$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/pnpMe7m75HvOWtaEyyC-6nAiaQA.roa File: pnpMe7m75HvOWtaEyyC-6nAiaQA.roa (raw, json) Hash identifier: aHxgovZ0xaGrmAv2TVNElZbhA9c6pj6SQXBuNKkFoLw= Subject key identifier: A6:7A:4C:7B:B9:BB:E4:7B:CE:5A:D6:84:CB:20:BE:EA:70:22:69:00 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 09BD Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/pnpMe7m75HvOWtaEyyC-6nAiaQA.roa Signing time: Sun 30 Jun 2024 01:38:25 +0000 ROA not before: Sun 30 Jun 2024 01:38:25 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 49.106.236.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2493 (0x9bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:38:25 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=A67A4C7BB9BBE47BCE5AD684CB20BEEA70226900 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:45:d8:17:11:d2:2d:ab:06:91:13:1a:c0:8b: 20:1e:50:eb:79:b0:f6:07:b6:be:c5:35:e6:a8:ae: 0f:ef:13:06:a7:2a:ab:95:4e:95:77:3c:ca:1f:40: ba:a7:63:33:4f:eb:f2:fb:9e:a6:52:5d:72:b7:27: 64:47:72:1a:3c:97:ff:f0:c9:f0:22:e3:22:24:90: e0:69:a9:f3:b5:b7:c0:5e:ab:37:28:60:bd:90:47: 6a:75:78:9d:31:4b:46:64:eb:a1:d3:13:a5:b5:02: 14:c8:ee:d7:a2:96:42:5d:46:0c:48:e9:c7:66:c4: c8:18:3a:14:1f:3c:55:e3:7a:f2:2e:93:ec:c0:2a: 85:f9:1e:78:d0:bf:fe:7e:89:53:87:5b:3b:7d:ca: 68:7e:bd:d5:64:c5:9a:cd:ef:27:a7:cf:b6:3b:0a: 14:20:82:c5:80:67:4f:f8:48:e0:13:a8:dc:ce:ec: 7b:27:3d:45:01:c9:42:91:42:a8:28:86:06:36:85: 5c:6d:35:64:dc:f4:fd:e6:ac:95:d1:5c:2c:e0:29: 6d:bc:04:b8:2e:34:b3:99:37:02:ec:fc:a8:64:21: 26:a0:89:d4:b6:11:0d:5a:ec:eb:11:e2:e2:6c:bf: 00:f2:68:4a:cb:c9:9a:41:61:97:9e:c8:f4:fb:13: 2f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:7A:4C:7B:B9:BB:E4:7B:CE:5A:D6:84:CB:20:BE:EA:70:22:69:00 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/pnpMe7m75HvOWtaEyyC-6nAiaQA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.236.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:8d:02:8a:17:33:d0:3f:0a:4b:75:0d:a8:b7:fe:d6:2c:25: ba:aa:d3:6b:a5:72:f4:38:8b:f8:42:4d:62:b9:85:ab:38:87: 74:4e:f6:03:23:e5:76:8d:a1:d3:2a:ea:5e:a9:9f:e1:f8:8d: d9:31:28:8d:cb:a7:8e:c4:70:38:2e:68:e3:c5:c5:3e:6a:fb: 39:a5:ef:46:ab:f6:ee:d7:4f:56:c6:13:19:10:77:11:6a:a6: 28:b3:ca:d7:9c:b3:41:ba:6f:ab:77:a8:87:31:74:ff:8a:a8: 71:4f:d0:13:a7:e6:34:ef:6d:73:b3:4b:5d:4e:c6:63:31:c9: ed:3b:66:d6:e0:98:f2:44:de:38:3b:a3:a4:32:2e:0a:01:11: 4c:6a:0b:78:1f:db:09:e2:dc:55:ff:2f:4f:5f:5a:11:5e:bb: 9f:6f:c5:6e:d7:48:fe:8d:4f:4c:f8:16:9d:4e:9c:ac:96:b0: c5:98:ae:f4:3e:60:9b:32:c2:5d:52:21:ef:12:0f:28:81:5f: 55:90:29:e1:e0:b6:ec:4b:be:27:92:32:89:2a:52:05:19:e7: 26:a6:81:ea:7b:7f:97:84:12:df:56:f8:81:e9:8b:8b:0e:a0: c2:a2:8e:96:8e:1a:3d:23:84:b0:b0:2f:0c:e1:01:2e:32:89: ac:6d:14:35 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCb0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTM4MjVaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEE2N0E0QzdCQjlCQkU0 N0JDRTVBRDY4NENCMjBCRUVBNzAyMjY5MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIRdgXEdItqwaRExrAiyAeUOt5sPYHtr7FNeaorg/vEwanKquV TpV3PMofQLqnYzNP6/L7nqZSXXK3J2RHcho8l//wyfAi4yIkkOBpqfO1t8Beqzco YL2QR2p1eJ0xS0Zk66HTE6W1AhTI7teilkJdRgxI6cdmxMgYOhQfPFXjevIuk+zA KoX5HnjQv/5+iVOHWzt9ymh+vdVkxZrN7yenz7Y7ChQggsWAZ0/4SOATqNzO7Hsn PUUByUKRQqgohgY2hVxtNWTc9P3mrJXRXCzgKW28BLguNLOZNwLs/KhkISagidS2 EQ1a7OsR4uJsvwDyaErLyZpBYZeeyPT7Ey8fAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUpnpMe7m75HvOWtaEyyC+6nAiaQAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3BucE1lN203NUh2T1d0YUV5eUMtNm5BaWFRQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExauwwDQYJKoZIhvcNAQELBQADggEBAEyNAooXM9A/Ckt1Dai3/tYsJbqq 02ulcvQ4i/hCTWK5has4h3RO9gMj5XaNodMq6l6pn+H4jdkxKI3Lp47EcDguaOPF xT5q+zml70ar9u7XT1bGExkQdxFqpiizytecs0G6b6t3qIcxdP+KqHFP0BOn5jTv bXOzS11OxmMxye07ZtbgmPJE3jg7o6QyLgoBEUxqC3gf2wni3FX/L09fWhFeu59v xW7XSP6NT0z4Fp1OnKyWsMWYrvQ+YJsywl1SIe8SDyiBX1WQKeHgtuxLvieSMokq UgUZ5yamgep7f5eEEt9W+IHpi4sOoMKijpaOGj0jhLCwLwzhAS4yiaxtFDU= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:02 2024 by rpki-client on console-fra.rpki-client.org