$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/mDUvNEr-ndgVAlTpoUdc3wt2VL8.roa File: mDUvNEr-ndgVAlTpoUdc3wt2VL8.roa (raw, json) Hash identifier: 5QzEwytkvgT/Egatb8w0wf1JEY2kdkUW5L2kgsuFaYw= Subject key identifier: 98:35:2F:34:4A:FE:9D:D8:15:02:54:E9:A1:47:5C:DF:0B:76:54:BF Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0822 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/mDUvNEr-ndgVAlTpoUdc3wt2VL8.roa Signing time: Tue 30 Apr 2024 02:14:19 +0000 ROA not before: Tue 30 Apr 2024 02:14:19 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.78.36.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2082 (0x822) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:14:19 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=98352F344AFE9DD8150254E9A1475CDF0B7654BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:de:c3:13:4b:06:6d:35:21:93:47:07:fe:e4: 15:d9:2b:ff:fd:dc:e0:2f:b9:9e:a5:ad:2f:89:8b: 72:03:43:f2:b5:d3:92:42:9f:39:6f:48:54:d1:9a: f4:14:07:4d:90:ce:e1:d6:c3:b5:b4:b5:b0:7a:6c: e2:06:d2:e2:be:59:54:6e:27:b1:d9:b4:df:c0:74: c9:d0:b2:2f:e3:e6:7d:5c:08:82:4d:88:47:d6:cd: ba:5b:be:07:b4:5c:ae:b9:29:08:6b:0c:dc:75:c4: c1:91:2a:43:2f:3a:3e:10:0c:4f:68:1e:76:e2:d3: 00:4a:d8:98:21:c2:7b:62:ac:35:61:3c:52:92:3d: 2d:0b:9f:b0:aa:3f:46:c4:b1:12:0b:2a:5a:db:2c: 87:8e:de:c4:3b:29:4d:28:58:a3:a1:27:a3:a4:cb: b0:6f:87:4b:fb:c3:79:97:c0:db:d2:1f:fb:d7:8e: 80:30:c8:de:c0:f2:03:f0:57:99:01:b6:10:e1:c1: 2f:1a:57:ad:7e:aa:88:2d:16:10:f3:2d:57:5f:65: 9d:f5:58:7e:2e:e4:4c:ea:c4:3f:9c:36:8e:43:32: 00:87:97:8e:14:b8:98:51:d7:51:b8:f1:f5:c2:da: f4:af:90:ff:fb:4f:fe:ea:de:22:50:6b:68:41:b0: 27:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:35:2F:34:4A:FE:9D:D8:15:02:54:E9:A1:47:5C:DF:0B:76:54:BF X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/mDUvNEr-ndgVAlTpoUdc3wt2VL8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.78.36.0/23 Signature Algorithm: sha256WithRSAEncryption 35:32:8c:a8:6c:d5:88:f7:e8:e0:03:ca:ed:45:bc:17:00:38: bb:71:19:55:25:c8:37:e4:75:1d:0a:51:32:d1:63:0e:09:6c: 10:6c:a3:a7:1d:a1:c1:b4:55:d9:97:18:9d:31:b7:c2:77:94: 4c:92:ca:41:50:f6:dd:d3:95:0a:dd:a0:e6:c0:64:13:3a:88: 1d:7d:fa:ec:b6:74:d9:bd:e8:55:15:6f:cb:d1:d8:eb:d3:40: 22:e7:f4:7e:6e:4b:92:4a:27:14:3b:e4:12:33:d1:8f:62:2c: 78:dd:fc:56:a5:a6:87:a5:b9:6e:97:25:09:3e:db:e2:a6:c1: e6:52:7e:be:d5:28:f9:83:ea:ac:01:d2:41:f5:1a:5d:59:5a: 12:17:ad:36:5f:53:0f:4d:b7:f6:f5:79:05:97:2c:b1:7d:d2: 07:c1:c3:c7:37:26:fe:c7:18:ca:9f:7c:31:42:45:a1:b5:54: 5a:27:f6:e5:e1:f7:53:f8:d5:48:fe:36:2e:be:e5:fd:90:61: fe:52:e5:a4:6a:32:2c:d2:00:03:7d:79:e9:08:f9:3f:a7:e0: 3b:02:1a:c7:75:f8:27:c4:93:09:19:fa:e9:73:70:c4:c0:5b: d5:4f:e0:d1:4d:10:67:4e:da:80:c2:4f:e0:99:dd:01:c4:08: c1:a7:32:55 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCCIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjE0MTlaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDk4MzUyRjM0NEFGRTlE RDgxNTAyNTRFOUExNDc1Q0RGMEI3NjU0QkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCj3sMTSwZtNSGTRwf+5BXZK//93OAvuZ6lrS+Ji3IDQ/K105JC nzlvSFTRmvQUB02QzuHWw7W0tbB6bOIG0uK+WVRuJ7HZtN/AdMnQsi/j5n1cCIJN iEfWzbpbvge0XK65KQhrDNx1xMGRKkMvOj4QDE9oHnbi0wBK2JghwntirDVhPFKS PS0Ln7CqP0bEsRILKlrbLIeO3sQ7KU0oWKOhJ6Oky7Bvh0v7w3mXwNvSH/vXjoAw yN7A8gPwV5kBthDhwS8aV61+qogtFhDzLVdfZZ31WH4u5EzqxD+cNo5DMgCHl44U uJhR11G48fXC2vSvkP/7T/7q3iJQa2hBsCdFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUmDUvNEr+ndgVAlTpoUdc3wt2VL8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L21EVXZORXItbmRnVkFsVHBvVWRjM3d0MlZMOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBTiQwDQYJKoZIhvcNAQELBQADggEBADUyjKhs1Yj36OADyu1FvBcAOLtx GVUlyDfkdR0KUTLRYw4JbBBso6cdocG0VdmXGJ0xt8J3lEySykFQ9t3TlQrdoObA ZBM6iB19+uy2dNm96FUVb8vR2OvTQCLn9H5uS5JKJxQ75BIz0Y9iLHjd/Falpoel uW6XJQk+2+KmweZSfr7VKPmD6qwB0kH1Gl1ZWhIXrTZfUw9Nt/b1eQWXLLF90gfB w8c3Jv7HGMqffDFCRaG1VFon9uXh91P41Uj+Ni6+5f2QYf5S5aRqMizSAAN9eekI +T+n4DsCGsd1+CfEkwkZ+ulzcMTAW9VP4NFNEGdO2oDCT+CZ3QHECMGnMlU= -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:42 2024 by rpki-client on console-ams.rpki-client.org