$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/i4QI7FVoo0RcYZ-GGLr0fEzDEPU.roa File: i4QI7FVoo0RcYZ-GGLr0fEzDEPU.roa (raw, json) Hash identifier: bgdO6EQ8dk/C4NxE94MxbD7KJmY/P1+nzKPtGGOfR4Y= Subject key identifier: 8B:84:08:EC:55:68:A3:44:5C:61:9F:86:18:BA:F4:7C:4C:C3:10:F5 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0940 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/i4QI7FVoo0RcYZ-GGLr0fEzDEPU.roa Signing time: Sun 30 Jun 2024 01:29:29 +0000 ROA not before: Sun 30 Jun 2024 01:29:29 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 220.210.58.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2368 (0x940) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:29:29 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=8B8408EC5568A3445C619F8618BAF47C4CC310F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:49:2b:1d:b6:28:51:b6:d3:ad:be:98:fa:7d: e4:aa:7a:d3:3e:35:6a:1a:75:92:c9:c8:64:2d:3a: f5:32:29:7e:08:c1:25:a2:cf:2e:19:98:1b:5b:d4: d9:c2:bc:d5:3a:fb:3f:cc:75:ae:45:ba:ca:3c:d5: 6a:4f:75:b5:2c:59:bd:04:0f:ec:2f:14:83:89:b8: 21:bb:54:4c:24:a6:c2:fb:74:0c:07:24:fd:db:0d: 95:9d:54:bd:8e:83:08:87:c2:ba:75:67:2a:ec:8b: bc:50:05:38:b0:60:6e:0f:c1:64:18:7a:2b:0d:bb: 72:93:af:38:d1:59:89:e7:56:60:71:ea:98:04:79: 29:c1:65:d1:fc:d6:4e:00:80:b3:b8:09:47:61:aa: f1:13:6e:4e:5e:1a:d8:d0:b4:64:37:00:11:33:88: c6:89:11:3c:a5:51:59:88:3a:ef:69:12:d5:94:d6: ea:9b:6c:ba:99:1f:54:91:b0:4b:b4:8e:88:8f:b9: dd:c6:60:d9:26:ff:7c:58:d2:d6:94:94:92:9a:05: 05:00:25:d7:79:e8:26:71:61:f8:06:71:45:9c:e2: e0:38:9a:af:84:da:d4:ca:94:d3:62:a9:0a:aa:d4: 4f:dd:42:19:69:0f:5d:d7:b1:6a:19:2d:3d:ec:3d: f3:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:84:08:EC:55:68:A3:44:5C:61:9F:86:18:BA:F4:7C:4C:C3:10:F5 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/i4QI7FVoo0RcYZ-GGLr0fEzDEPU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.58.0/23 Signature Algorithm: sha256WithRSAEncryption 39:f5:c0:3f:bf:c5:d6:12:0a:10:b0:5e:94:2c:09:de:ed:8f: 95:90:66:23:5a:e3:96:80:0d:41:19:70:7d:5d:9a:c1:f4:99: 0c:46:8a:f9:44:03:d7:49:ea:65:58:9d:79:9d:88:6b:c5:c0: 7a:af:e3:b0:b8:54:59:bb:f6:a6:0e:39:9d:0d:c9:bf:c3:cd: 53:f1:09:a6:a3:ec:8b:25:f3:f4:a6:2c:b3:d5:f0:b8:82:f2: f4:75:e4:c6:b9:4c:b4:25:57:d0:00:4d:e7:87:b8:7b:42:89: 1a:b1:3a:46:9d:ca:6d:89:5b:8f:0c:53:19:41:56:20:8f:94: b1:a7:9c:db:e9:60:7a:fe:18:b6:0c:b4:ec:b9:9a:b3:00:f4: 36:34:67:6a:ff:26:18:a0:0e:8b:91:a0:0d:8a:81:66:26:63: d4:bc:78:72:74:98:40:c9:d8:10:ff:ec:5d:40:41:02:e5:57: 47:4b:92:57:76:9d:9a:14:4f:35:35:ee:c2:a6:15:df:58:ee: 7a:9c:70:7f:3e:fe:da:82:42:fb:6a:d8:c4:51:37:c3:11:19: a2:d6:05:e4:73:5f:72:42:25:0e:58:c4:6d:03:63:14:51:8e: 56:ea:bb:1d:72:7d:f1:f1:f5:16:3c:f9:06:e2:4c:65:93:96: 4d:d4:2c:9a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCUAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTI5MjlaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDhCODQwOEVDNTU2OEEz NDQ1QzYxOUY4NjE4QkFGNDdDNENDMzEwRjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDaSSsdtihRttOtvpj6feSqetM+NWoadZLJyGQtOvUyKX4IwSWi zy4ZmBtb1NnCvNU6+z/Mda5Fuso81WpPdbUsWb0ED+wvFIOJuCG7VEwkpsL7dAwH JP3bDZWdVL2OgwiHwrp1Zyrsi7xQBTiwYG4PwWQYeisNu3KTrzjRWYnnVmBx6pgE eSnBZdH81k4AgLO4CUdhqvETbk5eGtjQtGQ3ABEziMaJETylUVmIOu9pEtWU1uqb bLqZH1SRsEu0joiPud3GYNkm/3xY0taUlJKaBQUAJdd56CZxYfgGcUWc4uA4mq+E 2tTKlNNiqQqq1E/dQhlpD13XsWoZLT3sPfNpAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUi4QI7FVoo0RcYZ+GGLr0fEzDEPUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2k0UUk3RlZvbzBSY1laLUdHTHIwZkV6REVQVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHc0jowDQYJKoZIhvcNAQELBQADggEBADn1wD+/xdYSChCwXpQsCd7tj5WQ ZiNa45aADUEZcH1dmsH0mQxGivlEA9dJ6mVYnXmdiGvFwHqv47C4VFm79qYOOZ0N yb/DzVPxCaaj7Isl8/SmLLPV8LiC8vR15Ma5TLQlV9AATeeHuHtCiRqxOkadym2J W48MUxlBViCPlLGnnNvpYHr+GLYMtOy5mrMA9DY0Z2r/JhigDouRoA2KgWYmY9S8 eHJ0mEDJ2BD/7F1AQQLlV0dLkld2nZoUTzU17sKmFd9Y7nqccH8+/tqCQvtq2MRR N8MRGaLWBeRzX3JCJQ5YxG0DYxRRjlbqux1yffHx9RY8+QbiTGWTlk3ULJo= -----END CERTIFICATE-----Generated at Mon Nov 25 23:59:11 2024 by rpki-client on console-fra.rpki-client.org