:9f:4f:ee:cd:7c:bf:8f:5b:b0:b7:dd:57:e5:31:9b: 0e:f8:2c:fe:c1:e6:fd:38:c5:7e:a8:e0:a7:1c:b9:6f:7e:7f: ba:e0:d2:19:80:01:05:83:15:b8:0a:bf:57:ed:06:3e:0f:ea: f5:39:49:b5:20:41:8e:56:50:dd:74:ee:ba:e3:27:9d:42:6c: bc:13:03:1f:ca:e7:90:1e:22:7c:24:90:4d:be:7b:7d:c6:3f: 2c:bd:5d:27:11:14:cf:f1:a9:74:97:f0:f8:ec:9c:ee:2d:ad: 1c:41:69:3b:e9:4b:77:a8:5b:30:7a:c4:fc:5d:0c:48:8b:b1: 47:b2:4c:e9:0f:aa:2c:b1:bc:46:d5:be:10:e2:97:90:24:e5: 64:33:30:1c:6f:2c:7c:bd:b1:22:60:53:cd:96:ba:fb:bb:9d: f1:02:f0:90:5a:4f:db:e7:f4:dd:a3:36:f4:70:9f:5f:ac:18: 75:3c:22:01:2c:cc:98:81:84:b2:df:65:76:27:5f:cd:10:a7: 6f:09:b6:0a:2e:b0:6c:6d:69:ce:8f:e2:2d:6d:58:c2:0c:61: e7:01:fc:c0:df:a6:2a:a7:23:c0:33:eb:59:c1:2f:f2:f8:6a: cf:1b:ff:f2 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCW0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTMzMzhaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDg1OTk4MDE5Qzk3Qjky MTQ2NzU3MTgyNkJDMTUwMzUxRTI0RDQ4NkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuZNkd5w3He16iu6s44rdh6yAh0CgjlsEPeteYqUbhLYnKJYL/ URVrrODycmuBstMJ1gwBRY+fmpgD7d/l3gFzTQygGgq0bYmznaDsU7B0F9ec8WNq cpGtWxU+DyqQmfz2PkNeHEpqymmt7XEo/XZM015cDF7/Neqo1IhZcI5MeKHafMte uBDpvbSIZf/bfsUcF2EtRBWpoqO0xPNFHoon13ErckJnfqluEwAwgwgfy0ewdxbQ /LX+WWw4MiBWV6imVBlLADO6MEHv9+Tj/qIjeJnP1iN3++CPVcZ7eAex7DtpiX4E D/SFIyC9qp7jXaLiz/CFJ1TC3GbL+Gh2d9bPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUhZmAGcl7khRnVxgmvBUDUeJNSG4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2habUFHY2w3a2hSblZ4Z212QlVEVWVKTlNHNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQBQ8AwDQYJKoZIhvcNAQELBQADggEBALwmRGDvFiUCYG7pUkMHrWH7e0ur G59P7s18v49bsLfdV+Uxmw74LP7B5v04xX6o4KccuW9+f7rg0hmAAQWDFbgKv1ft Bj4P6vU5SbUgQY5WUN107rrjJ51CbLwTAx/K55AeInwkkE2+e33GPyy9XScRFM/x qXSX8PjsnO4trRxBaTvpS3eoWzB6xPxdDEiLsUeyTOkPqiyxvEbVvhDil5Ak5WQz MBxvLHy9sSJgU82Wuvu7nfEC8JBaT9vn9N2jNvRwn1+sGHU8IgEszJiBhLLfZXYn X80Qp28JtgousGxtac6P4i1tWMIMYecB/MDfpiqnI8Az61nBL/L4as8b//I= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:02 2024 by rpki-client on console-fra.rpki-client.org