$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/iG2TQT0Iv5RRCjz_6cK-cE0tez0.roa File: iG2TQT0Iv5RRCjz_6cK-cE0tez0.roa (raw, json) Hash identifier: nRu3fIS3pBRFf3fQwsMKu8k1CqY+wYfoOPSUZU85HqY= Subject key identifier: 88:6D:93:41:3D:08:BF:94:51:0A:3C:FF:E9:C2:BE:70:4D:2D:7B:3D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0869 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iG2TQT0Iv5RRCjz_6cK-cE0tez0.roa Signing time: Tue 30 Apr 2024 02:18:27 +0000 ROA not before: Tue 30 Apr 2024 02:18:27 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.106.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2153 (0x869) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:18:27 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=886D93413D08BF94510A3CFFE9C2BE704D2D7B3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ed:e5:03:22:b9:04:11:38:e7:1e:0c:41:01: 52:4a:a2:42:a8:50:7a:8f:8e:4f:b7:98:22:7a:81: 78:fa:d8:65:5e:82:21:ba:20:72:9e:c9:84:69:0f: 30:32:00:f6:bb:d6:eb:0a:2d:ae:51:1a:93:93:e3: 26:a3:de:76:55:cc:d7:0d:03:74:9b:69:2b:db:c6: 05:14:5f:5c:af:f4:9a:b2:4b:d9:ec:5d:42:01:fe: 80:85:67:2c:cf:dd:c4:3b:2e:e1:6d:e0:28:56:b8: fa:f2:54:f2:a4:03:40:8f:26:05:89:a1:34:2f:36: e2:89:08:8e:49:d9:47:84:c9:5b:f0:ba:bd:06:53: 23:e0:fc:a9:14:a2:39:91:d4:00:c2:a7:62:28:b4: ea:03:1c:a2:5c:d5:44:1b:ad:1c:47:8f:b7:f9:c2: 9b:39:e6:9b:5e:6c:ea:d3:07:d4:3b:5e:9e:ab:aa: c2:bd:5b:12:9d:9b:fb:62:1f:51:87:13:31:b6:f8: 8a:22:1c:7e:2f:c3:e9:d5:43:1d:f9:81:8f:6b:a3: 25:dc:c7:6d:e5:4f:e0:d3:e9:79:f8:44:6a:54:06: 5f:03:35:6a:0e:2e:91:d4:13:dc:c8:93:30:6d:35: d2:b1:fa:09:c3:90:27:3c:24:5b:ec:71:37:26:16: 18:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:6D:93:41:3D:08:BF:94:51:0A:3C:FF:E9:C2:BE:70:4D:2D:7B:3D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iG2TQT0Iv5RRCjz_6cK-cE0tez0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.210.0/24 Signature Algorithm: sha256WithRSAEncryption a4:dd:29:2f:1a:39:ca:e3:ce:1e:fd:84:96:fb:04:76:e4:6f: 55:43:e0:47:22:45:7d:f1:25:b9:39:0e:84:60:e8:80:6b:50: ac:9e:e9:c1:f1:50:56:0c:63:91:ae:13:9c:4f:5b:cc:49:99: a0:f6:a4:e6:94:f9:74:da:24:e9:b2:96:fd:c6:66:36:26:73: 34:41:28:fa:a5:ec:2c:a1:b7:52:b7:64:9b:60:e3:2c:3b:76: 1b:36:ff:06:31:fc:07:a5:2c:18:0f:d8:74:7c:4d:94:cf:01: 1c:59:14:c2:e5:7d:05:7e:b7:ad:80:f9:ee:6c:00:c2:4f:21: 1b:5a:7f:43:65:2e:9b:e9:80:34:29:15:ea:61:ba:0d:1d:1e: a9:93:dc:32:07:ba:f1:9a:ed:60:e4:a7:07:76:2d:11:7e:05: d6:2a:eb:bc:3e:38:8a:70:4b:49:00:cc:74:64:b5:09:e6:4a: ba:cf:c6:f3:32:78:24:63:5e:12:d8:c6:a0:fa:b1:65:4e:0b: 8b:e8:10:44:62:3e:2d:ba:d0:0f:3c:9a:8e:73:24:56:65:fb: f5:ee:01:90:ea:e0:66:ce:61:18:9b:d6:55:fe:b2:f0:ca:f6: 10:cf:94:27:83:dc:87:42:8b:f7:a2:a3:ef:99:a8:d2:9d:7e: 45:b0:d2:3a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCGkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjE4MjdaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDg4NkQ5MzQxM0QwOEJG OTQ1MTBBM0NGRkU5QzJCRTcwNEQyRDdCM0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCl7eUDIrkEETjnHgxBAVJKokKoUHqPjk+3mCJ6gXj62GVegiG6 IHKeyYRpDzAyAPa71usKLa5RGpOT4yaj3nZVzNcNA3SbaSvbxgUUX1yv9JqyS9ns XUIB/oCFZyzP3cQ7LuFt4ChWuPryVPKkA0CPJgWJoTQvNuKJCI5J2UeEyVvwur0G UyPg/KkUojmR1ADCp2IotOoDHKJc1UQbrRxHj7f5wps55ptebOrTB9Q7Xp6rqsK9 WxKdm/tiH1GHEzG2+IoiHH4vw+nVQx35gY9royXcx23lT+DT6Xn4RGpUBl8DNWoO LpHUE9zIkzBtNdKx+gnDkCc8JFvscTcmFhgPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUiG2TQT0Iv5RRCjz/6cK+cE0tez0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2lHMlRRVDBJdjVSUkNqel82Y0stY0UwdGV6MC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxatIwDQYJKoZIhvcNAQELBQADggEBAKTdKS8aOcrjzh79hJb7BHbkb1VD 4EciRX3xJbk5DoRg6IBrUKye6cHxUFYMY5GuE5xPW8xJmaD2pOaU+XTaJOmylv3G ZjYmczRBKPql7Cyht1K3ZJtg4yw7dhs2/wYx/AelLBgP2HR8TZTPARxZFMLlfQV+ t62A+e5sAMJPIRtaf0NlLpvpgDQpFephug0dHqmT3DIHuvGa7WDkpwd2LRF+BdYq 67w+OIpwS0kAzHRktQnmSrrPxvMyeCRjXhLYxqD6sWVOC4voEERiPi260A88mo5z JFZl+/XuAZDq4GbOYRib1lX+svDK9hDPlCeD3IdCi/eio++ZqNKdfkWw0jo= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:02 2024 by rpki-client on console-fra.rpki-client.org