$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/nQH8ON3f2MInSHOAxUi9-SSHsHM.roa File: nQH8ON3f2MInSHOAxUi9-SSHsHM.roa (raw, json) Hash identifier: nrnYlXNisdS047KjKn1HKksl9r8UEze8eJ3trVfp6gA= Subject key identifier: 9D:01:FC:38:DD:DF:D8:C2:27:48:73:80:C5:48:BD:F9:24:87:B0:73 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 088A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/nQH8ON3f2MInSHOAxUi9-SSHsHM.roa Signing time: Tue 30 Apr 2024 02:20:33 +0000 ROA not before: Tue 30 Apr 2024 02:20:33 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.105.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2186 (0x88a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:20:33 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=9D01FC38DDDFD8C227487380C548BDF92487B073 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:6b:c0:ea:a6:9b:bf:b6:e5:e7:af:e7:19:4e: ec:63:3f:91:89:5f:f3:d7:b3:db:0a:71:c1:07:73: 4c:1c:f8:53:ce:0f:60:ad:31:65:67:dc:2a:cc:0c: d0:1b:54:03:cc:17:1a:bc:db:57:eb:6b:26:4d:94: bf:07:82:d5:a7:b5:7a:95:b8:13:62:14:2e:12:c2: c0:68:94:fb:97:6f:88:85:25:43:61:da:4f:50:f7: e0:5e:23:88:5b:db:fc:e1:b9:8b:6c:ef:8e:e7:c7: 6e:97:a9:ec:1d:06:1d:68:aa:e5:f2:b7:e4:aa:f7: 94:28:f4:20:e1:38:42:2f:7a:1b:44:6c:66:3d:8e: c4:6e:a9:fa:ce:8f:a0:a4:17:b5:d6:d8:6e:e2:ec: 00:94:33:8d:b1:a8:54:00:ed:99:82:21:c5:0a:ab: a1:5e:73:3e:3e:4a:72:8d:46:d1:6a:80:5a:5f:b1: c9:e5:5e:e7:7d:55:5b:c0:63:d6:c8:d5:f7:3d:6b: f9:21:bf:eb:c6:64:b8:77:d1:c9:d9:55:fd:4e:80: fc:76:61:17:60:6e:94:e4:22:e5:d1:0e:3b:b7:34: 2e:46:c6:a5:30:2e:fd:a7:fd:1e:47:c3:ed:26:35: a8:cd:cd:0f:68:c3:50:a5:88:50:99:7c:d9:25:42: 2b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:01:FC:38:DD:DF:D8:C2:27:48:73:80:C5:48:BD:F9:24:87:B0:73 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/nQH8ON3f2MInSHOAxUi9-SSHsHM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.105.96.0/20 Signature Algorithm: sha256WithRSAEncryption 27:e5:6f:03:8f:cd:5f:7c:45:41:a9:9b:f3:af:d0:7a:b0:a0: 04:87:8c:f5:d5:7c:db:51:58:59:b2:e1:9c:3f:8d:bc:2c:56: 7f:29:f5:7d:8f:07:76:9a:e7:bb:cc:49:c4:5b:1c:2c:03:46: 9f:b8:8b:5c:7f:7c:10:4d:41:32:59:af:d7:2b:06:d9:e7:07: aa:a9:02:53:0c:67:f2:e5:34:3e:4a:d8:a6:4a:4a:59:1e:11: 06:d5:74:b7:39:60:42:da:78:27:87:e9:da:8c:15:64:0e:34: 46:18:35:b3:7e:02:fc:ba:8b:71:97:ba:ee:7b:78:a5:98:3d: 5f:ba:b2:98:c7:e5:d4:78:51:7a:6a:e8:2d:3f:72:71:a7:23: 07:c1:f6:54:69:02:0c:bc:35:15:e0:61:eb:7d:93:61:68:a9: 85:25:f6:d1:aa:3a:9d:3f:72:fb:e7:8b:dd:1d:6c:73:ba:9e: 3d:e9:d0:90:84:00:16:d6:97:2c:ba:a9:7a:15:dd:a9:4e:29: b2:4c:f3:6d:49:27:c5:f9:c7:4a:40:94:5c:b3:12:aa:41:79: a1:60:3e:c5:0d:0f:7e:d7:af:3c:dc:57:df:19:6d:7c:db:12: 1f:9d:63:ac:54:6d:d8:63:28:0d:c2:af:b3:86:53:5c:96:09: 6e:5e:42:e5 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCIowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjIwMzNaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDlEMDFGQzM4RERERkQ4 QzIyNzQ4NzM4MEM1NDhCREY5MjQ4N0IwNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCSa8Dqppu/tuXnr+cZTuxjP5GJX/PXs9sKccEHc0wc+FPOD2Ct MWVn3CrMDNAbVAPMFxq821frayZNlL8HgtWntXqVuBNiFC4SwsBolPuXb4iFJUNh 2k9Q9+BeI4hb2/zhuYts747nx26XqewdBh1oquXyt+Sq95Qo9CDhOEIvehtEbGY9 jsRuqfrOj6CkF7XW2G7i7ACUM42xqFQA7ZmCIcUKq6Fecz4+SnKNRtFqgFpfscnl Xud9VVvAY9bI1fc9a/khv+vGZLh30cnZVf1OgPx2YRdgbpTkIuXRDju3NC5GxqUw Lv2n/R5Hw+0mNajNzQ9ow1CliFCZfNklQivFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUnQH8ON3f2MInSHOAxUi9+SSHsHMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L25RSDhPTjNmMk1JblNIT0F4VWk5LVNTSHNITS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQxaWAwDQYJKoZIhvcNAQELBQADggEBACflbwOPzV98RUGpm/Ov0HqwoASH jPXVfNtRWFmy4Zw/jbwsVn8p9X2PB3aa57vMScRbHCwDRp+4i1x/fBBNQTJZr9cr BtnnB6qpAlMMZ/LlND5K2KZKSlkeEQbVdLc5YELaeCeH6dqMFWQONEYYNbN+Avy6 i3GXuu57eKWYPV+6spjH5dR4UXpq6C0/cnGnIwfB9lRpAgy8NRXgYet9k2FoqYUl 9tGqOp0/cvvni90dbHO6nj3p0JCEABbWlyy6qXoV3alOKbJM821JJ8X5x0pAlFyz EqpBeaFgPsUND37XrzzcV98ZbXzbEh+dY6xUbdhjKA3Cr7OGU1yWCW5eQuU= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:02 2024 by rpki-client on console-fra.rpki-client.org