$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/jo7Hx92Xxe3zo3sWdGWTZkO4Bpw.roa File: jo7Hx92Xxe3zo3sWdGWTZkO4Bpw.roa (raw, json) Hash identifier: EktHEy27rO2mSQhvBlWWnDKHltpezrp7Nkk9MmlGsMw= Subject key identifier: 8E:8E:C7:C7:DD:97:C5:ED:F3:A3:7B:16:74:65:93:66:43:B8:06:9C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 09DE Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/jo7Hx92Xxe3zo3sWdGWTZkO4Bpw.roa Signing time: Sun 30 Jun 2024 01:40:35 +0000 ROA not before: Sun 30 Jun 2024 01:40:35 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 110.161.208.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2526 (0x9de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:40:35 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=8E8EC7C7DD97C5EDF3A37B167465936643B8069C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:30:0f:9a:b9:40:9d:1b:e2:c3:74:12:d6:48: a6:9a:e8:7a:96:96:b5:93:c5:8d:ff:db:70:56:ea: ef:f3:92:20:02:11:5e:40:58:d8:67:50:c3:a4:09: 68:a2:61:ce:63:61:ed:66:16:fd:a6:e4:25:9c:1b: 3e:cc:71:2c:13:65:c2:8c:2e:0c:3e:f3:91:d5:95: 51:71:ea:74:ce:19:c5:17:5c:7f:7c:f8:0d:72:e5: f8:d8:c7:36:09:3a:b4:ed:09:15:9b:99:06:04:25: de:db:a7:d3:5c:4a:20:6a:2d:9a:a6:d1:fa:d0:02: 3b:ff:f7:3e:e3:16:78:b3:b7:06:49:1c:61:24:76: ad:4a:2b:ac:4e:1e:75:07:9e:b3:59:69:1f:66:6c: 9c:ab:64:15:08:92:1d:8a:92:9b:bc:4e:7b:c6:e8: c6:af:15:ce:c6:6e:52:3b:4f:6e:31:bd:5a:63:19: 5d:91:88:c5:db:a3:6c:a4:6c:c5:10:57:4f:aa:a2: 11:4d:02:65:e3:38:b3:1a:6a:69:41:11:06:fa:70: c6:92:de:e2:15:9e:d4:1c:be:4c:2f:74:9d:9c:e5: 15:2d:9b:4c:fa:87:c5:56:03:57:f9:ec:89:bf:6d: 7e:c3:a9:38:57:dc:94:10:40:6d:9e:8d:9e:2d:d9: bc:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:8E:C7:C7:DD:97:C5:ED:F3:A3:7B:16:74:65:93:66:43:B8:06:9C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/jo7Hx92Xxe3zo3sWdGWTZkO4Bpw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.161.208.0/21 Signature Algorithm: sha256WithRSAEncryption c2:f9:ee:1a:d7:6e:41:2b:a7:11:ed:9a:7e:99:f8:85:56:da: 00:67:80:4f:ea:1b:d0:e9:1e:45:5a:43:0b:8d:a9:2a:4f:28: ca:c3:cf:50:49:c0:13:8b:b7:b4:75:07:a0:b4:88:86:ba:b1: ab:b5:cf:93:66:43:29:7e:19:6b:cd:bc:27:9f:51:04:d6:be: 71:10:9b:66:0e:28:10:4a:8a:ea:d1:23:76:ba:ff:5b:67:4b: 1f:54:36:91:8d:24:d9:59:e0:d3:ac:5c:04:05:4b:a5:d9:c8: b9:a2:5e:c1:59:58:91:3a:0f:26:df:be:bb:7a:d1:5a:cc:b7: d0:22:0f:8b:53:af:c9:60:79:c2:8e:19:68:18:2a:93:3f:c6: c5:b5:0b:71:17:25:5b:39:fc:c7:79:46:23:cd:f9:b1:b3:08: a4:3d:a8:bd:58:b8:b9:13:aa:ef:f9:87:38:f1:53:04:05:32: 77:01:41:36:bf:72:27:c4:a0:99:a3:24:08:29:03:7f:24:9e: 4b:88:20:17:ba:80:89:24:ec:48:6c:b7:43:56:61:fe:4a:a8: e1:4a:83:af:16:ea:bc:ee:64:6f:9c:e4:ae:f0:a1:d5:f5:c0: 37:a2:5d:0f:9a:88:46:ac:e3:2a:84:af:b3:79:0b:ac:28:05: 2a:ae:86:ae -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCd4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQwMzVaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDhFOEVDN0M3REQ5N0M1 RURGM0EzN0IxNjc0NjU5MzY2NDNCODA2OUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClMA+auUCdG+LDdBLWSKaa6HqWlrWTxY3/23BW6u/zkiACEV5A WNhnUMOkCWiiYc5jYe1mFv2m5CWcGz7McSwTZcKMLgw+85HVlVFx6nTOGcUXXH98 +A1y5fjYxzYJOrTtCRWbmQYEJd7bp9NcSiBqLZqm0frQAjv/9z7jFniztwZJHGEk dq1KK6xOHnUHnrNZaR9mbJyrZBUIkh2Kkpu8TnvG6MavFc7GblI7T24xvVpjGV2R iMXbo2ykbMUQV0+qohFNAmXjOLMaamlBEQb6cMaS3uIVntQcvkwvdJ2c5RUtm0z6 h8VWA1f57Im/bX7DqThX3JQQQG2ejZ4t2bx/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUjo7Hx92Xxe3zo3sWdGWTZkO4BpwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2pvN0h4OTJYeGUzem8zc1dkR1dUWmtPNEJwdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANuodAwDQYJKoZIhvcNAQELBQADggEBAML57hrXbkErpxHtmn6Z+IVW2gBn gE/qG9DpHkVaQwuNqSpPKMrDz1BJwBOLt7R1B6C0iIa6sau1z5NmQyl+GWvNvCef UQTWvnEQm2YOKBBKiurRI3a6/1tnSx9UNpGNJNlZ4NOsXAQFS6XZyLmiXsFZWJE6 Dybfvrt60VrMt9AiD4tTr8lgecKOGWgYKpM/xsW1C3EXJVs5/Md5RiPN+bGzCKQ9 qL1YuLkTqu/5hzjxUwQFMncBQTa/cifEoJmjJAgpA38knkuIIBe6gIkk7Ehst0NW Yf5KqOFKg68W6rzuZG+c5K7wodX1wDeiXQ+aiEas4yqEr7N5C6woBSquhq4= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:02 2024 by rpki-client on console-fra.rpki-client.org