$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/oh-eRtYizp4EsN_jHu8U1Vt8sSQ.roa File: oh-eRtYizp4EsN_jHu8U1Vt8sSQ.roa (raw, json) Hash identifier: lgfnXv9jR/RAI4kH1dT9KzANgZ4Lowd47pOEtPRAqRM= Subject key identifier: A2:1F:9E:46:D6:22:CE:9E:04:B0:DF:E3:1E:EF:14:D5:5B:7C:B1:24 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0624 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/oh-eRtYizp4EsN_jHu8U1Vt8sSQ.roa Signing time: Thu 29 Feb 2024 01:38:36 +0000 ROA not before: Thu 29 Feb 2024 01:38:36 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 9605 IP address blocks: 1.72.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Dec 2024 00:11:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1572 (0x624) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Feb 29 01:38:36 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=A21F9E46D622CE9E04B0DFE31EEF14D55B7CB124 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:59:99:64:a9:49:82:b4:e6:b5:81:ba:6a:ca: 20:f8:90:54:9e:a6:a1:a4:11:e6:87:e6:8e:4f:34: 97:56:ba:95:8a:13:e1:be:c5:63:43:b9:3e:65:a3: 3a:3a:cd:a2:18:c2:64:38:f0:40:ae:8c:45:46:6c: a6:40:90:f6:26:88:44:fd:de:90:d0:df:89:e3:29: 85:f8:3f:51:0d:00:36:13:c2:ce:23:48:98:6b:76: fd:8f:26:27:28:8d:fe:f8:44:1e:00:85:26:1b:fa: 8b:47:cf:48:48:42:00:3a:c4:43:ba:09:50:bb:be: f3:04:b2:35:db:65:0d:ef:57:a7:b9:d5:66:33:a3: 88:5d:f6:c4:78:50:ad:84:45:c5:b2:fc:9d:f2:73: eb:a1:b4:af:56:ce:50:c2:50:99:bb:32:b3:b8:2d: f2:b7:f1:54:92:af:c8:40:ca:39:27:ed:97:f4:1e: 3c:fb:5b:b6:f7:70:d1:1e:8a:b0:68:db:a9:9c:12: d4:d2:7e:35:a5:66:91:4e:26:b3:66:db:2e:df:87: 4c:14:01:05:c6:37:7f:0e:cc:62:e4:b7:3e:f5:30: b4:ea:26:45:4b:08:93:1a:95:0e:b4:52:fa:41:6d: 69:87:9e:1f:8a:06:6a:e5:86:af:58:4b:f8:ab:f8: d2:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:1F:9E:46:D6:22:CE:9E:04:B0:DF:E3:1E:EF:14:D5:5B:7C:B1:24 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/oh-eRtYizp4EsN_jHu8U1Vt8sSQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.5.0/24 Signature Algorithm: sha256WithRSAEncryption 32:58:47:c1:dd:fb:ea:7d:d7:ef:03:f5:4c:8e:88:42:58:a3: f9:9a:92:f2:7a:67:51:b2:2e:74:fa:f3:c8:09:a3:d7:4b:73: 85:4a:5b:0c:cc:47:5b:e3:5d:a4:e3:fc:f0:d0:ad:e6:ce:95: f7:c1:1f:87:1c:29:24:70:81:ef:ed:f9:60:7a:57:5a:9c:94: 26:ff:2e:21:f4:8a:30:38:1e:ea:c3:10:13:37:f3:5b:eb:fb: fd:2a:bb:70:ac:2a:bd:ed:47:36:85:b5:d8:b0:57:27:4a:5e: 1a:45:64:b0:7b:10:0e:8b:34:04:71:f0:1f:a5:b5:ff:c4:30: e4:f5:1f:a0:c4:0a:5f:16:e1:d4:48:07:c9:b6:ec:90:4b:b1: 8d:8a:73:87:da:ee:eb:e0:92:20:0b:eb:f8:96:3a:87:8a:62: 2c:24:51:87:78:c0:ed:54:bd:46:e4:0c:eb:e6:86:e9:76:31: 4e:45:7e:50:49:82:fe:04:23:36:8a:b3:33:02:43:47:2d:46: 75:4f:a5:14:ea:38:32:fe:59:02:06:6a:55:f8:8c:af:65:8e: bd:d7:51:e4:41:e0:29:53:d6:72:b4:24:90:17:4a:30:61:32: 1b:db:5e:63:0a:dc:6d:f1:36:06:a6:be:cb:03:b8:81:fc:89: 30:06:0d:4f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBiQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDAyMjkw MTM4MzZaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKEEyMUY5RTQ2RDYyMkNF OUUwNEIwREZFMzFFRUYxNEQ1NUI3Q0IxMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCYWZlkqUmCtOa1gbpqyiD4kFSepqGkEeaH5o5PNJdWupWKE+G+ xWNDuT5lozo6zaIYwmQ48ECujEVGbKZAkPYmiET93pDQ34njKYX4P1ENADYTws4j SJhrdv2PJicojf74RB4AhSYb+otHz0hIQgA6xEO6CVC7vvMEsjXbZQ3vV6e51WYz o4hd9sR4UK2ERcWy/J3yc+uhtK9WzlDCUJm7MrO4LfK38VSSr8hAyjkn7Zf0Hjz7 W7b3cNEeirBo26mcEtTSfjWlZpFOJrNm2y7fh0wUAQXGN38OzGLktz71MLTqJkVL CJMalQ60UvpBbWmHnh+KBmrlhq9YS/ir+NJ9AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUoh+eRtYizp4EsN/jHu8U1Vt8sSQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L29oLWVSdFlpenA0RXNOX2pIdThVMVZ0OHNTUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABSAUwDQYJKoZIhvcNAQELBQADggEBADJYR8Hd++p91+8D9UyOiEJYo/ma kvJ6Z1GyLnT688gJo9dLc4VKWwzMR1vjXaTj/PDQrebOlffBH4ccKSRwge/t+WB6 V1qclCb/LiH0ijA4HurDEBM381vr+/0qu3CsKr3tRzaFtdiwVydKXhpFZLB7EA6L NARx8B+ltf/EMOT1H6DECl8W4dRIB8m27JBLsY2Kc4fa7uvgkiAL6/iWOoeKYiwk UYd4wO1UvUbkDOvmhul2MU5FflBJgv4EIzaKszMCQ0ctRnVPpRTqODL+WQIGalX4 jK9ljr3XUeRB4ClT1nK0JJAXSjBhMhvbXmMK3G3xNgamvssDuIH8iTAGDU8= -----END CERTIFICATE-----Generated at Tue Nov 26 02:17:12 2024 by rpki-client on console-fra.rpki-client.org