$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/oTSkp9i2-j-iPflbL4BtEq0mvF4.roa File: oTSkp9i2-j-iPflbL4BtEq0mvF4.roa (raw, json) Hash identifier: 8C1ruRmeB9moi5eYlUmr1HDuMrVGGDDzPoBj3b6bKbY= Subject key identifier: A1:34:A4:A7:D8:B6:FA:3F:A2:3D:F9:5B:2F:80:6D:12:AD:26:BC:5E Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A96 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/oTSkp9i2-j-iPflbL4BtEq0mvF4.roa Signing time: Sun 30 Jun 2024 01:52:42 +0000 ROA not before: Sun 30 Jun 2024 01:52:42 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.79.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2710 (0xa96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:52:42 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=A134A4A7D8B6FA3FA23DF95B2F806D12AD26BC5E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:e0:c9:84:3c:95:68:dd:43:45:e3:79:d9:22: a4:eb:42:92:b0:4f:cd:ae:4c:b1:c9:b1:44:84:c3: e8:16:ea:12:cc:37:5a:be:45:bd:24:94:89:58:ed: 9b:54:68:37:c8:a1:b0:3c:3b:7a:14:f6:e9:af:eb: 93:9a:f2:b1:cf:5d:2f:6a:8f:76:22:8a:6c:e4:de: 12:a0:05:12:3e:f3:a9:ac:be:7c:9b:8b:7c:5b:7f: 46:c0:b8:4d:21:7d:b5:2d:06:0d:af:7d:67:f4:98: 69:f5:f5:6a:c7:44:86:bf:44:f7:ed:0f:b8:06:f3: ff:d3:9d:e5:52:ae:df:7d:93:f8:ab:16:31:b4:0e: d8:42:5f:d1:f0:0d:d3:a2:39:4d:72:f4:bc:3d:74: a1:df:1c:42:80:e6:8d:3b:e8:31:48:97:74:9f:a4: 41:c5:9a:69:ce:b1:31:46:65:b1:e0:3d:86:ab:39: 3a:ef:6c:a7:92:a8:ad:3e:55:46:14:2c:04:17:1e: 9d:82:aa:40:99:40:b6:7e:ff:26:3b:2d:e3:f8:af: e5:97:26:0d:5e:1f:40:b0:e3:79:1f:3b:ad:d6:3d: 9e:8a:da:27:e0:05:89:55:02:c0:15:a8:37:45:31: 89:5e:51:66:e8:e5:58:a8:82:2b:a8:ac:d9:37:9f: 38:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:34:A4:A7:D8:B6:FA:3F:A2:3D:F9:5B:2F:80:6D:12:AD:26:BC:5E X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/oTSkp9i2-j-iPflbL4BtEq0mvF4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.56.0/21 Signature Algorithm: sha256WithRSAEncryption d9:0e:bd:b6:f7:21:05:fa:20:8a:7b:74:a7:4a:b9:ad:4c:a3: 0d:1d:80:9b:df:bb:1d:f9:bd:cb:86:78:95:b8:96:98:a2:a9: f3:5d:e6:82:5b:65:05:b1:87:a1:97:29:ab:3e:6b:c8:50:6d: 5a:4a:d5:f8:b3:12:99:5d:bf:c3:38:31:9c:4f:25:7f:d5:15: 11:d6:af:8a:d0:5e:fa:44:43:b4:c5:25:1c:1e:f6:d1:20:8d: d8:33:70:ad:ad:37:99:29:38:e8:76:30:ce:e0:3b:d2:67:f3: dc:ef:f3:69:29:a8:6d:75:dc:b6:17:61:ab:1e:fe:ec:c8:bd: d1:cd:e6:83:f8:8c:29:76:d1:10:8e:b9:9c:2e:a9:cd:72:e7: a6:bb:10:a2:8d:b6:65:b9:45:26:5b:48:31:ff:e3:c5:01:20: 82:fd:63:ea:0e:e9:ac:6b:34:1f:d8:c4:8d:b3:0f:1d:34:3d: 32:20:be:37:67:52:24:18:52:22:8a:56:f8:7b:e4:04:11:87: 97:34:41:ca:05:e1:41:6f:d7:86:6b:2e:f6:cf:b6:47:f7:38: 2e:12:c7:85:9f:2c:b7:4e:e1:70:18:a1:6b:4c:44:20:94:28: 89:7e:38:34:5a:2b:94:32:72:24:6c:26:b1:25:80:6f:8f:c8: aa:12:93:84 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCpYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTUyNDJaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEExMzRBNEE3RDhCNkZB M0ZBMjNERjk1QjJGODA2RDEyQUQyNkJDNUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDi4MmEPJVo3UNF43nZIqTrQpKwT82uTLHJsUSEw+gW6hLMN1q+ Rb0klIlY7ZtUaDfIobA8O3oU9umv65Oa8rHPXS9qj3Yiimzk3hKgBRI+86msvnyb i3xbf0bAuE0hfbUtBg2vfWf0mGn19WrHRIa/RPftD7gG8//TneVSrt99k/irFjG0 DthCX9HwDdOiOU1y9Lw9dKHfHEKA5o076DFIl3SfpEHFmmnOsTFGZbHgPYarOTrv bKeSqK0+VUYULAQXHp2CqkCZQLZ+/yY7LeP4r+WXJg1eH0Cw43kfO63WPZ6K2ifg BYlVAsAVqDdFMYleUWbo5ViogiuorNk3nzibAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUoTSkp9i2+j+iPflbL4BtEq0mvF4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L29UU2twOWkyLWotaVBmbGJMNEJ0RXEwbXZGNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBTzgwDQYJKoZIhvcNAQELBQADggEBANkOvbb3IQX6IIp7dKdKua1Mow0d gJvfux35vcuGeJW4lpiiqfNd5oJbZQWxh6GXKas+a8hQbVpK1fizEpldv8M4MZxP JX/VFRHWr4rQXvpEQ7TFJRwe9tEgjdgzcK2tN5kpOOh2MM7gO9Jn89zv82kpqG11 3LYXYase/uzIvdHN5oP4jCl20RCOuZwuqc1y56a7EKKNtmW5RSZbSDH/48UBIIL9 Y+oO6axrNB/YxI2zDx00PTIgvjdnUiQYUiKKVvh75AQRh5c0QcoF4UFv14ZrLvbP tkf3OC4Sx4WfLLdO4XAYoWtMRCCUKIl+ODRaK5QyciRsJrElgG+PyKoSk4Q= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:41 2024 by rpki-client on console-ams.rpki-client.org